$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D454E26475969CECE78A97B9152AFC76DB922AA3.cer File: D454E26475969CECE78A97B9152AFC76DB922AA3.cer (raw, json) Hash identifier: g2I9RrXd9E9iJ7lelX2yDiwNBVoQi2ialVHq3ebY5d0= Subject key identifier: D4:54:E2:64:75:96:9C:EC:E7:8A:97:B9:15:2A:FC:76:DB:92:2A:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 307FB1821D896A82B88BC36982A47C0FACB225CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/D454E26475969CECE78A97B9152AFC76DB922AA3.mft caRepository: rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jan 2024 09:20:53 +0000 Certificate not after: Mon 30 Dec 2024 09:25:53 +0000 Subordinate resources: IP: 103.164.61.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:7f:b1:82:1d:89:6a:82:b8:8b:c3:69:82:a4:7c:0f:ac:b2:25:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 1 09:20:53 2024 GMT Not After : Dec 30 09:25:53 2024 GMT Subject: CN=D454E26475969CECE78A97B9152AFC76DB922AA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:8c:b9:29:75:3e:ec:42:ee:23:6e:83:e5: 77:02:2e:24:84:22:c4:b5:8c:df:4f:42:cd:9a:17: bd:eb:12:b9:15:97:a1:51:16:5a:9b:dd:8a:14:1e: 99:2b:6c:60:1b:83:ce:eb:4e:3d:14:ff:ce:00:6c: 63:8e:55:06:f7:97:a2:92:d2:44:5c:56:d9:d0:4f: 16:e7:71:5b:52:f0:90:6a:77:7b:d5:7e:b7:89:ec: 8f:fc:c8:c9:05:61:8c:ce:1f:2d:25:a7:69:77:97: 38:08:1a:36:28:ef:25:46:5b:39:ef:19:3b:8b:9f: 34:d4:eb:26:54:a2:59:45:f3:2b:81:0e:6e:68:60: e6:25:d2:88:ea:88:dd:84:f1:42:36:e9:62:2f:56: d6:8a:99:ee:23:79:83:7a:a6:03:df:e6:37:6e:6d: 1e:71:69:7f:51:3c:32:fc:32:82:56:97:af:79:2a: 09:b4:1e:71:7b:60:c7:2b:ef:50:ff:6e:99:5f:e1: 4d:66:55:e4:2f:6a:06:bd:c2:4f:20:b0:ea:ba:31: f8:1f:15:cf:7a:c9:2b:a0:7b:0b:75:7f:40:ac:56: 16:69:66:ce:2c:d3:d8:1a:66:cc:de:88:c2:c3:5a: 00:cf:32:9f:7a:9d:c5:04:fd:c8:3d:b3:4d:9c:06: 8c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:54:E2:64:75:96:9C:EC:E7:8A:97:B9:15:2A:FC:76:DB:92:2A:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/D454E26475969CECE78A97B9152AFC76DB922AA3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.61.0/24 Signature Algorithm: sha256WithRSAEncryption 20:47:fa:d5:5e:79:99:81:64:02:18:af:a4:b2:a9:ae:ce:a1: 2f:e9:2f:01:7d:0b:dd:19:03:c1:36:f6:26:05:09:59:44:ec: e1:19:61:45:c9:df:e3:fa:2f:8d:57:a9:6f:4c:69:bf:43:f1: a8:8e:ca:49:30:a5:81:66:14:13:69:73:78:a3:24:ad:31:31: 7d:cd:42:94:09:c7:11:15:0c:c5:09:65:76:f4:73:76:99:a3: 05:b8:3c:5f:09:2c:bd:23:12:c0:fd:8d:09:fa:c8:80:01:5e: 56:80:e0:07:72:1e:4f:57:69:6e:eb:d8:0b:1d:d4:cd:25:59: c0:57:3c:e7:3f:38:68:95:6b:46:65:a1:ae:7b:92:ca:67:92: 8e:8a:d9:95:1b:6f:57:22:60:86:27:53:23:72:04:e2:84:09: 56:7e:8a:27:cd:8c:60:56:f6:e6:da:a9:f2:43:ba:5f:d8:ec: e4:02:be:05:18:b6:fe:78:6a:82:25:74:5e:83:25:a6:55:11: 2e:60:e5:71:92:32:a0:33:dc:e5:94:0a:a8:15:df:88:cf:e3: 0a:65:fa:4a:8d:e8:98:bb:fc:62:2c:68:9d:b9:18:f2:99:95: 81:06:a7:de:8d:5c:a3:59:71:50:4e:38:0a:a4:aa:c0:30:31: 71:45:5f:66 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMH+xgh2JaoK4i8NpgqR8D6yyJcwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMTA5MjA1M1oX DTI0MTIzMDA5MjU1M1owMzExMC8GA1UEAxMoRDQ1NEUyNjQ3NTk2OUNFQ0U3OEE5 N0I5MTUyQUZDNzZEQjkyMkFBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALB8jLkpdT7sQu4jboPldwIuJIQixLWM309CzZoXvesSuRWXoVEWWpvdihQe mStsYBuDzutOPRT/zgBsY45VBveXopLSRFxW2dBPFudxW1LwkGp3e9V+t4nsj/zI yQVhjM4fLSWnaXeXOAgaNijvJUZbOe8ZO4ufNNTrJlSiWUXzK4EObmhg5iXSiOqI 3YTxQjbpYi9W1oqZ7iN5g3qmA9/mN25tHnFpf1E8MvwyglaXr3kqCbQecXtgxyvv UP9umV/hTWZV5C9qBr3CTyCw6rox+B8Vz3rJK6B7C3V/QKxWFmlmzizT2BpmzN6I wsNaAM8yn3qdxQT9yD2zTZwGjBcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNRU4mR1lpzs54qXuRUq/HbbkiqjMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYjE3YzIwNi05YjYzLTRjNTYtOTQzNi00NzVkODIxNDFhNjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMTdjMjA2 LTliNjMtNGM1Ni05NDM2LTQ3NWQ4MjE0MWE2Ni8wL0Q0NTRFMjY0NzU5NjlDRUNF NzhBOTdCOTE1MkFGQzc2REI5MjJBQTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpD0wDQYJKoZIhvcNAQELBQADggEBACBH+tVeeZmBZAIYr6Syqa7OoS/pLwF9 C90ZA8E29iYFCVlE7OEZYUXJ3+P6L41XqW9Mab9D8aiOykkwpYFmFBNpc3ijJK0x MX3NQpQJxxEVDMUJZXb0c3aZowW4PF8JLL0jEsD9jQn6yIABXlaA4AdyHk9XaW7r 2Asd1M0lWcBXPOc/OGiVa0Zloa57kspnko6K2ZUbb1ciYIYnUyNyBOKECVZ+iifN jGBW9ubaqfJDul/Y7OQCvgUYtv54aoIldF6DJaZVES5g5XGSMqAz3OWUCqgV34jP 4wpl+kqN6Ji7/GIsaJ25GPKZlYEGp96NXKNZcVBOOAqkqsAwMXFFX2Y= -----END CERTIFICATE-----Generated at Wed May 8 22:46:45 2024 by rpki-client on console-ams.rpki-client.org