$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer File: B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer (raw, json) Hash identifier: BrgaQ45Kmw3wiDMMis2JRWcfZ6szwFEzTUptiy8rkfA= Subject key identifier: B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A581E0B0E278BBC289EAF689E74D2AA8102B0A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft caRepository: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 19 Oct 2023 11:24:36 +0000 Certificate not after: Thu 17 Oct 2024 11:29:36 +0000 Subordinate resources: IP: 103.38.108.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:58:1e:0b:0e:27:8b:bc:28:9e:af:68:9e:74:d2:aa:81:02:b0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 19 11:24:36 2023 GMT Not After : Oct 17 11:29:36 2024 GMT Subject: CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:44:3d:ce:8b:7f:5e:88:98:37:8b:6c:bc:35: d6:ef:c2:b1:4a:07:72:10:94:9a:b0:12:38:d9:c8: 61:a6:89:9b:8b:6d:25:00:9d:97:89:77:88:40:a8: 5f:7b:54:28:9f:9e:85:04:f0:6a:7a:67:42:37:b9: 3f:8e:a7:2e:a4:62:de:13:86:98:9e:16:d4:5f:de: e8:b4:aa:90:8a:d7:70:ab:4b:c4:a8:b8:05:c3:a8: 75:f5:7f:a6:00:5c:b6:69:fc:4d:e4:a1:ca:2c:45: df:b6:db:73:41:a6:54:e3:66:c7:2b:49:b3:76:b7: 9e:6a:9e:86:c4:16:11:dc:51:b5:d8:ca:c0:cd:b6: 31:72:53:2d:f5:d3:18:fa:f5:04:5c:e1:d4:44:f8: 2f:08:8e:ea:e4:7a:71:25:0c:30:16:d1:3c:a4:d9: 5f:1a:e0:4f:da:2c:15:5e:4e:9d:81:34:57:9c:1f: 2d:38:96:80:4c:d3:20:c4:0a:60:bf:95:e0:0b:a2: d5:1a:cf:ee:1b:08:b0:51:97:38:88:5c:b2:26:a3: 5c:bf:54:4a:8c:e4:d3:42:01:a3:5d:e2:90:2e:9e: fd:6a:6b:a2:e8:4d:9d:2d:d4:0f:3a:5e:9c:e9:09: a4:fb:82:48:61:4d:af:bc:c4:94:c8:b9:bb:2b:e8: 57:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.108.0/23 Signature Algorithm: sha256WithRSAEncryption 90:d6:08:ea:76:fd:46:e7:1e:0f:70:a4:43:54:3b:2c:14:8e: 69:16:9a:cb:cf:7a:33:a9:25:f4:59:ee:8c:55:21:7b:68:7a: 48:60:f1:32:dd:6b:7b:5d:e5:14:06:a9:8a:54:36:85:af:93: 2e:8f:da:ab:57:e2:ce:3e:d4:8c:40:5f:9d:6d:65:09:32:56: 34:99:85:a1:b4:3c:76:73:91:18:25:1a:9f:78:15:90:15:5d: d2:bf:28:5c:6c:6d:02:d6:ea:6f:63:82:00:1e:e7:35:08:02: ac:aa:29:b9:20:8b:ea:da:6c:e5:1f:cd:50:65:05:a4:7f:84: bb:d7:5b:31:cd:96:e4:5f:7e:45:ed:5d:8d:e9:99:91:f4:ac: 54:fb:d9:df:46:a8:00:c9:c1:a0:c0:76:cd:39:6e:56:25:92: c3:7a:98:43:eb:c2:7a:a3:a9:62:1f:ed:c2:c7:88:c4:73:cf: 44:e8:94:68:db:b9:64:9f:ad:83:1a:5c:e8:fe:91:04:8c:f7: c1:24:57:50:fe:53:8d:72:27:09:ab:57:4e:f8:62:b2:d0:b0: 5c:9b:dc:57:09:34:08:dc:50:7d:20:c2:43:44:5b:fe:46:4e: 31:f0:4a:3b:41:77:3c:ae:1e:02:6b:25:6a:63:2d:02:c3:d0: 5b:86:64:fb -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUalgeCw4ni7wonq9onnTSqoECsKIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxOTExMjQzNloX DTI0MTAxNzExMjkzNlowMzExMC8GA1UEAxMoQjVGOEU3NzEyQTgzQkUyQkQ3OENG QzQwNjU4QzgwMzJGMDNCNjY4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZEPc6Lf16ImDeLbLw11u/CsUoHchCUmrASONnIYaaJm4ttJQCdl4l3iECo X3tUKJ+ehQTwanpnQje5P46nLqRi3hOGmJ4W1F/e6LSqkIrXcKtLxKi4BcOodfV/ pgBctmn8TeShyixF37bbc0GmVONmxytJs3a3nmqehsQWEdxRtdjKwM22MXJTLfXT GPr1BFzh1ET4LwiO6uR6cSUMMBbRPKTZXxrgT9osFV5OnYE0V5wfLTiWgEzTIMQK YL+V4Aui1RrP7hsIsFGXOIhcsiajXL9USozk00IBo13ikC6e/WprouhNnS3UDzpe nOkJpPuCSGFNr7zElMi5uyvoV3UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLX453Eqg74r14z8QGWMgDLwO2aCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZGI1OWExMC01OGQwLTQ2MmUtYjA5Yi0xOTE5YjFjMzVkNzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkYjU5YTEw LTU4ZDAtNDYyZS1iMDliLTE5MTliMWMzNWQ3Mi8wL0I1RjhFNzcxMkE4M0JFMkJE NzhDRkM0MDY1OEM4MDMyRjAzQjY2ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnJmwwDQYJKoZIhvcNAQELBQADggEBAJDWCOp2/UbnHg9wpENUOywUjmkWmsvP ejOpJfRZ7oxVIXtoekhg8TLda3td5RQGqYpUNoWvky6P2qtX4s4+1IxAX51tZQky VjSZhaG0PHZzkRglGp94FZAVXdK/KFxsbQLW6m9jggAe5zUIAqyqKbkgi+rabOUf zVBlBaR/hLvXWzHNluRffkXtXY3pmZH0rFT72d9GqADJwaDAds05blYlksN6mEPr wnqjqWIf7cLHiMRzz0TolGjbuWSfrYMaXOj+kQSM98EkV1D+U41yJwmrV074YrLQ sFyb3FcJNAjcUH0gwkNEW/5GTjHwSjtBdzyuHgJrJWpjLQLD0FuGZPs= -----END CERTIFICATE-----Generated at Wed May 8 17:45:24 2024 by rpki-client on console-ams.rpki-client.org