$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D84954514E2FF8171F1DC8D8C911A96481911DBB.cer File: D84954514E2FF8171F1DC8D8C911A96481911DBB.cer (raw, json) Hash identifier: a+a6qWzXVbBOKmxMIZUDVmDmI7/8JHtFMK7vyTC9ot8= Subject key identifier: D8:49:54:51:4E:2F:F8:17:1F:1D:C8:D8:C9:11:A9:64:81:91:1D:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 73AA2302A363A23B4ABD4E6F7FC802FAF7C40B70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.mft caRepository: rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 12 Jun 2023 08:37:48 +0000 Certificate not after: Mon 10 Jun 2024 08:42:48 +0000 Subordinate resources: IP: 103.175.87.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:aa:23:02:a3:63:a2:3b:4a:bd:4e:6f:7f:c8:02:fa:f7:c4:0b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 12 08:37:48 2023 GMT Not After : Jun 10 08:42:48 2024 GMT Subject: CN=D84954514E2FF8171F1DC8D8C911A96481911DBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3e:e6:49:8a:c4:9d:b7:3f:e4:cf:cc:c7:71: 7a:b4:42:3c:ce:23:2c:8c:dc:a1:b1:19:df:04:93: 3e:b7:66:63:24:65:86:4f:61:78:d7:95:41:4c:f4: 1c:02:b9:20:cd:1c:d1:57:9a:88:19:e6:b2:c3:5e: ca:b6:82:be:28:c9:bd:4a:cf:0d:c3:2d:4a:35:fb: 70:2d:54:4e:7e:e0:a2:1c:7a:67:3e:e8:74:a8:4f: 28:b1:77:dc:8c:1f:13:83:ae:e2:61:db:64:3b:df: b8:a9:c6:e9:c5:17:1e:cf:f4:82:33:34:70:57:df: a0:94:44:2b:c8:42:87:27:1d:7c:76:4d:df:25:21: 3b:ef:ac:3b:9d:f2:fb:a0:08:8a:ed:5a:53:75:59: fa:84:41:4a:79:c3:4a:71:14:d6:b6:99:6e:8d:a3: 7a:7a:13:5c:00:63:04:86:1b:a8:4f:de:e7:94:63: 50:1b:a3:93:19:b9:a0:c1:ec:b5:e2:36:22:77:a0: 93:f5:12:fb:1a:92:46:23:d4:43:76:6e:34:76:14: d4:8d:be:79:c5:c9:af:18:1a:24:a3:64:43:86:b4: b9:3d:5d:1f:1d:fa:a2:b6:1a:55:a8:86:ee:b4:99: 44:e5:2c:a4:87:a0:82:e0:f3:71:c3:18:ce:a2:50: e8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D8:49:54:51:4E:2F:F8:17:1F:1D:C8:D8:C9:11:A9:64:81:91:1D:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.87.0/24 Signature Algorithm: sha256WithRSAEncryption 33:5a:02:f9:31:d4:01:4b:b8:0f:f2:30:37:6e:e0:93:2f:0a: 7b:a0:a2:aa:55:87:84:8a:c6:25:9d:76:11:5a:dc:49:bb:82: 5b:17:a5:10:bd:c7:87:56:43:ae:ab:80:08:d3:9e:c3:6c:87: 73:da:52:b1:69:e8:c5:88:1a:76:80:53:c5:2b:7a:24:8e:36: dd:90:88:72:c8:c4:5b:4a:ef:44:ce:45:30:d9:5f:57:20:e3: 4d:ae:9e:57:76:82:62:c9:43:cb:1c:64:02:c9:10:86:e0:e1: 2b:53:a4:68:e6:6a:bc:57:b3:9a:af:b2:c3:59:7e:b9:b5:f4: 12:92:e9:8f:08:4d:00:31:bb:57:ed:75:f8:af:be:8c:13:61: 96:21:c7:2a:54:6b:37:53:47:e9:21:26:55:eb:c6:f0:cc:29: 3b:3b:11:6e:6b:12:9c:ce:09:21:72:9b:6e:6a:4f:96:71:b9: 26:9c:d5:a3:9c:c9:23:3e:8f:f5:a2:a4:22:b2:5b:95:5a:b5: 01:7f:c1:6f:fd:c4:11:2b:3b:6f:23:de:82:1c:6b:28:63:ba: 51:0a:06:76:c3:c3:8d:6f:0c:35:22:bf:8c:af:15:cf:64:f9: f5:fa:03:25:3a:80:de:e9:15:c2:42:58:a6:2c:63:24:cd:05: 27:8d:95:4b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUc6ojAqNjojtKvU5vf8gC+vfEC3AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxMjA4Mzc0OFoX DTI0MDYxMDA4NDI0OFowMzExMC8GA1UEAxMoRDg0OTU0NTE0RTJGRjgxNzFGMURD OEQ4QzkxMUE5NjQ4MTkxMURCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMM+5kmKxJ23P+TPzMdxerRCPM4jLIzcobEZ3wSTPrdmYyRlhk9heNeVQUz0 HAK5IM0c0VeaiBnmssNeyraCvijJvUrPDcMtSjX7cC1UTn7gohx6Zz7odKhPKLF3 3IwfE4Ou4mHbZDvfuKnG6cUXHs/0gjM0cFffoJREK8hChycdfHZN3yUhO++sO53y +6AIiu1aU3VZ+oRBSnnDSnEU1raZbo2jenoTXABjBIYbqE/e55RjUBujkxm5oMHs teI2Inegk/US+xqSRiPUQ3ZuNHYU1I2+ecXJrxgaJKNkQ4a0uT1dHx36orYaVaiG 7rSZROUspIegguDzccMYzqJQ6DkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNhJVFFOL/gXHx3I2MkRqWSBkR27MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNWI4NDU5YS1lMzUxLTRjOGQtYmMyOS01ZmQwOGM0YzU5NDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1Yjg0NTlh LWUzNTEtNGM4ZC1iYzI5LTVmZDA4YzRjNTk0MS8wL0Q4NDk1NDUxNEUyRkY4MTcx RjFEQzhEOEM5MTFBOTY0ODE5MTFEQkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnr1cwDQYJKoZIhvcNAQELBQADggEBADNaAvkx1AFLuA/yMDdu4JMvCnugoqpV h4SKxiWddhFa3Em7glsXpRC9x4dWQ66rgAjTnsNsh3PaUrFp6MWIGnaAU8UreiSO Nt2QiHLIxFtK70TORTDZX1cg402unld2gmLJQ8scZALJEIbg4StTpGjmarxXs5qv ssNZfrm19BKS6Y8ITQAxu1ftdfivvowTYZYhxypUazdTR+khJlXrxvDMKTs7EW5r EpzOCSFym25qT5ZxuSac1aOcySM+j/WipCKyW5VatQF/wW/9xBErO28j3oIcayhj ulEKBnbDw41vDDUiv4yvFc9k+fX6AyU6gN7pFcJCWKYsYyTNBSeNlUs= -----END CERTIFICATE-----Generated at Wed May 8 21:02:28 2024 by rpki-client on console-fra.rpki-client.org