$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer File: C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer (raw, json) Hash identifier: 0wEkBzM6lDmRP4mJxuWW0UF2dHTldvPOJNTV/Ca5dEc= Subject key identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 666AB4205987D473F4660527ACAF319A66983FCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft caRepository: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 06:39:02 +0000 Certificate not after: Mon 29 Jul 2024 06:44:02 +0000 Subordinate resources: IP: 103.156.16.0/23 IP: 2406:7bc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:6a:b4:20:59:87:d4:73:f4:66:05:27:ac:af:31:9a:66:98:3f:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 06:39:02 2023 GMT Not After : Jul 29 06:44:02 2024 GMT Subject: CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:16:b4:aa:94:b0:e1:08:52:8f:df:47:b5:d0: bf:58:d7:34:22:93:53:5a:d6:36:d8:75:5d:ae:36: a3:06:5b:e5:5a:b1:55:15:f7:51:b6:e9:ce:7b:f1: 0f:56:b9:d0:c5:ac:12:40:f0:14:31:3f:46:24:55: d1:b8:d3:88:a4:ad:ac:bf:f5:5b:ad:d3:ec:fb:ca: 50:67:2e:d4:41:f7:ca:6e:6e:24:1b:27:1a:c9:01: 38:7e:03:1e:7e:a6:c2:f5:68:27:be:8c:80:7c:fb: 98:ce:26:79:52:b5:61:d4:01:fd:34:97:f2:b6:d2: ec:4d:70:7e:0b:08:38:dc:23:24:7d:ed:ce:0a:c5: 65:1b:50:da:4e:94:eb:8e:ef:6d:48:79:4b:26:b4: 2c:2d:cd:da:ba:af:cd:9e:18:39:d7:15:ab:9f:19: fa:36:12:a0:b8:2b:ef:f8:7a:ae:a3:16:8b:55:55: d7:e7:67:25:82:c7:57:aa:bc:ca:85:7b:75:f9:7f: ee:d4:83:a3:35:11:e7:11:9e:62:6d:9b:3e:a3:10: c3:7b:87:9b:eb:f5:e9:12:b6:30:42:c0:f4:37:e0: 3a:23:db:16:da:3a:86:2a:f1:73:ce:7f:83:bc:80: c5:ae:18:40:c9:05:53:e4:7f:6a:de:9d:8e:9c:01: a0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.16.0/23 IPv6: 2406:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 80:db:0e:35:12:4e:bd:95:35:25:db:47:fd:97:d5:2a:75:b0: ee:f0:92:60:39:eb:2c:b7:45:1b:e3:88:19:1a:53:e5:24:66: b7:06:1d:79:47:7a:88:a0:bc:f0:fb:21:fb:47:45:14:6d:fb: 4b:49:2f:2b:30:6b:ac:19:75:2d:48:5e:1d:15:51:f6:09:dc: db:4a:b6:e0:9f:0d:be:53:8c:d6:72:3d:1f:ef:f2:ea:a5:a4: 66:d8:32:ac:90:a0:e2:16:1e:c5:77:32:76:4b:95:b1:f3:19: 5b:97:dc:08:70:b1:f3:12:bf:89:5e:95:6b:08:fb:c5:28:0a: 6c:48:fd:76:c6:01:d4:fc:4a:95:e5:64:57:71:64:64:23:b2: cd:e1:a3:d9:62:bf:1a:0e:0a:1c:1b:c2:a5:7d:42:a5:a0:f1: 33:00:38:55:5d:53:e7:a5:ea:57:b3:f0:55:06:2d:dc:12:c0: 42:d8:0c:f4:00:40:2f:f8:a2:c1:92:fe:02:4e:c7:c3:ea:0b: ea:4a:c2:57:ec:3d:94:95:ec:f0:d1:06:29:f4:de:97:c1:44: bf:e9:db:0a:96:ea:ab:a5:d3:59:0f:54:91:fc:24:4f:98:96: 5f:08:12:ed:29:7f:2e:d4:16:24:7e:35:c6:8c:85:91:be:f4: ee:bb:65:bb -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUZmq0IFmH1HP0ZgUnrK8xmmaYP84wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA2MzkwMloX DTI0MDcyOTA2NDQwMlowMzExMC8GA1UEAxMoQzI1RDUwNTZBNjlDRTBEMDY4NUJB RDhFNDhGMzNBNEE2MkE1QzU4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOoWtKqUsOEIUo/fR7XQv1jXNCKTU1rWNth1Xa42owZb5VqxVRX3Ubbpznvx D1a50MWsEkDwFDE/RiRV0bjTiKStrL/1W63T7PvKUGcu1EH3ym5uJBsnGskBOH4D Hn6mwvVoJ76MgHz7mM4meVK1YdQB/TSX8rbS7E1wfgsIONwjJH3tzgrFZRtQ2k6U 647vbUh5Sya0LC3N2rqvzZ4YOdcVq58Z+jYSoLgr7/h6rqMWi1VV1+dnJYLHV6q8 yoV7dfl/7tSDozUR5xGeYm2bPqMQw3uHm+v16RK2MELA9DfgOiPbFto6hirxc85/ g7yAxa4YQMkFU+R/at6djpwBoJMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMJdUFamnODQaFutjkjzOkpipcWCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mOTY0MDFlMy05ZjYyLTRiM2MtYmZmYi03ODMzNTVhZTY3NzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5NjQwMWUz LTlmNjItNGIzYy1iZmZiLTc4MzM1NWFlNjc3MC8wL0MyNUQ1MDU2QTY5Q0UwRDA2 ODVCQUQ4RTQ4RjMzQTRBNjJBNUM1ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnBAwDQQCAAIwBwMFACQGe8AwDQYJKoZIhvcNAQELBQADggEBAIDbDjUSTr2V NSXbR/2X1Sp1sO7wkmA56yy3RRvjiBkaU+UkZrcGHXlHeoigvPD7IftHRRRt+0tJ Lyswa6wZdS1IXh0VUfYJ3NtKtuCfDb5TjNZyPR/v8uqlpGbYMqyQoOIWHsV3MnZL lbHzGVuX3AhwsfMSv4lelWsI+8UoCmxI/XbGAdT8SpXlZFdxZGQjss3ho9livxoO ChwbwqV9QqWg8TMAOFVdU+el6lez8FUGLdwSwELYDPQAQC/4osGS/gJOx8PqC+pK wlfsPZSV7PDRBin03pfBRL/p2wqW6qul01kPVJH8JE+Yll8IEu0pfy7UFiR+NcaM hZG+9O67Zbs= -----END CERTIFICATE-----Generated at Thu May 9 00:37:10 2024 by rpki-client on console-fra.rpki-client.org