$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C5247B1CF64591B1DB27280B439B507E56BF0232.cer File: C5247B1CF64591B1DB27280B439B507E56BF0232.cer (raw, json) Hash identifier: +i9sVNT9+k25LjkLMZxbvlW8xf4RLZhhyJdsyyPuXAo= Subject key identifier: C5:24:7B:1C:F6:45:91:B1:DB:27:28:0B:43:9B:50:7E:56:BF:02:32 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4777AA35A833F920F53705FD201C4D755A3890C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0/C5247B1CF64591B1DB27280B439B507E56BF0232.mft caRepository: rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 07 Dec 2023 11:19:31 +0000 Certificate not after: Thu 05 Dec 2024 11:24:31 +0000 Subordinate resources: IP: 203.81.184.0/21 IP: 2403:2600::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:77:aa:35:a8:33:f9:20:f5:37:05:fd:20:1c:4d:75:5a:38:90:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 7 11:19:31 2023 GMT Not After : Dec 5 11:24:31 2024 GMT Subject: CN=C5247B1CF64591B1DB27280B439B507E56BF0232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:dd:45:0e:4f:f0:06:cd:ae:45:90:3a:e1:a8: e8:0a:51:59:49:f7:57:70:96:4f:f0:41:82:72:be: b5:9a:30:46:de:ee:97:86:70:14:58:c5:f7:5c:d7: f7:7c:cd:d9:06:08:a2:bd:ce:cc:c1:8c:5c:d2:48: fc:64:11:07:b0:c7:a8:2a:a7:b0:34:41:bf:e7:e6: 71:bc:40:61:e9:1a:07:a0:7b:51:d4:43:90:0b:8d: 53:02:c5:da:df:67:6c:32:8a:4f:da:0e:6f:ae:cf: 3d:fb:b5:0f:f9:a3:a9:e1:f4:aa:1a:26:84:b7:fc: ee:11:b1:14:8b:19:f8:43:f9:53:c7:c1:9f:fa:54: 6e:0a:33:c5:bc:23:e6:22:e6:bf:c7:71:0e:5e:76: ba:db:0f:18:03:db:07:74:ae:af:4d:c6:94:8c:79: ed:4b:5d:73:eb:b7:60:c8:a3:77:e9:75:fd:20:1d: 7c:af:41:97:03:d7:e1:f9:00:ee:87:ad:31:5a:c2: 83:fe:c3:c8:89:18:d5:35:77:c3:08:fb:46:0e:6b: ab:ae:f1:48:e1:47:60:d9:90:a6:c0:ef:e3:8b:92: fa:05:e4:c6:3c:8c:7b:3b:74:6f:b4:03:32:7f:e7: 46:a8:62:29:77:66:b5:e5:d4:ca:63:1c:32:19:ae: 0e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C5:24:7B:1C:F6:45:91:B1:DB:27:28:0B:43:9B:50:7E:56:BF:02:32 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0/C5247B1CF64591B1DB27280B439B507E56BF0232.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.81.184.0/21 IPv6: 2403:2600::/32 Signature Algorithm: sha256WithRSAEncryption 7f:2f:a6:af:3e:f7:4e:af:06:cd:78:bf:c1:47:3a:6f:6d:17: 17:33:18:da:1c:ad:a2:06:dd:0b:67:e6:d7:0d:b6:3f:e9:42: 73:9c:81:6b:64:bd:25:5d:a8:d5:81:25:12:32:ea:eb:db:9a: 4b:c2:e4:a6:eb:9b:c4:3b:22:e6:01:c8:bc:fe:1d:81:a3:c8: fb:14:e4:7f:87:d0:31:4e:39:e9:b5:f0:0f:12:fc:07:f6:e3: 4e:f4:20:d5:45:c6:6e:95:b5:88:88:02:61:c1:c0:0f:1a:4a: 38:2e:06:24:7d:cc:8d:be:ea:5e:55:48:1c:65:cd:e8:10:9a: 02:68:f4:62:04:31:b4:7d:cf:90:c2:91:7b:f5:58:38:b0:63: f0:10:be:a9:f7:a6:6c:7a:b2:89:48:f0:8e:c4:42:62:fb:4e: 01:93:23:fb:c0:9a:c6:5f:58:8d:ca:f7:8e:81:28:75:48:78: e1:0f:5a:a5:e5:20:e6:1b:dd:96:04:e8:11:b2:a8:97:e1:31: cc:85:ef:5f:c2:d8:05:16:f6:66:53:d7:3d:c0:a5:ed:41:db: ad:88:b8:06:fa:34:65:fa:93:d2:47:e5:39:dc:2e:b6:02:54: 3d:3f:eb:47:23:e1:01:e6:59:ba:a8:56:ad:b8:1b:2a:d5:17: 12:53:e0:c8 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUR3eqNagz+SD1NwX9IBxNdVo4kMAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwNzExMTkzMVoX DTI0MTIwNTExMjQzMVowMzExMC8GA1UEAxMoQzUyNDdCMUNGNjQ1OTFCMURCMjcy ODBCNDM5QjUwN0U1NkJGMDIzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANDdRQ5P8AbNrkWQOuGo6ApRWUn3V3CWT/BBgnK+tZowRt7ul4ZwFFjF91zX 93zN2QYIor3OzMGMXNJI/GQRB7DHqCqnsDRBv+fmcbxAYekaB6B7UdRDkAuNUwLF 2t9nbDKKT9oOb67PPfu1D/mjqeH0qhomhLf87hGxFIsZ+EP5U8fBn/pUbgozxbwj 5iLmv8dxDl52utsPGAPbB3Sur03GlIx57Utdc+u3YMijd+l1/SAdfK9BlwPX4fkA 7oetMVrCg/7DyIkY1TV3wwj7Rg5rq67xSOFHYNmQpsDv44uS+gXkxjyMezt0b7QD Mn/nRqhiKXdmteXUymMcMhmuDq0CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMUkexz2RZGx2ycoC0ObUH5WvwIyMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jMWEyOWE3NS1jNWI5LTQ3NWItOWQ5Ni02ZDFhMTVlYWUyNGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYTI5YTc1 LWM1YjktNDc1Yi05ZDk2LTZkMWExNWVhZTI0ZC8wL0M1MjQ3QjFDRjY0NTkxQjFE QjI3MjgwQjQzOUI1MDdFNTZCRjAyMzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAPLUbgwDQQCAAIwBwMFACQDJgAwDQYJKoZIhvcNAQELBQADggEBAH8vpq8+906v Bs14v8FHOm9tFxczGNocraIG3Qtn5tcNtj/pQnOcgWtkvSVdqNWBJRIy6uvbmkvC 5Kbrm8Q7IuYByLz+HYGjyPsU5H+H0DFOOem18A8S/Af24070INVFxm6VtYiIAmHB wA8aSjguBiR9zI2+6l5VSBxlzegQmgJo9GIEMbR9z5DCkXv1WDiwY/AQvqn3pmx6 solI8I7EQmL7TgGTI/vAmsZfWI3K946BKHVIeOEPWqXlIOYb3ZYE6BGyqJfhMcyF 71/C2AUW9mZT1z3Ape1B262IuAb6NGX6k9JH5TncLrYCVD0/60cj4QHmWbqoVq24 GyrVFxJT4Mg= -----END CERTIFICATE-----Generated at Thu May 9 00:37:10 2024 by rpki-client on console-fra.rpki-client.org