$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.cer File: E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.cer (raw, json) Hash identifier: +2uP3dQ0Rhlas2m+tZEI8clu2RLWmITVyy8L8Fyig/8= Subject key identifier: E1:B0:3F:9E:EA:71:C0:0F:69:D8:38:BC:1D:AA:D1:13:A8:BD:F6:DF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1063CED2AA40817E7BB071D35AE11AFDDFBC56C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.mft caRepository: rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 30 Jun 2023 10:39:20 +0000 Certificate not after: Fri 28 Jun 2024 10:44:20 +0000 Subordinate resources: IP: 103.152.94.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:63:ce:d2:aa:40:81:7e:7b:b0:71:d3:5a:e1:1a:fd:df:bc:56:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 30 10:39:20 2023 GMT Not After : Jun 28 10:44:20 2024 GMT Subject: CN=E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:06:12:24:1c:d6:09:34:27:7f:a4:10:4c: 56:90:41:36:82:4d:9a:89:ac:72:f2:a8:74:8d:15: 5e:07:21:6b:9d:af:70:bb:79:8d:9f:3d:66:da:d9: 52:22:ff:6a:c1:fd:51:39:f4:e8:d4:d1:1e:21:87: 4b:02:bf:82:42:80:b3:88:a7:ca:ca:7f:af:58:37: 52:f0:93:ae:e8:dc:ce:32:15:ac:de:05:ae:b8:ed: 6f:7c:53:69:89:08:86:b4:4d:94:67:d3:23:f4:bc: a5:65:52:fd:6b:01:6e:fc:a4:75:49:02:ff:55:80: 44:0d:31:9e:69:c6:4a:53:b3:23:e8:38:05:41:6f: bd:8a:58:95:a0:b6:03:3a:ec:40:48:f4:5e:ab:4f: 2f:d3:d2:86:ca:4f:e0:5a:07:88:79:ba:1f:d9:54: 2d:84:91:dd:cc:ce:4c:5e:08:a9:02:3e:56:43:9f: de:0e:8a:57:5f:a8:85:7c:6b:f9:38:05:ad:08:09: 55:15:86:c4:bd:82:6e:f0:63:a0:e8:85:78:85:49: 72:7f:ba:a7:ee:12:3e:63:b9:00:46:06:eb:24:6a: 34:d6:8c:ea:72:1c:5f:30:e7:41:29:67:f4:1c:ca: 0e:77:3e:2b:bc:9c:dd:9e:e7:79:9b:45:01:ab:9b: c1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E1:B0:3F:9E:EA:71:C0:0F:69:D8:38:BC:1D:AA:D1:13:A8:BD:F6:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.94.0/23 Signature Algorithm: sha256WithRSAEncryption 76:90:de:c1:0d:1e:e0:16:a3:a5:9f:de:7d:8b:ca:5a:8e:c4: 5a:d9:93:cc:54:34:9d:42:b2:1d:b2:db:29:cc:59:b2:25:db: 98:22:54:d0:c2:51:29:3a:95:13:61:d4:d9:ce:d4:31:2e:24: 18:d7:7a:27:a3:7b:63:33:fc:1c:81:01:2c:2a:a5:f8:9b:e3: ba:3d:38:c5:04:6c:f5:53:ec:e0:dd:c8:b3:37:ed:ab:9b:7c: ad:be:2c:88:04:86:63:e5:31:40:ba:c0:a3:48:6b:d6:ce:6b: 71:98:f4:21:74:3d:9b:56:da:85:51:35:b9:9c:2e:8c:85:35: 25:7f:8a:2e:a4:d2:46:a8:08:e9:ca:ba:f4:12:00:f0:c0:ee: 90:56:8a:37:8a:57:7d:6e:d2:ce:16:1f:d6:58:ef:64:78:b3: 2c:39:99:03:ca:2d:a4:c7:c3:0c:97:f2:c4:51:1c:57:b4:05: 03:de:c1:bf:cf:4c:34:bf:5d:95:a7:06:2a:8d:90:3d:b0:e1: ef:7c:11:42:6e:11:1b:21:39:19:ba:45:c6:e7:e4:f3:ac:9c: 07:ba:ac:ab:52:69:89:3c:94:79:cb:e6:73:53:d0:14:13:a3: d0:05:13:2e:32:ca:4b:89:d3:d8:1d:f5:0e:f1:bc:49:0b:c4: 15:36:87:de -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEGPO0qpAgX57sHHTWuEa/d+8VsQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYzMDEwMzkyMFoX DTI0MDYyODEwNDQyMFowMzExMC8GA1UEAxMoRTFCMDNGOUVFQTcxQzAwRjY5RDgz OEJDMURBQUQxMTNBOEJERjZERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpZBhIkHNYJNCd/pBBMVpBBNoJNmomscvKodI0VXgcha52vcLt5jZ89ZtrZ UiL/asH9UTn06NTRHiGHSwK/gkKAs4inysp/r1g3UvCTrujczjIVrN4Frrjtb3xT aYkIhrRNlGfTI/S8pWVS/WsBbvykdUkC/1WARA0xnmnGSlOzI+g4BUFvvYpYlaC2 AzrsQEj0XqtPL9PShspP4FoHiHm6H9lULYSR3czOTF4IqQI+VkOf3g6KV1+ohXxr +TgFrQgJVRWGxL2CbvBjoOiFeIVJcn+6p+4SPmO5AEYG6yRqNNaM6nIcXzDnQSln 9BzKDnc+K7yc3Z7neZtFAaubwWkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOGwP57qccAPadg4vB2q0ROovfbfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYjNkMTRjYi1jY2MyLTQ2ZDItOGUzMS0xNmY1YmVjMGFjZDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiM2QxNGNi LWNjYzItNDZkMi04ZTMxLTE2ZjViZWMwYWNkOC8wL0UxQjAzRjlFRUE3MUMwMEY2 OUQ4MzhCQzFEQUFEMTEzQThCREY2REYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnmF4wDQYJKoZIhvcNAQELBQADggEBAHaQ3sENHuAWo6Wf3n2LylqOxFrZk8xU NJ1Csh2y2ynMWbIl25giVNDCUSk6lRNh1NnO1DEuJBjXeieje2Mz/ByBASwqpfib 47o9OMUEbPVT7ODdyLM37aubfK2+LIgEhmPlMUC6wKNIa9bOa3GY9CF0PZtW2oVR NbmcLoyFNSV/ii6k0kaoCOnKuvQSAPDA7pBWijeKV31u0s4WH9ZY72R4syw5mQPK LaTHwwyX8sRRHFe0BQPewb/PTDS/XZWnBiqNkD2w4e98EUJuERshORm6Rcbn5POs nAe6rKtSaYk8lHnL5nNT0BQTo9AFEy4yykuJ09gd9Q7xvEkLxBU2h94= -----END CERTIFICATE-----Generated at Wed May 8 17:45:31 2024 by rpki-client on console-ams.rpki-client.org