$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer File: C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer (raw, json) Hash identifier: RRed5orUTP0jYc/zMGa4NbTlX6UNE5Lq7KCHHX3AW18= Subject key identifier: C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2D9AED77B63E9A0F1EDFA1521E7F7CA8D244830A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.mft caRepository: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 12 Feb 2024 09:52:21 +0000 Certificate not after: Mon 10 Feb 2025 09:57:21 +0000 Subordinate resources: IP: 103.158.250.0/23 IP: 2406:c5c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:9a:ed:77:b6:3e:9a:0f:1e:df:a1:52:1e:7f:7c:a8:d2:44:83:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 12 09:52:21 2024 GMT Not After : Feb 10 09:57:21 2025 GMT Subject: CN=C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9a:3a:9e:10:ad:04:b7:6f:3c:5f:f5:dd:bf: 88:7b:d2:1f:3b:6c:7b:fc:59:c6:fa:f6:1f:ae:a2: 72:97:e3:b9:fe:31:fb:6e:f8:d8:50:e4:cd:e5:87: f5:ef:d7:92:a4:70:2a:a4:c6:04:2d:49:85:d4:bb: ab:30:d1:1d:d9:c4:5c:46:39:fd:c7:62:a5:fe:f7: 79:23:42:4c:b9:71:87:3f:fe:b5:00:82:ae:c8:c4: a0:49:d2:42:76:d7:d4:66:e4:d3:4e:21:04:9b:ee: b7:40:da:74:9f:f4:44:58:d0:7c:b3:fe:b2:57:62: b0:8d:02:a4:39:36:f2:e3:02:89:2e:c8:f7:d3:e6: 74:4f:46:b9:d4:cd:5c:88:1f:18:ce:95:4c:ed:0e: 03:6e:33:40:47:26:78:b9:98:8f:a8:00:65:2e:79: 04:e8:b1:c1:3a:2d:44:c9:23:7c:15:82:92:be:e2: a7:e8:a6:38:12:29:ee:53:e4:9d:f2:59:6a:55:01: cb:73:e7:0b:c8:91:8e:54:36:1d:58:0a:6c:73:3d: 71:8d:e5:66:f1:8d:e3:2b:55:17:91:8b:a3:7e:f7: 5f:e2:7e:e2:86:9c:93:b5:ea:60:f0:52:df:c6:3c: 66:72:61:21:ab:b4:90:01:2a:d5:cd:33:e3:f7:0b: 8c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.250.0/23 IPv6: 2406:c5c0::/32 Signature Algorithm: sha256WithRSAEncryption 09:b2:c6:a0:a5:a6:11:cb:da:59:72:d6:12:f7:05:1e:32:7b: a3:23:9a:3c:32:27:96:0a:66:80:13:0f:e1:ee:71:a5:92:d6: ad:50:43:aa:f4:71:fb:31:22:eb:ff:c4:94:75:03:19:49:9a: 3a:ab:71:1b:54:ee:16:47:7f:1d:8e:59:7b:07:47:4a:b0:2f: fe:5d:18:33:7c:bc:ca:b2:6f:ee:58:c7:a6:c7:20:a0:70:0a: 89:73:8e:c3:99:8e:89:b1:3b:8e:8a:2d:64:09:73:28:a9:4b: 20:a8:f2:fc:7c:d8:d0:de:43:99:36:d5:dc:8e:68:7a:57:fc: 3e:c4:a7:27:6a:ca:b9:7b:14:ad:49:0d:40:41:f1:d5:da:96: e3:be:27:a2:26:9d:ff:b4:ba:80:54:9e:97:21:f5:d3:9b:a5: 00:98:61:50:e1:d2:7c:51:0a:d7:48:3d:ee:46:87:1d:d8:26: 05:b4:6d:39:20:27:ad:70:e3:fe:0f:55:75:82:72:3a:e0:82: f4:d7:5d:d3:c3:95:c8:6c:62:b4:ce:53:ca:7a:1a:07:0e:0c: 4f:81:e1:05:0a:17:6e:c1:cc:6c:a8:25:ab:7a:7d:0c:5d:fd: 52:ff:7e:97:f3:41:c2:27:9f:91:3c:35:41:5a:74:02:72:e3: c8:8a:8f:41 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIULZrtd7Y+mg8e36FSHn98qNJEgwowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIxMjA5NTIyMVoX DTI1MDIxMDA5NTcyMVowMzExMC8GA1UEAxMoQzU1NEU4OTFDNTgzQ0UyQUJGMkRC NURFRTgyMUY2QjYzMEJGRjVERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKaOp4QrQS3bzxf9d2/iHvSHztse/xZxvr2H66icpfjuf4x+2742FDkzeWH 9e/XkqRwKqTGBC1JhdS7qzDRHdnEXEY5/cdipf73eSNCTLlxhz/+tQCCrsjEoEnS QnbX1Gbk004hBJvut0DadJ/0RFjQfLP+sldisI0CpDk28uMCiS7I99PmdE9GudTN XIgfGM6VTO0OA24zQEcmeLmYj6gAZS55BOixwTotRMkjfBWCkr7ip+imOBIp7lPk nfJZalUBy3PnC8iRjlQ2HVgKbHM9cY3lZvGN4ytVF5GLo373X+J+4oack7XqYPBS 38Y8ZnJhIau0kAEq1c0z4/cLjE8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMVU6JHFg84qvy213ugh9rYwv/XfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZDdjN2FjMi01YTliLTQ5MmEtYTRjNS0xZjEzNTkwZGFlMDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkN2M3YWMy LTVhOWItNDkyYS1hNGM1LTFmMTM1OTBkYWUwNi8wL0M1NTRFODkxQzU4M0NFMkFC RjJEQjVERUU4MjFGNkI2MzBCRkY1REYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnvowDQQCAAIwBwMFACQGxcAwDQYJKoZIhvcNAQELBQADggEBAAmyxqClphHL 2lly1hL3BR4ye6MjmjwyJ5YKZoATD+HucaWS1q1QQ6r0cfsxIuv/xJR1AxlJmjqr cRtU7hZHfx2OWXsHR0qwL/5dGDN8vMqyb+5Yx6bHIKBwColzjsOZjomxO46KLWQJ cyipSyCo8vx82NDeQ5k21dyOaHpX/D7Epydqyrl7FK1JDUBB8dXaluO+J6Imnf+0 uoBUnpch9dObpQCYYVDh0nxRCtdIPe5Ghx3YJgW0bTkgJ61w4/4PVXWCcjrggvTX XdPDlchsYrTOU8p6GgcODE+B4QUKF27BzGyoJat6fQxd/VL/fpfzQcInn5E8NUFa dAJy48iKj0E= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:32 2024 by rpki-client on console-ams.rpki-client.org