$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E025EB5354ADB573B451D02820EA68FD4CAE920A.cer File: E025EB5354ADB573B451D02820EA68FD4CAE920A.cer (raw, json) Hash identifier: V7j3c3T9RqlfPn7DjvxsimSwtr2KxkbtooRsrzKLW3A= Subject key identifier: E0:25:EB:53:54:AD:B5:73:B4:51:D0:28:20:EA:68:FD:4C:AE:92:0A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1545C229661450CF963EE7A7941D0548F55D52E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0/E025EB5354ADB573B451D02820EA68FD4CAE920A.mft caRepository: rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 27 Jun 2023 02:38:18 +0000 Certificate not after: Tue 25 Jun 2024 02:43:18 +0000 Subordinate resources: IP: 103.230.81.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:45:c2:29:66:14:50:cf:96:3e:e7:a7:94:1d:05:48:f5:5d:52:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 27 02:38:18 2023 GMT Not After : Jun 25 02:43:18 2024 GMT Subject: CN=E025EB5354ADB573B451D02820EA68FD4CAE920A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e2:e1:e4:04:6d:bf:b1:07:7f:4a:57:c8:95: 27:c6:2d:a7:00:52:7c:ee:bf:d5:9b:98:ea:fe:db: b1:42:43:67:b2:62:d0:60:6c:0a:f5:95:cb:1d:aa: 24:0e:14:26:89:5a:9e:66:bb:d0:42:e4:ac:e2:c2: 02:2d:83:18:0d:3a:a2:c7:aa:7d:b0:c6:cc:31:ea: e5:11:35:65:39:18:8d:80:46:cb:fc:32:9c:36:1a: 35:c9:6f:47:f1:4d:5c:5b:89:19:4b:e4:3f:0a:82: b1:c9:79:1b:7a:96:31:80:b4:35:0e:72:93:41:95: c1:ec:34:65:97:2b:3d:58:2e:27:6e:73:65:02:23: 11:df:c4:62:4b:4b:04:ca:29:52:4d:3c:d5:52:06: 83:a5:0c:6f:33:f2:15:c9:2d:01:04:86:5f:24:31: 97:3b:ac:47:b5:0c:42:39:26:bf:b5:a2:5d:29:3d: 69:68:8d:2e:97:20:e7:68:50:b4:bb:c5:a0:06:26: 20:e5:07:f5:a7:5f:10:bd:ca:6c:45:02:97:6d:3f: 6f:8e:45:4d:c3:67:f2:46:c1:b0:9d:19:ac:76:b9: 9c:69:8c:69:5b:83:a5:06:b6:ad:da:94:b0:2c:a5: 89:a0:35:c6:f6:d2:07:bf:d9:81:06:0c:f9:22:2d: 13:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E0:25:EB:53:54:AD:B5:73:B4:51:D0:28:20:EA:68:FD:4C:AE:92:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0/E025EB5354ADB573B451D02820EA68FD4CAE920A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.230.81.0/24 Signature Algorithm: sha256WithRSAEncryption 95:03:e2:1a:20:2c:79:2c:9d:c9:8c:03:53:08:bf:ee:91:4d: 8b:1d:51:35:3c:d8:0e:df:9b:3e:9d:2f:35:c5:56:a6:d8:86: 89:58:4d:13:b9:c2:78:6c:33:33:b5:89:d9:79:60:14:58:df: 8e:e1:00:13:56:c1:a6:c2:d5:95:8b:07:31:4f:d6:06:6d:a8: 40:c5:f6:1d:25:15:3a:61:0c:c3:ad:cc:b3:62:72:6e:2b:04: b6:9e:0d:45:70:4c:0c:78:c5:7e:c7:cf:2f:0c:96:5a:17:1f: 1a:27:4c:b1:b8:38:2a:7c:8b:62:9d:71:4c:bf:a7:f3:72:86: d9:d7:5a:7d:29:c1:04:de:81:64:e7:64:98:68:1e:3c:d5:09: 97:12:da:17:51:6c:7e:d4:73:cc:84:0a:68:a9:4b:8c:1d:e0: ef:c2:53:5a:08:56:93:2d:c9:c2:ca:83:f8:5e:25:91:6f:1f: e0:5d:27:41:71:c0:f8:45:79:fc:73:ff:58:a0:a2:e2:c8:75: 84:67:a2:68:9b:40:1f:62:8b:8f:f2:23:f6:a7:22:28:b0:a1: 71:97:22:87:b2:d5:1a:c0:3e:6d:17:af:f9:f8:68:2c:3f:69: f2:ab:df:21:b7:97:d0:e2:9f:de:09:23:d0:ca:00:8f:1a:b0: 03:4b:be:fb -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFUXCKWYUUM+WPuenlB0FSPVdUukwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyNzAyMzgxOFoX DTI0MDYyNTAyNDMxOFowMzExMC8GA1UEAxMoRTAyNUVCNTM1NEFEQjU3M0I0NTFE MDI4MjBFQTY4RkQ0Q0FFOTIwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLi4eQEbb+xB39KV8iVJ8YtpwBSfO6/1ZuY6v7bsUJDZ7Ji0GBsCvWVyx2q JA4UJolanma70ELkrOLCAi2DGA06oseqfbDGzDHq5RE1ZTkYjYBGy/wynDYaNclv R/FNXFuJGUvkPwqCscl5G3qWMYC0NQ5yk0GVwew0ZZcrPVguJ25zZQIjEd/EYktL BMopUk081VIGg6UMbzPyFcktAQSGXyQxlzusR7UMQjkmv7WiXSk9aWiNLpcg52hQ tLvFoAYmIOUH9adfEL3KbEUCl20/b45FTcNn8kbBsJ0ZrHa5nGmMaVuDpQa2rdqU sCyliaA1xvbSB7/ZgQYM+SItEzUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOAl61NUrbVztFHQKCDqaP1MrpIKMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kMTRhMmE0MS0yODM4LTQzNjktOTk3Yi00Mjk5ZjE3ZWVlOTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNGEyYTQx LTI4MzgtNDM2OS05OTdiLTQyOTlmMTdlZWU5MC8wL0UwMjVFQjUzNTRBREI1NzNC NDUxRDAyODIwRUE2OEZENENBRTkyMEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn5lEwDQYJKoZIhvcNAQELBQADggEBAJUD4hogLHksncmMA1MIv+6RTYsdUTU8 2A7fmz6dLzXFVqbYholYTRO5wnhsMzO1idl5YBRY347hABNWwabC1ZWLBzFP1gZt qEDF9h0lFTphDMOtzLNicm4rBLaeDUVwTAx4xX7Hzy8MlloXHxonTLG4OCp8i2Kd cUy/p/NyhtnXWn0pwQTegWTnZJhoHjzVCZcS2hdRbH7Uc8yECmipS4wd4O/CU1oI VpMtycLKg/heJZFvH+BdJ0FxwPhFefxz/1igouLIdYRnomibQB9ii4/yI/anIiiw oXGXIoey1RrAPm0Xr/n4aCw/afKr3yG3l9Din94JI9DKAI8asANLvvs= -----END CERTIFICATE-----Generated at Wed May 8 17:45:30 2024 by rpki-client on console-ams.rpki-client.org