$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer File: CA978B7ACEF55A251B74721E04A034CA3601A88B.cer (raw, json) Hash identifier: omS5N7eWXpzrFIlxYDvxQpmsGyZ3IroEcHmaG4HcKTA= Subject key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 10F532BD9CE404135B2F58B28FE592B27C0F57AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft caRepository: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 18 Dec 2023 19:07:35 +0000 Certificate not after: Mon 16 Dec 2024 19:12:35 +0000 Subordinate resources: IP: 103.83.236.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f5:32:bd:9c:e4:04:13:5b:2f:58:b2:8f:e5:92:b2:7c:0f:57:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 19:07:35 2023 GMT Not After : Dec 16 19:12:35 2024 GMT Subject: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4e:a1:0f:c1:82:af:be:57:88:07:3c:e4:6a: 24:68:d3:56:c3:0c:1f:8e:85:60:8d:ac:e1:28:4d: 91:34:31:95:37:9e:e1:b6:9d:37:f9:16:11:24:69: 1e:1c:6b:08:db:64:d3:d9:2e:06:28:bc:7a:a8:bd: af:7b:5b:08:c0:26:6d:38:93:44:b9:07:3a:09:12: 35:aa:33:b3:b7:d4:f0:5b:ab:a6:82:10:d3:d0:cd: a1:8f:2f:eb:8e:60:3c:81:a9:00:04:aa:be:16:9e: 10:63:71:78:a0:42:f3:ab:b6:e8:d3:76:6c:b7:73: 21:d6:7c:49:dc:5b:32:e7:8c:cd:31:ef:45:d0:c0: 4e:5c:21:29:c1:05:dc:04:22:b3:0b:98:9d:04:29: 9a:d0:6d:47:71:33:b7:6c:71:9a:f5:d9:85:d8:d7: 5b:1f:fb:ea:a1:6b:5c:6c:2f:27:94:c1:99:ca:60: 1e:c5:8f:ef:d5:57:73:4d:f9:df:35:b2:be:c4:6f: d5:e7:3b:4b:61:dc:00:89:3e:27:d6:7f:9a:50:97: e8:0d:f8:3a:39:88:db:f0:6a:08:7d:9c:d5:51:8a: 89:54:e1:6a:02:c0:ff:54:2a:a4:41:5a:08:b0:6a: 34:c6:37:00:10:c2:9c:61:e6:a5:17:cf:c2:42:48: d9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.236.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:ac:e9:1a:1b:00:f9:82:2b:ab:09:da:f6:2f:42:24:d0:2b: fc:53:c1:ee:dd:e3:12:1c:12:e5:e7:85:6f:e6:ba:fa:81:d0: f9:9b:2c:ef:ca:0d:ee:69:d9:4a:73:af:bd:b5:85:91:7c:82: 6c:7b:28:38:a1:7c:ef:56:cc:18:88:35:5c:c7:6c:ba:32:db: a3:37:23:8e:51:94:0d:66:9c:b9:5a:78:90:80:d5:31:46:57: 40:13:2f:ec:fe:d1:5b:37:c8:37:ec:45:59:f7:fc:d2:6c:cb: 87:4c:d3:01:40:15:27:30:bd:7e:e5:80:41:f6:b1:61:01:1f: 91:5b:2c:c6:df:6a:29:c8:15:1c:ec:e3:25:9a:e9:92:14:bf: 40:b4:41:0d:50:1d:f6:bd:71:dc:54:7a:cc:cf:0c:23:8e:ba: fc:bc:a3:3a:a0:8d:ff:f2:f2:15:0c:0a:78:c6:15:f2:01:9e: 4d:b0:6c:2b:01:bc:95:93:f9:96:42:1d:c0:05:1c:8b:75:5c: 14:21:50:19:df:db:22:27:eb:99:53:33:28:7f:dd:4f:83:49: 41:92:ac:a2:2a:11:60:52:91:12:87:08:39:9f:d6:e5:92:26: cb:1f:95:32:99:da:ec:78:02:a5:fb:8c:2e:b2:21:f3:1a:b3: 79:3e:9d:13 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEPUyvZzkBBNbL1iyj+WSsnwPV64wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxODE5MDczNVoX DTI0MTIxNjE5MTIzNVowMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3 MjFFMDRBMDM0Q0EzNjAxQTg4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFOoQ/Bgq++V4gHPORqJGjTVsMMH46FYI2s4ShNkTQxlTee4badN/kWESRp HhxrCNtk09kuBii8eqi9r3tbCMAmbTiTRLkHOgkSNaozs7fU8FurpoIQ09DNoY8v 645gPIGpAASqvhaeEGNxeKBC86u26NN2bLdzIdZ8SdxbMueMzTHvRdDATlwhKcEF 3AQiswuYnQQpmtBtR3Ezt2xxmvXZhdjXWx/76qFrXGwvJ5TBmcpgHsWP79VXc035 3zWyvsRv1ec7S2HcAIk+J9Z/mlCX6A34OjmI2/BqCH2c1VGKiVThagLA/1QqpEFa CLBqNMY3ABDCnGHmpRfPwkJI2QUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMqXi3rO9VolG3RyHgSgNMo2AaiLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYTNjZmY3 LTJhYTEtNDRkZi05MTRjLWYxOTE4NGY2ZjNiMS8wL0NBOTc4QjdBQ0VGNTVBMjUx Qjc0NzIxRTA0QTAzNENBMzYwMUE4OEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnU+wwDQYJKoZIhvcNAQELBQADggEBAI+s6RobAPmCK6sJ2vYvQiTQK/xTwe7d 4xIcEuXnhW/muvqB0PmbLO/KDe5p2Upzr721hZF8gmx7KDihfO9WzBiINVzHbLoy 26M3I45RlA1mnLlaeJCA1TFGV0ATL+z+0Vs3yDfsRVn3/NJsy4dM0wFAFScwvX7l gEH2sWEBH5FbLMbfainIFRzs4yWa6ZIUv0C0QQ1QHfa9cdxUeszPDCOOuvy8ozqg jf/y8hUMCnjGFfIBnk2wbCsBvJWT+ZZCHcAFHIt1XBQhUBnf2yIn65lTMyh/3U+D SUGSrKIqEWBSkRKHCDmf1uWSJssflTKZ2ux4AqX7jC6yIfMas3k+nRM= -----END CERTIFICATE-----Generated at Wed May 8 10:06:56 2024 by rpki-client on console-ams.rpki-client.org