$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E44D4DE701D932713536A084F76894A6B0473F5E.cer File: E44D4DE701D932713536A084F76894A6B0473F5E.cer (raw, json) Hash identifier: Sg/DJtDVJ8GmDqq1HWKwi/mW0/GZBtLsBAAK5fmuLks= Subject key identifier: E4:4D:4D:E7:01:D9:32:71:35:36:A0:84:F7:68:94:A6:B0:47:3F:5E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5CB3D882766073CA76EAD60F34E36A3F599C6CCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c64f0ffa-e031-4ee1-bf0f-64bacfcf2942/0/E44D4DE701D932713536A084F76894A6B0473F5E.mft caRepository: rsync://repo-rpki.idnic.net/repo/c64f0ffa-e031-4ee1-bf0f-64bacfcf2942/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 12 Feb 2024 16:19:01 +0000 Certificate not after: Mon 10 Feb 2025 16:24:01 +0000 Subordinate resources: IP: 103.162.222.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b3:d8:82:76:60:73:ca:76:ea:d6:0f:34:e3:6a:3f:59:9c:6c:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 12 16:19:01 2024 GMT Not After : Feb 10 16:24:01 2025 GMT Subject: CN=E44D4DE701D932713536A084F76894A6B0473F5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fa:27:33:a3:50:67:1a:36:a6:72:bd:5b:6a: 20:15:d8:28:fd:13:f5:2a:49:30:49:c0:90:a5:fb: fb:9e:4c:16:23:c1:91:91:56:37:65:38:3e:2f:40: 8f:30:1d:55:16:f0:c6:71:04:29:a6:f3:18:13:af: 67:be:73:2c:0f:a9:20:d0:80:98:b5:92:c8:d9:57: b6:a3:6a:74:17:4b:42:70:2d:96:e9:58:f0:70:f6: 3a:50:50:95:8c:48:07:6d:bb:c1:0e:ee:3e:9b:6d: 50:02:3c:bd:8d:9c:82:87:22:a2:42:16:fd:e8:7b: 98:1c:01:4a:b5:39:41:27:d9:5d:3b:3c:dc:1d:71: d5:2e:83:30:13:46:e7:16:25:16:21:47:e6:86:c0: 31:9a:6e:d4:88:fe:e3:ee:31:4e:5d:29:c5:fd:42: e6:f3:00:29:91:af:e4:ad:dc:72:5a:81:20:8a:64: 27:36:c2:17:42:ff:65:a7:bc:0d:97:fb:1b:9b:9c: d0:1f:18:6d:8f:2e:2f:d6:9c:6f:4b:02:cb:3f:ef: fe:52:ac:5e:82:ea:4f:6c:c8:62:4a:8d:21:a8:61: b2:de:d1:33:93:e5:66:cd:ff:09:d9:94:bb:13:7c: 27:51:4f:6e:e1:1d:ab:e1:01:3b:21:f0:ab:7a:fc: 61:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E4:4D:4D:E7:01:D9:32:71:35:36:A0:84:F7:68:94:A6:B0:47:3F:5E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c64f0ffa-e031-4ee1-bf0f-64bacfcf2942/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c64f0ffa-e031-4ee1-bf0f-64bacfcf2942/0/E44D4DE701D932713536A084F76894A6B0473F5E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.222.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:a4:c5:df:2e:c0:36:fb:79:70:3b:b2:ed:2f:1e:0b:53:63: 92:56:cc:8f:4b:fa:41:84:46:2a:84:7c:df:67:f8:49:70:b9: 59:cb:5c:61:77:7f:b4:4b:03:d3:3f:c2:9b:82:52:7a:c6:42: 17:e4:47:ea:20:2d:bf:d8:4e:91:f2:4a:04:05:3f:6e:40:88: 63:15:d5:cc:08:d0:db:96:75:34:2c:6f:cc:39:97:d3:2c:13: e1:3a:99:43:97:82:12:f3:64:f0:b2:e9:ce:09:8d:85:86:2f: a3:f8:7e:00:5d:48:1e:93:33:ba:b8:41:fb:ab:26:7a:23:3f: 4a:6c:eb:b7:e1:99:1a:60:f0:73:2e:52:14:3c:26:6e:c9:a8: 1c:25:2e:27:ed:e6:e8:78:64:91:2b:e1:bb:2f:0a:56:09:b6: 3d:c4:4d:af:8f:8c:a5:b1:a6:cc:4e:36:7b:d4:af:5e:16:3d: ea:ed:f3:bc:16:94:b5:41:a8:e0:80:68:f9:3e:e6:37:4a:0b: 25:2f:98:b6:c6:58:c2:7e:fc:46:90:24:d6:d2:d8:ba:9c:ed: 34:1a:33:c8:16:36:6e:e5:3f:82:fa:2a:94:3c:38:8e:a9:63: 16:d0:e7:eb:4e:3f:17:68:df:51:ff:04:70:91:81:6f:00:e2: 64:ed:8e:d3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXLPYgnZgc8p26tYPNONqP1mcbM4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIxMjE2MTkwMVoX DTI1MDIxMDE2MjQwMVowMzExMC8GA1UEAxMoRTQ0RDRERTcwMUQ5MzI3MTM1MzZB MDg0Rjc2ODk0QTZCMDQ3M0Y1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM76JzOjUGcaNqZyvVtqIBXYKP0T9SpJMEnAkKX7+55MFiPBkZFWN2U4Pi9A jzAdVRbwxnEEKabzGBOvZ75zLA+pINCAmLWSyNlXtqNqdBdLQnAtlulY8HD2OlBQ lYxIB227wQ7uPpttUAI8vY2cgociokIW/eh7mBwBSrU5QSfZXTs83B1x1S6DMBNG 5xYlFiFH5obAMZpu1Ij+4+4xTl0pxf1C5vMAKZGv5K3cclqBIIpkJzbCF0L/Zae8 DZf7G5uc0B8YbY8uL9acb0sCyz/v/lKsXoLqT2zIYkqNIahhst7RM5PlZs3/CdmU uxN8J1FPbuEdq+EBOyHwq3r8YUkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFORNTecB2TJxNTaghPdolKawRz9eMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jNjRmMGZmYS1lMDMxLTRlZTEtYmYwZi02NGJhY2ZjZjI5NDIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2NGYwZmZh LWUwMzEtNGVlMS1iZjBmLTY0YmFjZmNmMjk0Mi8wL0U0NEQ0REU3MDFEOTMyNzEz NTM2QTA4NEY3Njg5NEE2QjA0NzNGNUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnot4wDQYJKoZIhvcNAQELBQADggEBABukxd8uwDb7eXA7su0vHgtTY5JWzI9L +kGERiqEfN9n+ElwuVnLXGF3f7RLA9M/wpuCUnrGQhfkR+ogLb/YTpHySgQFP25A iGMV1cwI0NuWdTQsb8w5l9MsE+E6mUOXghLzZPCy6c4JjYWGL6P4fgBdSB6TM7q4 QfurJnojP0ps67fhmRpg8HMuUhQ8Jm7JqBwlLift5uh4ZJEr4bsvClYJtj3ETa+P jKWxpsxONnvUr14WPert87wWlLVBqOCAaPk+5jdKCyUvmLbGWMJ+/EaQJNbS2Lqc 7TQaM8gWNm7lP4L6KpQ8OI6pYxbQ5+tOPxdo31H/BHCRgW8A4mTtjtM= -----END CERTIFICATE-----Generated at Wed May 8 17:45:31 2024 by rpki-client on console-ams.rpki-client.org