$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer File: E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer (raw, json) Hash identifier: z0/34oWyaP6OkImoY0fTp0ebKbhsaHxfbN3Z0DKCuNk= Subject key identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1195869D114EA8840CF9E1378EE62684B8912BA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft caRepository: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Jul 2023 10:21:43 +0000 Certificate not after: Tue 23 Jul 2024 10:26:43 +0000 Subordinate resources: IP: 103.21.195.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:95:86:9d:11:4e:a8:84:0c:f9:e1:37:8e:e6:26:84:b8:91:2b:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 25 10:21:43 2023 GMT Not After : Jul 23 10:26:43 2024 GMT Subject: CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:87:ba:8d:73:ba:3b:af:7e:ea:0a:9f:d4: bc:7d:2c:37:2c:cd:f5:98:cf:39:19:05:b5:7d:8d: f1:a5:62:7a:dd:83:82:1d:f3:13:2b:9a:9f:00:c8: ba:15:cf:4a:7e:3e:4a:2f:10:a9:11:54:0c:10:6f: b5:cf:48:f1:f6:f0:35:7a:95:79:c4:2b:2d:fc:4f: 2c:7a:6b:9d:a1:91:fb:18:8d:f1:27:26:f1:99:2d: 26:11:61:42:c7:de:ce:33:9b:c8:71:d8:11:f6:2b: 80:3b:a5:54:40:ec:49:eb:bf:8e:c6:f6:f5:ab:ba: db:2e:e8:9e:44:5e:ab:70:91:70:5a:36:df:dc:f4: cb:d5:cb:6b:9f:f4:24:8b:aa:ae:02:82:11:c4:ee: b5:ac:a8:a9:21:2e:1f:6d:18:0d:70:ca:4c:d9:8c: 20:08:7f:48:fa:c6:cb:b7:3f:27:24:43:6c:ac:96: 86:ff:1c:a1:a0:d0:82:a0:eb:1b:fb:4d:55:76:22: d7:09:27:7b:a1:ec:66:61:77:af:6c:29:a0:2a:41: 20:f5:d2:b4:59:a1:e5:47:92:cc:f0:b6:fa:19:8a: 7e:43:02:45:13:ca:9f:66:79:a2:4b:6d:62:2d:0b: 0e:db:44:17:ac:c9:39:89:c0:47:2e:5e:49:bc:0d: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.195.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:c0:c7:96:8f:c9:13:1a:de:3e:93:a2:79:db:b7:35:bd:5f: 57:b4:41:8e:3c:b7:bc:22:d3:4c:e9:6b:5d:11:dd:fd:9b:30: ac:b3:5b:65:1e:7d:30:7e:86:78:f1:f3:f1:fc:f6:d0:5a:ef: 82:29:da:c4:cc:ba:f3:aa:bd:4b:f9:3b:da:cf:6d:d5:fa:b1: da:27:82:f9:bc:f9:ea:07:02:ba:3e:a3:8a:8d:a2:8f:0f:de: f9:a1:fc:b1:cf:54:89:38:1b:91:30:83:72:ac:63:cf:68:42: 5e:85:dd:05:43:ad:4f:0c:99:1f:e8:ca:da:cf:15:da:9a:74: 94:6a:b1:1d:5c:b9:df:79:2c:04:2e:2b:11:27:5a:5b:ba:a1: 76:6c:7b:ba:da:09:5d:65:8c:64:58:21:f2:37:2c:14:60:a6: 78:be:62:13:5c:32:17:c4:b7:e9:97:6b:54:99:07:1b:fe:9c: 11:e4:bc:e3:65:c9:f9:65:f3:a1:d9:85:39:08:1c:07:85:ff: 5e:6e:fb:4f:54:d4:51:10:ca:fb:0e:4e:7d:7c:8e:84:6c:5c: 25:e6:1a:20:5e:e2:a0:22:04:cf:b9:3a:17:d7:66:74:9e:0b: 6b:16:2b:5f:74:c5:2c:a4:aa:72:23:9c:ac:e7:6a:b2:40:fe: a8:58:22:e6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEZWGnRFOqIQM+eE3juYmhLiRK6AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNTEwMjE0M1oX DTI0MDcyMzEwMjY0M1owMzExMC8GA1UEAxMoRTM1RDQ0MzM4RTU5MzdCNEFFMjY5 REREQ0RBNDBBMjhGODdGM0VDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFFh7qNc7o7r37qCp/UvH0sNyzN9ZjPORkFtX2N8aViet2Dgh3zEyuanwDI uhXPSn4+Si8QqRFUDBBvtc9I8fbwNXqVecQrLfxPLHprnaGR+xiN8Scm8ZktJhFh QsfezjObyHHYEfYrgDulVEDsSeu/jsb29au62y7onkReq3CRcFo239z0y9XLa5/0 JIuqrgKCEcTutayoqSEuH20YDXDKTNmMIAh/SPrGy7c/JyRDbKyWhv8coaDQgqDr G/tNVXYi1wkne6HsZmF3r2wpoCpBIPXStFmh5UeSzPC2+hmKfkMCRRPKn2Z5oktt Yi0LDttEF6zJOYnARy5eSbwN/VcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFONdRDOOWTe0riad3c2kCij4fz7IMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNjgzYjI3Yy1hNzMwLTQwMDItOTFiOC1kMDM2NmRmYWM3N2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODNiMjdj LWE3MzAtNDAwMi05MWI4LWQwMzY2ZGZhYzc3ZS8wL0UzNUQ0NDMzOEU1OTM3QjRB RTI2OURERENEQTQwQTI4Rjg3RjNFQzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnFcMwDQYJKoZIhvcNAQELBQADggEBAIzAx5aPyRMa3j6TonnbtzW9X1e0QY48 t7wi00zpa10R3f2bMKyzW2UefTB+hnjx8/H89tBa74Ip2sTMuvOqvUv5O9rPbdX6 sdongvm8+eoHAro+o4qNoo8P3vmh/LHPVIk4G5Ewg3KsY89oQl6F3QVDrU8MmR/o ytrPFdqadJRqsR1cud95LAQuKxEnWlu6oXZse7raCV1ljGRYIfI3LBRgpni+YhNc MhfEt+mXa1SZBxv+nBHkvONlyfll86HZhTkIHAeF/15u+09U1FEQyvsOTn18joRs XCXmGiBe4qAiBM+5OhfXZnSeC2sWK190xSykqnIjnKznarJA/qhYIuY= -----END CERTIFICATE-----Generated at Wed May 8 17:45:31 2024 by rpki-client on console-ams.rpki-client.org