$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer File: C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.cer (raw, json) Hash identifier: sKjCZrNDfEfANdP7ndsgiYmGze4c/GfiNnJJ/4BG0c4= Subject key identifier: C3:5E:D8:5B:36:F5:D5:19:D2:CD:1D:47:4B:E5:1C:13:F4:9A:7E:47 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 23094EA09FDB769EDB4CF0AC2AFA746E92883E22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.mft caRepository: rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 17 Jan 2024 07:42:24 +0000 Certificate not after: Wed 15 Jan 2025 07:47:24 +0000 Subordinate resources: IP: 203.14.18.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:09:4e:a0:9f:db:76:9e:db:4c:f0:ac:2a:fa:74:6e:92:88:3e:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 17 07:42:24 2024 GMT Not After : Jan 15 07:47:24 2025 GMT Subject: CN=C35ED85B36F5D519D2CD1D474BE51C13F49A7E47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:86:28:d6:88:4c:af:d5:89:59:ec:d6:0c:88: 3d:e6:d6:1d:de:ee:16:80:35:d9:ab:1d:c5:bf:c7: d6:a7:36:fd:02:fd:ae:fb:87:2a:f6:ea:34:85:4e: 57:00:85:44:0e:a3:59:8f:d9:96:4d:dd:97:57:dd: 29:15:0d:73:c6:be:57:ef:f1:5d:2a:6b:a1:f6:a1: 53:c3:aa:a2:5b:75:15:22:84:b7:30:0b:23:f9:85: 1e:7e:27:17:4e:05:9d:6d:ac:da:d6:17:57:13:7e: 1e:cf:ba:31:f5:29:67:26:8b:2d:84:12:4b:51:04: b8:ce:22:91:a5:45:ac:19:a6:44:5d:80:48:4a:0b: 95:db:09:84:70:42:a9:ac:56:e3:17:da:83:dd:f2: 5b:d3:1c:b8:b8:d9:45:15:6d:16:cb:2f:0e:8e:5d: 5a:c5:2b:75:8b:41:d9:d4:79:18:10:9c:14:0c:35: f0:dc:69:65:82:a4:98:9e:44:05:c8:02:70:f9:da: a6:6c:35:cf:15:70:84:e4:8a:99:b8:d2:de:b4:d9: 41:fd:3a:b6:0a:91:d3:0d:5e:f7:9a:bb:aa:04:61: 08:15:53:12:b0:98:c0:8d:b9:6a:7b:d8:08:52:03: 42:09:07:2d:c2:dd:29:9a:ef:6f:fe:e2:ac:b9:71: df:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C3:5E:D8:5B:36:F5:D5:19:D2:CD:1D:47:4B:E5:1C:13:F4:9A:7E:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/953666e1-1e41-42ed-abbc-a8c087f3f339/0/C35ED85B36F5D519D2CD1D474BE51C13F49A7E47.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.14.18.0/24 Signature Algorithm: sha256WithRSAEncryption 73:04:e4:40:e9:d5:b1:4b:e5:0e:33:7c:3c:7a:40:e8:ff:7d: e8:38:7b:f8:04:fe:72:98:38:07:a6:c4:19:78:65:14:d6:6a: 1d:58:b0:6a:6c:cc:c5:a0:0b:a4:d1:d0:15:40:9f:9d:0a:3b: 21:78:fe:ce:97:c4:22:da:6e:aa:c1:a7:d5:0e:d0:15:11:5c: 45:ac:02:78:f8:58:ed:bf:2b:07:30:18:bb:b2:7e:47:76:f2: 7f:9b:cb:d6:71:2a:06:10:34:75:8d:31:ea:8f:79:ac:64:8b: 1c:70:74:a7:4b:c9:0f:3a:4b:03:1d:9b:50:ff:46:c9:2f:a7: ab:cc:09:97:59:0e:e9:03:f3:c8:af:5c:65:5a:68:89:6f:c1: c1:60:84:2f:a5:0c:7d:1a:ff:92:5f:cd:2d:32:54:e7:82:48: b1:d1:75:4f:f6:a4:05:53:8b:d7:9d:11:73:5f:ab:a4:5b:44: 34:63:f0:93:5e:48:1c:62:5c:c0:36:80:5a:6f:ee:11:86:1f: 51:45:a0:c1:44:9d:0d:cb:15:2e:43:f6:ae:42:27:e6:1c:61: 5f:64:4a:9c:76:89:3c:96:f6:79:d6:e1:9f:37:53:96:55:cb: 2a:13:de:57:2d:82:36:48:44:c0:a6:61:ab:77:a4:4e:1c:11: f6:3d:c2:1b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIwlOoJ/bdp7bTPCsKvp0bpKIPiIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNzA3NDIyNFoX DTI1MDExNTA3NDcyNFowMzExMC8GA1UEAxMoQzM1RUQ4NUIzNkY1RDUxOUQyQ0Qx RDQ3NEJFNTFDMTNGNDlBN0U0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWGKNaITK/ViVns1gyIPebWHd7uFoA12asdxb/H1qc2/QL9rvuHKvbqNIVO VwCFRA6jWY/Zlk3dl1fdKRUNc8a+V+/xXSprofahU8Oqolt1FSKEtzALI/mFHn4n F04FnW2s2tYXVxN+Hs+6MfUpZyaLLYQSS1EEuM4ikaVFrBmmRF2ASEoLldsJhHBC qaxW4xfag93yW9McuLjZRRVtFssvDo5dWsUrdYtB2dR5GBCcFAw18NxpZYKkmJ5E BcgCcPnapmw1zxVwhOSKmbjS3rTZQf06tgqR0w1e95q7qgRhCBVTErCYwI25anvY CFIDQgkHLcLdKZrvb/7irLlx30kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMNe2Fs29dUZ0s0dR0vlHBP0mn5HMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NTM2NjZlMS0xZTQxLTQyZWQtYWJiYy1hOGMwODdmM2YzMzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1MzY2NmUx LTFlNDEtNDJlZC1hYmJjLWE4YzA4N2YzZjMzOS8wL0MzNUVEODVCMzZGNUQ1MTlE MkNEMUQ0NzRCRTUxQzEzRjQ5QTdFNDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADLDhIwDQYJKoZIhvcNAQELBQADggEBAHME5EDp1bFL5Q4zfDx6QOj/feg4e/gE /nKYOAemxBl4ZRTWah1YsGpszMWgC6TR0BVAn50KOyF4/s6XxCLabqrBp9UO0BUR XEWsAnj4WO2/KwcwGLuyfkd28n+by9ZxKgYQNHWNMeqPeaxkixxwdKdLyQ86SwMd m1D/Rskvp6vMCZdZDukD88ivXGVaaIlvwcFghC+lDH0a/5JfzS0yVOeCSLHRdU/2 pAVTi9edEXNfq6RbRDRj8JNeSBxiXMA2gFpv7hGGH1FFoMFEnQ3LFS5D9q5CJ+Yc YV9kSpx2iTyW9nnW4Z83U5ZVyyoT3lctgjZIRMCmYat3pE4cEfY9whs= -----END CERTIFICATE-----Generated at Wed May 8 17:45:25 2024 by rpki-client on console-ams.rpki-client.org