$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer File: EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer (raw, json) Hash identifier: AdhX/nKgn/1JPl0jilYvDH0Y/jW+4PhAL2DMfkS2BMc= Subject key identifier: EA:5E:33:0B:F8:DC:FF:6D:09:DF:49:07:4B:46:B2:2E:BD:FB:D4:54 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 641A245898A4CE257104C0D2EED029078C856C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.mft caRepository: rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 23 Nov 2023 15:33:33 +0000 Certificate not after: Thu 21 Nov 2024 15:38:33 +0000 Subordinate resources: IP: 202.47.92.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:1a:24:58:98:a4:ce:25:71:04:c0:d2:ee:d0:29:07:8c:85:6c:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 23 15:33:33 2023 GMT Not After : Nov 21 15:38:33 2024 GMT Subject: CN=EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:a7:52:8d:be:43:cd:34:8b:54:64:db:82: b1:57:a7:0a:9b:93:9c:02:dc:4e:b5:17:aa:b0:d4: 68:ca:25:60:62:8f:8e:12:0c:eb:d9:7d:bc:ec:84: 56:cc:d6:50:4a:70:64:22:57:fa:8f:e1:72:70:68: 82:68:ab:96:b8:ab:c4:a5:af:bc:58:57:c5:d7:90: b8:1e:5a:cf:86:30:0a:3b:9a:b1:4f:a6:b7:ec:01: e9:e4:a6:f4:f6:28:1b:6f:b4:e7:01:b6:7d:15:7f: fb:9a:bb:8c:5d:72:93:ce:39:7d:77:e4:e5:2a:98: 92:ea:f9:dc:de:1a:48:23:06:7f:d9:d7:6c:5b:e9: 4f:2f:bd:c5:24:bd:3c:72:d6:a9:6f:58:70:ca:0a: f0:d9:1e:e8:83:3e:74:93:de:0e:bd:c3:3d:07:eb: 07:b9:79:b5:6e:01:03:b4:c2:e8:f8:d1:01:93:4d: af:70:c0:d9:63:62:3f:7e:76:2b:30:b9:f0:5b:5b: 2d:4d:9d:7e:87:ac:a0:07:96:b7:cb:bb:fa:5f:6b: 3c:5a:d7:5c:aa:f7:ba:60:ab:30:80:42:45:91:02: ba:06:3f:62:c1:5c:b3:2d:13:43:85:0c:93:ff:ef: 40:be:41:d0:c9:90:7b:72:19:31:24:34:6b:f9:80: 97:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: EA:5E:33:0B:F8:DC:FF:6D:09:DF:49:07:4B:46:B2:2E:BD:FB:D4:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.92.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:a4:a4:3d:66:f9:b7:f9:f6:31:aa:8e:23:8e:08:55:e6:da: c2:9d:03:5e:2c:db:ac:bd:7b:b8:a0:bc:db:78:5c:67:bd:71: f1:70:a8:e0:9f:15:f2:ab:ca:ab:08:a4:4c:66:a4:22:5e:d9: 64:3d:7c:39:40:d5:d6:9b:b0:cc:08:50:a8:a8:79:d7:46:98: 67:16:91:cf:f7:8a:b3:0a:52:3d:50:31:55:ef:cd:d7:25:c7: 2b:3b:97:0c:c4:a4:ed:9d:62:d5:63:68:85:66:66:59:3c:f5: 85:5f:2e:cd:a9:44:bf:13:d5:79:68:8b:a2:8e:d6:9d:45:57: 7a:6c:53:97:d2:ba:b0:63:0d:bc:18:e2:16:c2:f2:d6:4f:82: dd:77:59:87:7e:8a:24:cd:6f:80:f8:85:ab:26:f3:65:4d:3d: f8:9a:23:a8:0d:bf:40:dd:ed:e1:ee:64:75:33:41:95:61:a0: f8:0d:0f:5b:45:f8:b2:58:21:28:95:3c:af:c1:37:7d:57:bc: 8e:cf:3d:16:f7:24:e1:5b:c9:1e:d9:f7:69:e3:e7:67:7a:50: a1:32:3a:1f:7c:98:19:79:ad:47:08:c8:5a:d6:78:fb:c5:49: 19:b2:86:72:c8:31:f4:6b:0d:16:24:4f:b9:a2:3f:07:ed:cf: 33:13:5b:6b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZBokWJikziVxBMDS7tApB4yFbGEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMzE1MzMzM1oX DTI0MTEyMTE1MzgzM1owMzExMC8GA1UEAxMoRUE1RTMzMEJGOERDRkY2RDA5REY0 OTA3NEI0NkIyMkVCREZCRDQ1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiHp1KNvkPNNItUZNuCsVenCpuTnALcTrUXqrDUaMolYGKPjhIM69l9vOyE VszWUEpwZCJX+o/hcnBogmirlrirxKWvvFhXxdeQuB5az4YwCjuasU+mt+wB6eSm 9PYoG2+05wG2fRV/+5q7jF1yk845fXfk5SqYkur53N4aSCMGf9nXbFvpTy+9xSS9 PHLWqW9YcMoK8Nke6IM+dJPeDr3DPQfrB7l5tW4BA7TC6PjRAZNNr3DA2WNiP352 KzC58FtbLU2dfoesoAeWt8u7+l9rPFrXXKr3umCrMIBCRZECugY/YsFcsy0TQ4UM k//vQL5B0MmQe3IZMSQ0a/mAlzMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOpeMwv43P9tCd9JB0tGsi69+9RUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMzcxZGI5Yi03YzQwLTQ5NjYtOTkxYi01MTM4YjM2OTMyNDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNzFkYjli LTdjNDAtNDk2Ni05OTFiLTUxMzhiMzY5MzI0Ni8wL0VBNUUzMzBCRjhEQ0ZGNkQw OURGNDkwNzRCNDZCMjJFQkRGQkQ0NTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKL1wwDQYJKoZIhvcNAQELBQADggEBAEukpD1m+bf59jGqjiOOCFXm2sKdA14s 26y9e7igvNt4XGe9cfFwqOCfFfKryqsIpExmpCJe2WQ9fDlA1dabsMwIUKioeddG mGcWkc/3irMKUj1QMVXvzdclxys7lwzEpO2dYtVjaIVmZlk89YVfLs2pRL8T1Xlo i6KO1p1FV3psU5fSurBjDbwY4hbC8tZPgt13WYd+iiTNb4D4hasm82VNPfiaI6gN v0Dd7eHuZHUzQZVhoPgND1tF+LJYISiVPK/BN31XvI7PPRb3JOFbyR7Z92nj52d6 UKEyOh98mBl5rUcIyFrWePvFSRmyhnLIMfRrDRYkT7miPwftzzMTW2s= -----END CERTIFICATE-----Generated at Tue May 7 16:42:46 2024 by rpki-client on console-ams.rpki-client.org