$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer File: E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.cer (raw, json) Hash identifier: o3aK5Qwokp1W8ERFV4zM8GS4Om6ssIiunv8FboKySlc= Subject key identifier: E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5856CCCAD7028EF5DA6312263DF3016336489976 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.mft caRepository: rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 28 Feb 2024 12:22:35 +0000 Certificate not after: Wed 26 Feb 2025 12:27:35 +0000 Subordinate resources: IP: 103.172.194.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:56:cc:ca:d7:02:8e:f5:da:63:12:26:3d:f3:01:63:36:48:99:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 28 12:22:35 2024 GMT Not After : Feb 26 12:27:35 2025 GMT Subject: CN=E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a2:ba:21:f4:26:b3:1c:a0:4b:f6:46:12:37: cc:03:72:86:ef:09:8e:4e:53:fd:5a:6c:06:13:3e: aa:b9:03:6e:c5:94:9c:aa:55:46:0b:1a:55:df:96: af:80:02:94:2f:69:a9:9e:4b:a1:ce:45:89:8b:65: e4:cc:2b:f4:f6:a3:74:66:3c:3b:35:71:00:8f:af: 26:94:08:4f:f3:b1:ea:fa:c8:bf:6f:a0:f1:9f:b1: af:11:66:d5:ff:0b:89:20:6a:97:ff:d2:a6:ea:2c: 4b:ce:bf:7c:89:e5:60:b4:ab:fb:fd:6d:a0:bb:31: 74:2d:16:35:c5:15:ec:ff:fa:2e:0d:b3:c9:03:60: 65:15:cf:38:3e:64:ae:1f:17:15:e6:9c:08:e1:74: f4:32:5e:2c:56:33:32:75:94:a3:f0:4e:8f:35:4f: d0:be:c0:b9:2e:d8:cf:0d:31:e0:6e:8f:23:e9:08: f1:30:ea:e7:dd:e7:4f:d9:0e:48:a1:16:5b:21:87: b5:c5:e6:24:fe:49:bd:71:9b:a7:06:11:96:ca:d2: b4:cb:de:1f:c3:52:61:3a:2d:d7:63:06:cf:80:02: ce:55:dc:cb:a4:0d:e5:ce:e3:1a:86:e2:cb:f6:f1: 21:07:e7:e9:87:5a:4a:ba:ae:6c:cc:e7:93:73:f9: b1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E4:86:34:E1:D6:FB:2E:8A:06:A4:88:25:B4:D7:EE:C4:7B:2A:E4:BE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d3ec2cb6-35ad-4101-982e-2e34d566efda/0/E48634E1D6FB2E8A06A48825B4D7EEC47B2AE4BE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.194.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:ae:6e:82:fe:e4:8f:fb:25:fc:bd:ba:c5:7c:86:e3:78:6b: 36:56:de:03:ce:9a:64:66:af:fc:0a:49:48:68:26:79:f1:0f: db:3a:33:a7:c5:51:ba:8e:b2:45:8a:c5:c6:69:47:d8:9e:44: 0b:5e:2f:95:d3:63:dc:66:e4:7e:fd:22:61:a8:4f:92:12:dc: 3a:a4:17:e0:71:d3:ec:a4:bf:9d:05:4f:af:51:15:c5:d7:80: 62:bf:4d:cd:f7:c0:4f:0e:a3:9c:11:88:02:9b:88:d2:d5:2c: 00:37:1f:cf:76:6d:41:f9:e4:58:90:7a:5a:07:08:b1:1b:31: ce:92:b5:56:72:a4:79:11:3d:72:8a:dd:a7:b4:5c:ac:e6:d3: cd:4a:f0:ef:40:81:52:01:b8:10:31:1e:46:b8:00:ae:60:02: 61:fc:e2:e3:73:f2:15:1a:fb:4b:ee:89:00:90:db:26:72:80: 5c:75:ac:d8:9a:8e:4c:7b:9f:c1:d7:d7:f1:eb:fe:78:ae:21: f8:89:96:2c:30:b5:16:21:6d:26:5f:c2:7b:89:7b:ea:3d:73: 33:f6:52:ba:5d:ed:a5:80:de:80:6d:3c:09:3f:da:ea:69:ac: 88:68:21:1f:18:e8:6b:e7:54:c7:b0:c7:fa:26:74:eb:39:fd: 98:a3:8c:1e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWFbMytcCjvXaYxImPfMBYzZImXYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyODEyMjIzNVoX DTI1MDIyNjEyMjczNVowMzExMC8GA1UEAxMoRTQ4NjM0RTFENkZCMkU4QTA2QTQ4 ODI1QjREN0VFQzQ3QjJBRTRCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK+iuiH0JrMcoEv2RhI3zANyhu8Jjk5T/VpsBhM+qrkDbsWUnKpVRgsaVd+W r4AClC9pqZ5Loc5FiYtl5Mwr9PajdGY8OzVxAI+vJpQIT/Ox6vrIv2+g8Z+xrxFm 1f8LiSBql//SpuosS86/fInlYLSr+/1toLsxdC0WNcUV7P/6Lg2zyQNgZRXPOD5k rh8XFeacCOF09DJeLFYzMnWUo/BOjzVP0L7AuS7Yzw0x4G6PI+kI8TDq593nT9kO SKEWWyGHtcXmJP5JvXGbpwYRlsrStMveH8NSYTot12MGz4ACzlXcy6QN5c7jGobi y/bxIQfn6YdaSrqubMznk3P5sVcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOSGNOHW+y6KBqSIJbTX7sR7KuS+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kM2VjMmNiNi0zNWFkLTQxMDEtOTgyZS0yZTM0ZDU2NmVmZGEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZWMyY2I2 LTM1YWQtNDEwMS05ODJlLTJlMzRkNTY2ZWZkYS8wL0U0ODYzNEUxRDZGQjJFOEEw NkE0ODgyNUI0RDdFRUM0N0IyQUU0QkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrMIwDQYJKoZIhvcNAQELBQADggEBAByuboL+5I/7Jfy9usV8huN4azZW3gPO mmRmr/wKSUhoJnnxD9s6M6fFUbqOskWKxcZpR9ieRAteL5XTY9xm5H79ImGoT5IS 3DqkF+Bx0+ykv50FT69RFcXXgGK/Tc33wE8Oo5wRiAKbiNLVLAA3H892bUH55FiQ eloHCLEbMc6StVZypHkRPXKK3ae0XKzm081K8O9AgVIBuBAxHka4AK5gAmH84uNz 8hUa+0vuiQCQ2yZygFx1rNiajkx7n8HX1/Hr/niuIfiJliwwtRYhbSZfwnuJe+o9 czP2Urpd7aWA3oBtPAk/2upprIhoIR8Y6GvnVMewx/omdOs5/ZijjB4= -----END CERTIFICATE-----Generated at Wed May 8 10:06:57 2024 by rpki-client on console-ams.rpki-client.org