$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.cer File: CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.cer (raw, json) Hash identifier: YbGNr0AjHH2HVVhZqMwdefGOW3TNz4gkI7z0KhQMvDg= Subject key identifier: CE:A3:B5:35:64:D3:F6:15:E6:30:CD:DA:A7:BA:5A:E8:FE:7E:9A:EC Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 26A82A6D62A97C5D67DEFA48CBB61726F253B7D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.mft caRepository: rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 18 Oct 2023 11:18:47 +0000 Certificate not after: Wed 16 Oct 2024 11:23:47 +0000 Subordinate resources: IP: 103.177.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a8:2a:6d:62:a9:7c:5d:67:de:fa:48:cb:b6:17:26:f2:53:b7:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 11:18:47 2023 GMT Not After : Oct 16 11:23:47 2024 GMT Subject: CN=CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:f5:a9:ef:e9:f4:ba:ba:58:76:2f:3a:50: 86:c4:fc:24:43:88:98:d1:48:48:fe:81:9c:9a:78: 89:b3:ea:52:1c:34:2d:2b:dc:e1:5d:00:4e:77:ad: 64:09:3d:28:76:9c:ed:8c:fb:d4:30:2b:cc:05:f6: 89:af:f1:6d:a7:26:6a:5c:1f:90:93:fc:aa:22:bd: e3:68:2f:18:6d:1b:41:b7:85:8d:ef:24:a6:cf:19: 3c:1b:4c:e3:fa:13:1d:0b:68:44:97:e6:2e:6d:54: 5f:95:a0:72:e9:85:33:63:f8:be:d5:db:de:90:27: d2:8e:82:9e:b9:57:65:55:e2:12:84:8f:a9:bb:c0: 11:f7:c2:4a:3a:d7:8e:3a:91:19:9f:75:b2:96:64: fc:c7:d9:16:96:0d:cc:0a:5f:36:03:3f:cd:4c:85: 49:5f:3b:67:4e:54:90:31:5f:62:48:ff:b1:3d:d6: cf:d7:aa:8e:2f:86:52:be:d9:6c:be:ea:60:f3:47: dc:3c:4a:ed:68:62:d8:08:e8:c7:4e:71:5a:f9:1c: e3:6a:76:b3:4d:88:b5:32:d0:1c:86:2f:f0:98:65: f3:40:01:04:47:62:48:30:1c:b5:17:80:56:2b:8c: 30:31:33:84:a8:bc:30:bd:f2:87:75:61:d4:16:2c: 6c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CE:A3:B5:35:64:D3:F6:15:E6:30:CD:DA:A7:BA:5A:E8:FE:7E:9A:EC X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9ccc5f64-ed62-4848-8c38-42df48e34bb6/0/CEA3B53564D3F615E630CDDAA7BA5AE8FE7E9AEC.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.90.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:3f:f2:5b:e2:6f:c5:2d:38:db:45:da:a3:79:e8:38:b1:a0: 1f:29:1d:dc:00:71:92:8d:6a:cc:e4:36:ca:47:8a:4a:db:39: 7b:49:fe:47:bd:21:be:52:e3:01:31:5b:33:8c:b4:56:b0:08: 1d:54:61:35:8d:69:85:3c:76:76:ae:d4:21:76:17:b1:3b:c7: 9f:4a:29:2a:0b:2f:ec:9c:a9:4b:b0:71:a4:f9:45:bb:8d:c6: 5c:83:3d:dc:10:c9:1b:d3:24:9d:0c:5a:47:8f:1f:a1:6b:36: de:21:4f:08:9a:ac:fc:24:08:1c:9b:65:20:2c:42:19:48:54: f9:bb:7f:1e:30:c5:7c:fd:fb:a7:66:de:aa:47:de:61:ec:23: 9f:17:23:5f:a9:b2:c0:05:27:64:e3:fc:72:1b:7d:82:dc:cc: ed:0d:f8:07:3b:7f:ea:60:c7:6f:e6:64:37:97:74:34:40:90: 41:cd:43:71:85:62:66:15:2b:28:f8:17:0c:c2:1f:23:59:11: 83:99:e9:56:ac:da:1e:ca:63:5e:69:7b:1f:86:32:aa:ea:20: fe:be:81:cb:2c:aa:66:35:1e:d6:6d:67:17:73:47:4a:39:45: 33:90:0e:68:eb:4a:6d:9c:d7:f8:d0:cd:24:c2:c3:7d:b8:99: ba:f6:db:40 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJqgqbWKpfF1n3vpIy7YXJvJTt9AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxODExMTg0N1oX DTI0MTAxNjExMjM0N1owMzExMC8GA1UEAxMoQ0VBM0I1MzU2NEQzRjYxNUU2MzBD RERBQTdCQTVBRThGRTdFOUFFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALg79anv6fS6ulh2LzpQhsT8JEOImNFISP6BnJp4ibPqUhw0LSvc4V0ATnet ZAk9KHac7Yz71DArzAX2ia/xbacmalwfkJP8qiK942gvGG0bQbeFje8kps8ZPBtM 4/oTHQtoRJfmLm1UX5WgcumFM2P4vtXb3pAn0o6CnrlXZVXiEoSPqbvAEffCSjrX jjqRGZ91spZk/MfZFpYNzApfNgM/zUyFSV87Z05UkDFfYkj/sT3Wz9eqji+GUr7Z bL7qYPNH3DxK7Whi2Ajox05xWvkc42p2s02ItTLQHIYv8Jhl80ABBEdiSDActReA ViuMMDEzhKi8ML3yh3Vh1BYsbDUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM6jtTVk0/YV5jDN2qe6Wuj+fprsMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85Y2NjNWY2NC1lZDYyLTQ4NDgtOGMzOC00MmRmNDhlMzRiYjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzljY2M1ZjY0 LWVkNjItNDg0OC04YzM4LTQyZGY0OGUzNGJiNi8wL0NFQTNCNTM1NjREM0Y2MTVF NjMwQ0REQUE3QkE1QUU4RkU3RTlBRUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsVowDQYJKoZIhvcNAQELBQADggEBAF4/8lvib8UtONtF2qN56DixoB8pHdwA cZKNaszkNspHikrbOXtJ/ke9Ib5S4wExWzOMtFawCB1UYTWNaYU8dnau1CF2F7E7 x59KKSoLL+ycqUuwcaT5RbuNxlyDPdwQyRvTJJ0MWkePH6FrNt4hTwiarPwkCByb ZSAsQhlIVPm7fx4wxXz9+6dm3qpH3mHsI58XI1+pssAFJ2Tj/HIbfYLczO0N+Ac7 f+pgx2/mZDeXdDRAkEHNQ3GFYmYVKyj4FwzCHyNZEYOZ6Vas2h7KY15pex+GMqrq IP6+gcssqmY1HtZtZxdzR0o5RTOQDmjrSm2c1/jQzSTCw324mbr220A= -----END CERTIFICATE-----Generated at Fri May 3 03:08:33 2024 by rpki-client on console-ams.rpki-client.org