$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer File: DFE92467290F9E190072585C1045251D6F8B05A3.cer (raw, json) Hash identifier: vKD+cLvSfeAra9A0OUr2K54uYbbk/nYlYwvcAKzsC3A= Subject key identifier: DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 68D6115D151E8303A7CF1B69B47AA32252F4336A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.mft caRepository: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Feb 2024 10:14:32 +0000 Certificate not after: Tue 04 Feb 2025 10:19:32 +0000 Subordinate resources: IP: 103.185.52.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d6:11:5d:15:1e:83:03:a7:cf:1b:69:b4:7a:a3:22:52:f4:33:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 6 10:14:32 2024 GMT Not After : Feb 4 10:19:32 2025 GMT Subject: CN=DFE92467290F9E190072585C1045251D6F8B05A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:92:3b:75:c7:ee:40:6c:5c:06:99:a1:f8:8c: eb:04:cd:d7:21:2f:b3:ee:d6:a4:9c:7a:5a:80:43: 55:92:1d:9a:c4:fd:17:5c:1a:fb:ea:40:46:94:d7: 54:a2:55:62:ea:2b:f3:99:e3:42:52:ac:8f:56:30: 4e:16:ad:9b:a0:d2:d2:9e:8c:a5:ae:d8:44:09:c6: 8f:c8:1f:1e:a9:40:10:73:21:f7:24:6e:f6:fe:67: a9:94:2f:53:36:e6:1a:2e:cc:99:28:46:f9:68:c3: 14:a5:11:8b:07:38:45:33:0b:53:e6:e2:44:63:4f: 69:67:90:81:e2:be:2f:0d:50:5f:08:04:38:06:9e: e8:9d:f7:cc:9b:19:ad:b8:fe:ff:fd:e0:12:1a:83: 87:c8:f7:e3:5a:04:1a:f8:37:19:e9:ee:3c:c7:0f: 77:0f:44:b5:b7:4f:b8:a0:2c:2e:26:4a:eb:d3:0b: 47:78:80:72:ac:c1:9d:77:e1:15:99:51:01:16:f2: 07:da:10:13:99:3f:3f:0d:97:d1:4d:88:05:f1:bb: c3:f9:05:e6:9a:3a:54:72:8e:5f:d4:5c:7b:d4:4e: b6:e3:be:d0:af:80:23:33:66:ef:7b:2d:ed:a4:57: 74:3a:0e:3b:ac:57:72:cd:52:df:a6:ce:cf:65:60: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.52.0/23 Signature Algorithm: sha256WithRSAEncryption 10:02:b1:51:76:bf:5a:29:e8:c3:36:16:55:cc:c1:95:73:d8: 63:2d:c5:54:6c:05:9f:00:af:77:1c:7f:93:01:24:22:37:7a: 4c:52:9e:62:1c:2a:c0:bc:dd:94:e4:c4:d2:c3:25:9a:86:6e: 57:73:7f:6a:ef:1c:70:f7:be:2a:06:45:66:5c:2b:d9:f5:53: c0:c5:f6:3a:3e:75:6a:73:ff:d5:ef:4e:af:7e:a1:38:b5:e1: 5e:cd:5a:04:0a:dc:f6:91:c4:3e:8f:23:c4:09:a9:e5:03:71: 49:66:00:55:cd:11:86:72:4c:a0:ae:41:6f:09:9e:3f:79:61: 2b:53:64:70:ea:6b:6f:8a:84:75:ca:0b:68:16:31:c9:c1:c2: 8d:79:88:c2:74:d8:dd:df:3c:97:31:c6:53:8b:ea:cf:93:da: 72:b5:e2:e7:4a:e2:0a:89:2f:f4:3d:cd:74:85:4a:d1:76:94: d0:d6:ff:26:d5:34:80:a0:a4:37:86:c8:67:d2:d3:f8:49:b4: cf:f5:2f:d8:4c:ed:e1:97:06:73:fb:b9:69:28:c1:d2:9d:9a: 2b:9a:49:f2:53:ca:72:76:a9:05:62:bc:9b:23:fd:a4:51:65: 6c:35:4a:b4:25:90:76:64:9f:8c:59:18:01:07:19:38:39:8d: 6d:30:fd:4e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUaNYRXRUegwOnzxtptHqjIlL0M2owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwNjEwMTQzMloX DTI1MDIwNDEwMTkzMlowMzExMC8GA1UEAxMoREZFOTI0NjcyOTBGOUUxOTAwNzI1 ODVDMTA0NTI1MUQ2RjhCMDVBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCSO3XH7kBsXAaZofiM6wTN1yEvs+7WpJx6WoBDVZIdmsT9F1wa++pARpTX VKJVYuor85njQlKsj1YwThatm6DS0p6Mpa7YRAnGj8gfHqlAEHMh9yRu9v5nqZQv UzbmGi7MmShG+WjDFKURiwc4RTMLU+biRGNPaWeQgeK+Lw1QXwgEOAae6J33zJsZ rbj+//3gEhqDh8j341oEGvg3GenuPMcPdw9EtbdPuKAsLiZK69MLR3iAcqzBnXfh FZlRARbyB9oQE5k/Pw2X0U2IBfG7w/kF5po6VHKOX9Rce9ROtuO+0K+AIzNm73st 7aRXdDoOO6xXcs1S36bOz2VgHEUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN/pJGcpD54ZAHJYXBBFJR1viwWjMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YzQ1NzRlMi0zYjk0LTQxNjAtOGViOC04ZjA5YWFkODJjMmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNDU3NGUy LTNiOTQtNDE2MC04ZWI4LThmMDlhYWQ4MmMyYy8wL0RGRTkyNDY3MjkwRjlFMTkw MDcyNTg1QzEwNDUyNTFENkY4QjA1QTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuTQwDQYJKoZIhvcNAQELBQADggEBABACsVF2v1op6MM2FlXMwZVz2GMtxVRs BZ8Ar3ccf5MBJCI3ekxSnmIcKsC83ZTkxNLDJZqGbldzf2rvHHD3vioGRWZcK9n1 U8DF9jo+dWpz/9XvTq9+oTi14V7NWgQK3PaRxD6PI8QJqeUDcUlmAFXNEYZyTKCu QW8Jnj95YStTZHDqa2+KhHXKC2gWMcnBwo15iMJ02N3fPJcxxlOL6s+T2nK14udK 4gqJL/Q9zXSFStF2lNDW/ybVNICgpDeGyGfS0/hJtM/1L9hM7eGXBnP7uWkowdKd miuaSfJTynJ2qQVivJsj/aRRZWw1SrQlkHZkn4xZGAEHGTg5jW0w/U4= -----END CERTIFICATE-----Generated at Wed May 8 15:00:00 2024 by rpki-client on console-ams.rpki-client.org