$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E014E6ED03537E453565D06E7B8A31AA8A0525A1.cer File: E014E6ED03537E453565D06E7B8A31AA8A0525A1.cer (raw, json) Hash identifier: Bhbch/1VwBCUiLVgFxTpfGljhW1w6qnZo8r3NXP38WM= Subject key identifier: E0:14:E6:ED:03:53:7E:45:35:65:D0:6E:7B:8A:31:AA:8A:05:25:A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14C9C5A1F6381C6023A28526263CCB31AB68D191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0/E014E6ED03537E453565D06E7B8A31AA8A0525A1.mft caRepository: rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 30 Sep 2023 07:59:14 +0000 Certificate not after: Sat 28 Sep 2024 08:04:14 +0000 Subordinate resources: IP: 103.175.38.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c9:c5:a1:f6:38:1c:60:23:a2:85:26:26:3c:cb:31:ab:68:d1:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 07:59:14 2023 GMT Not After : Sep 28 08:04:14 2024 GMT Subject: CN=E014E6ED03537E453565D06E7B8A31AA8A0525A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7a:f5:c4:5c:f6:f9:4a:b9:3c:4f:8b:a0:a6: 1f:e3:d6:7d:9f:18:97:91:72:91:c0:83:19:b2:b8: ef:b6:62:ba:08:17:63:3a:03:81:76:27:9a:f1:15: a1:81:3e:a4:7e:34:aa:d3:14:6b:40:54:c0:7d:82: 9e:78:77:31:36:9c:1e:58:bf:68:c1:1a:85:51:ff: b7:5c:d3:58:43:0a:51:94:5f:40:48:66:3f:9c:9c: 2e:db:60:d9:ba:61:86:0a:e8:36:a9:cf:69:ef:f8: 45:5c:50:2b:b2:7e:eb:2f:24:d1:89:40:8e:d0:59: 8b:b6:a3:1e:05:0d:2a:fe:5a:e9:96:66:56:b1:cc: 4f:c3:38:d4:9b:d4:3a:50:9a:74:66:d3:5e:e5:f1: 1a:a9:0d:ec:af:a5:72:02:71:69:46:b7:fc:a0:f9: dd:50:a5:2f:eb:1b:6e:11:11:8e:81:76:8e:e3:43: 35:3c:e0:f0:a9:e7:d0:bf:34:0a:fa:2a:2c:96:4f: e3:70:07:93:36:0e:95:c0:d8:7b:1d:ce:26:41:d9: b1:45:9b:46:ea:5a:56:f7:7b:9e:89:a1:04:a3:7a: fd:98:94:e4:ad:ad:57:5a:bc:68:1d:e4:ab:bc:80: e2:27:57:b7:c6:ad:5c:c6:8a:b2:cc:e6:17:c9:66: a2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E0:14:E6:ED:03:53:7E:45:35:65:D0:6E:7B:8A:31:AA:8A:05:25:A1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0/E014E6ED03537E453565D06E7B8A31AA8A0525A1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.38.0/23 Signature Algorithm: sha256WithRSAEncryption 78:c4:44:9a:29:41:fc:ce:c6:06:a3:19:9d:67:4f:3c:d9:ad: 48:59:1e:1e:d6:81:46:45:31:db:82:c4:8e:28:d2:7c:25:4d: 1a:58:d6:2d:ad:2a:88:ff:b6:45:35:26:0f:c4:28:ec:b4:70: 9f:0b:d8:c1:06:a3:3c:5e:eb:cd:8b:2f:9d:eb:42:19:0f:a8: b2:1d:1d:1c:e9:44:57:ee:57:5e:e8:2d:55:4e:78:3a:0d:43: 21:de:d0:56:3d:60:87:c9:85:c0:27:ca:f0:c3:1b:13:a6:7a: a2:75:17:a0:8a:bd:33:2d:7b:0e:c3:52:67:d7:29:4d:89:64: da:50:a0:a2:fb:83:26:50:8a:e9:cd:85:c4:76:21:06:ef:cd: 40:21:84:02:c8:1a:49:cb:2d:c4:72:a6:77:54:94:27:86:7a: 8c:47:10:f2:4e:d8:49:d7:3b:83:2e:2b:c6:7d:91:9f:67:57: 76:95:33:65:a5:d0:cf:5d:e8:ed:93:60:b4:a5:bf:aa:1c:81: df:62:48:94:33:de:8e:a8:87:07:66:16:3f:54:b2:a3:68:70: 5b:db:4f:63:9a:ce:ca:b6:51:c6:a9:3a:9f:87:dc:0a:c4:4b: ec:8a:66:76:c2:c6:3d:04:3f:7c:01:83:33:d2:37:03:02:ee: 1a:96:60:6d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFMnFofY4HGAjooUmJjzLMato0ZEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkzMDA3NTkxNFoX DTI0MDkyODA4MDQxNFowMzExMC8GA1UEAxMoRTAxNEU2RUQwMzUzN0U0NTM1NjVE MDZFN0I4QTMxQUE4QTA1MjVBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ169cRc9vlKuTxPi6CmH+PWfZ8Yl5FykcCDGbK477ZiuggXYzoDgXYnmvEV oYE+pH40qtMUa0BUwH2Cnnh3MTacHli/aMEahVH/t1zTWEMKUZRfQEhmP5ycLttg 2bphhgroNqnPae/4RVxQK7J+6y8k0YlAjtBZi7ajHgUNKv5a6ZZmVrHMT8M41JvU OlCadGbTXuXxGqkN7K+lcgJxaUa3/KD53VClL+sbbhERjoF2juNDNTzg8Knn0L80 CvoqLJZP43AHkzYOlcDYex3OJkHZsUWbRupaVvd7nomhBKN6/ZiU5K2tV1q8aB3k q7yA4idXt8atXMaKsszmF8lmoisCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOAU5u0DU35FNWXQbnuKMaqKBSWhMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wYmIyOTM3OC00NWYwLTQ5ZDMtYTZhZi01NzNiZTdkY2E2ZDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYjI5Mzc4 LTQ1ZjAtNDlkMy1hNmFmLTU3M2JlN2RjYTZkMC8wL0UwMTRFNkVEMDM1MzdFNDUz NTY1RDA2RTdCOEEzMUFBOEEwNTI1QTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnryYwDQYJKoZIhvcNAQELBQADggEBAHjERJopQfzOxgajGZ1nTzzZrUhZHh7W gUZFMduCxI4o0nwlTRpY1i2tKoj/tkU1Jg/EKOy0cJ8L2MEGozxe682LL53rQhkP qLIdHRzpRFfuV17oLVVOeDoNQyHe0FY9YIfJhcAnyvDDGxOmeqJ1F6CKvTMtew7D UmfXKU2JZNpQoKL7gyZQiunNhcR2IQbvzUAhhALIGknLLcRypndUlCeGeoxHEPJO 2EnXO4MuK8Z9kZ9nV3aVM2Wl0M9d6O2TYLSlv6ocgd9iSJQz3o6ohwdmFj9UsqNo cFvbT2Oazsq2UcapOp+H3ArES+yKZnbCxj0EP3wBgzPSNwMC7hqWYG0= -----END CERTIFICATE-----Generated at Wed May 8 21:02:28 2024 by rpki-client on console-fra.rpki-client.org