$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C33FFA425046D044E7F503AC8065468BAF739E.cer File: E4C33FFA425046D044E7F503AC8065468BAF739E.cer (raw, json) Hash identifier: Bky0uAKU8ZXE0EqRCJEoJgptC+ZphcvvEAgQAfDc4VA= Subject key identifier: E4:C3:3F:FA:42:50:46:D0:44:E7:F5:03:AC:80:65:46:8B:AF:73:9E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2844DC28FC17BF17AC47BBC5BEB3816CB3FF68A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0/E4C33FFA425046D044E7F503AC8065468BAF739E.mft caRepository: rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 14 Nov 2023 11:57:48 +0000 Certificate not after: Tue 12 Nov 2024 12:02:48 +0000 Subordinate resources: IP: 103.99.27.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:44:dc:28:fc:17:bf:17:ac:47:bb:c5:be:b3:81:6c:b3:ff:68:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 11:57:48 2023 GMT Not After : Nov 12 12:02:48 2024 GMT Subject: CN=E4C33FFA425046D044E7F503AC8065468BAF739E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:40:38:2d:46:8e:68:58:32:f3:cb:dc:bb: 7c:45:cf:53:71:9b:e3:29:47:27:1f:58:9a:26:7f: 2d:b8:4d:dd:98:20:ac:b0:6d:88:02:43:26:ec:36: 4f:81:1d:17:30:22:f9:a6:6f:56:71:7c:39:77:88: 1d:3f:4a:5f:68:60:74:86:2a:f5:e9:c7:df:78:04: 31:da:c3:54:24:46:7b:5c:69:e2:05:ab:6b:5e:dd: 6f:d0:67:35:45:31:9c:6f:be:72:a2:1f:45:7d:de: 2c:2b:1b:f7:9c:fd:2c:c1:ce:8f:c0:0e:7d:ef:3b: e5:07:5a:47:63:4b:57:b2:1d:64:61:6c:16:4f:4e: cf:7b:1c:3f:cd:cf:66:56:87:1d:c2:b1:33:2f:09: f9:90:21:a8:6a:85:ec:3b:70:59:db:4d:fb:2b:02: 81:1e:6d:99:8a:16:94:5c:b0:1b:36:18:ea:ba:7e: a8:5c:27:6c:9d:e3:4b:fe:ea:cd:7d:7d:0c:3f:79: ab:e7:6f:6a:c8:40:01:cc:f5:7c:8c:eb:0d:94:14: f0:c5:32:73:7f:95:e9:a1:ce:35:fb:22:32:61:c0: 77:51:c5:de:1f:e4:eb:b1:50:81:87:df:a3:ec:c6: dc:0c:e7:ca:80:1b:2a:47:e0:21:9d:b2:60:3b:04: 06:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E4:C3:3F:FA:42:50:46:D0:44:E7:F5:03:AC:80:65:46:8B:AF:73:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0/E4C33FFA425046D044E7F503AC8065468BAF739E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.27.0/24 Signature Algorithm: sha256WithRSAEncryption 37:3c:d1:b1:39:f6:1d:11:d4:82:59:15:b2:33:6f:03:93:6f: 43:1f:5e:dd:37:60:43:a8:84:20:ee:be:38:16:21:87:05:41: f2:84:b3:28:e3:2c:d8:90:7f:7b:f4:d1:e6:14:0b:f0:2d:2c: 57:cc:74:4a:e2:a2:cf:e6:bc:3f:30:c4:cb:74:58:60:a5:ed: 78:fe:50:a5:79:7e:79:ae:ce:de:6c:e5:56:ed:f6:cd:15:32: bc:34:8a:68:78:db:03:9c:60:6e:78:bf:f6:73:cf:bf:cb:67: 6c:0c:5e:fd:ea:88:8f:70:a4:60:41:c1:f2:3b:4c:07:77:21: 2a:68:fb:54:b6:f6:e4:b2:c8:f7:00:ca:49:b9:ec:a5:cd:f5: 05:df:2f:fa:9f:86:94:19:10:18:39:97:02:3a:56:88:2d:ad: 13:d6:9c:18:cd:2c:b1:9b:c8:83:4e:1f:e9:82:28:c7:3a:03: aa:29:e5:a3:0f:3c:ad:54:41:45:65:35:a7:83:5e:89:cb:8e: f4:32:7f:c9:74:cd:fa:cd:c0:62:44:80:a0:c9:b6:40:1b:29: eb:b6:84:85:61:e0:6b:83:dd:68:ca:58:61:63:bc:18:de:01: 71:4b:ac:be:41:34:3a:1f:f5:9f:7a:7b:fa:7e:b3:eb:b6:7d: 72:83:94:88 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKETcKPwXvxesR7vFvrOBbLP/aKgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNDExNTc0OFoX DTI0MTExMjEyMDI0OFowMzExMC8GA1UEAxMoRTRDMzNGRkE0MjUwNDZEMDQ0RTdG NTAzQUM4MDY1NDY4QkFGNzM5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTjQDgtRo5oWDLzy9y7fEXPU3Gb4ylHJx9YmiZ/LbhN3ZggrLBtiAJDJuw2 T4EdFzAi+aZvVnF8OXeIHT9KX2hgdIYq9enH33gEMdrDVCRGe1xp4gWra17db9Bn NUUxnG++cqIfRX3eLCsb95z9LMHOj8AOfe875QdaR2NLV7IdZGFsFk9Oz3scP83P ZlaHHcKxMy8J+ZAhqGqF7DtwWdtN+ysCgR5tmYoWlFywGzYY6rp+qFwnbJ3jS/7q zX19DD95q+dvashAAcz1fIzrDZQU8MUyc3+V6aHONfsiMmHAd1HF3h/k67FQgYff o+zG3AznyoAbKkfgIZ2yYDsEBk8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOTDP/pCUEbQROf1A6yAZUaLr3OeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMDk3NmUyNi05NTEzLTQ4ZmYtOWY3Zi1lYTNmZGNmM2UyZTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwOTc2ZTI2 LTk1MTMtNDhmZi05ZjdmLWVhM2ZkY2YzZTJlOC8wL0U0QzMzRkZBNDI1MDQ2RDA0 NEU3RjUwM0FDODA2NTQ2OEJBRjczOUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnYxswDQYJKoZIhvcNAQELBQADggEBADc80bE59h0R1IJZFbIzbwOTb0MfXt03 YEOohCDuvjgWIYcFQfKEsyjjLNiQf3v00eYUC/AtLFfMdErios/mvD8wxMt0WGCl 7Xj+UKV5fnmuzt5s5Vbt9s0VMrw0imh42wOcYG54v/Zzz7/LZ2wMXv3qiI9wpGBB wfI7TAd3ISpo+1S29uSyyPcAykm57KXN9QXfL/qfhpQZEBg5lwI6VogtrRPWnBjN LLGbyINOH+mCKMc6A6op5aMPPK1UQUVlNaeDXonLjvQyf8l0zfrNwGJEgKDJtkAb Keu2hIVh4GuD3WjKWGFjvBjeAXFLrL5BNDof9Z96e/p+s+u2fXKDlIg= -----END CERTIFICATE-----Generated at Wed May 8 18:12:22 2024 by rpki-client on console-fra.rpki-client.org