$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FE5652AD4702104DB082C396B05EE5D04542E7D7.cer File: FE5652AD4702104DB082C396B05EE5D04542E7D7.cer (raw, json) Hash identifier: pPACwG38K8X6EyeuXrxo07kEGCvYmOAzQ6ePCQOA71w= Subject key identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5483667DD1A86DF253CBEEC826456B672409BE12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft caRepository: rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 27 Jul 2023 04:23:27 +0000 Certificate not after: Thu 25 Jul 2024 04:28:27 +0000 Subordinate resources: IP: 103.239.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:83:66:7d:d1:a8:6d:f2:53:cb:ee:c8:26:45:6b:67:24:09:be:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 27 04:23:27 2023 GMT Not After : Jul 25 04:28:27 2024 GMT Subject: CN=FE5652AD4702104DB082C396B05EE5D04542E7D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fe:1a:af:a7:d6:c3:48:4c:71:e0:a9:89:56: 77:a9:8d:45:f1:77:d8:43:7f:03:ea:fb:5e:49:78: cf:35:da:d5:2a:28:34:56:84:9f:46:fe:32:0f:58: 06:81:9e:d2:09:63:0f:1d:2f:39:22:8e:41:78:ab: 3a:2e:18:cc:c9:e9:4d:e6:fb:09:60:f8:bd:7a:78: 4e:27:e4:59:85:a0:d9:8e:e3:3c:c2:8a:dd:bd:e4: 60:7c:f5:59:ce:35:23:90:bd:25:69:de:88:9c:b8: c2:c3:11:41:99:24:a8:a4:1b:8e:ad:93:c4:f9:8e: e8:80:de:b8:5d:ff:a1:86:b2:b5:84:ec:5f:f3:55: 1c:0a:e2:8c:1d:5e:cb:3f:5d:45:0b:b1:1f:5d:c0: 68:1c:55:37:23:c5:52:e4:7a:f7:b3:ef:e0:37:94: 5e:48:3a:32:62:c5:8e:50:fc:57:19:5a:6a:62:f2: d4:10:46:e5:9e:4a:30:64:6c:c4:88:78:e6:13:26: 8f:ba:e7:6f:55:38:7e:bf:47:09:b2:2f:f7:f5:cf: 93:32:8b:2f:23:03:6f:a1:dd:cc:0d:de:29:da:d0: 00:e2:d8:c0:03:28:43:c1:19:11:34:6e:16:93:5d: eb:dd:11:96:19:ce:88:4b:29:40:bf:96:e5:7f:96: 9f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FE:56:52:AD:47:02:10:4D:B0:82:C3:96:B0:5E:E5:D0:45:42:E7:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a7afd57a-e6de-4a5f-b5c6-10865d5a8c98/0/FE5652AD4702104DB082C396B05EE5D04542E7D7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.239.20.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:35:ad:09:c1:b6:d8:5f:b3:b8:4c:41:22:d3:b8:37:af:22: 64:fb:34:7d:a7:9f:e3:97:64:d9:87:e8:3e:db:13:57:e9:a3: a5:3b:4e:91:7c:b8:a9:f9:4c:ca:47:12:0e:97:28:62:f4:93: 79:f2:04:68:ea:3a:8e:75:71:36:ca:f7:eb:d2:ef:ec:32:23: 1c:5c:90:43:77:da:c4:78:d4:6d:81:ac:1b:13:80:7f:14:74: 1e:21:c3:8f:32:9a:00:64:78:69:a6:20:3f:63:4b:ab:79:f5: 4c:77:a5:58:40:c9:2e:19:0b:28:bb:3e:d9:f1:bf:38:3b:80: 8a:4a:b0:a1:e2:e1:ad:cc:36:2a:29:7b:01:7b:1d:90:b3:a7: 5c:0b:b6:ba:a3:98:4a:69:0a:63:9d:64:2d:58:44:4f:f8:22: 13:7d:5a:7a:f3:d4:5d:6a:1a:e8:26:79:9a:a9:f8:ef:27:50: 50:b4:4c:7b:a8:35:28:0d:d8:21:c7:73:49:a2:e1:86:6c:a4: 66:5b:65:c1:2c:40:8d:ca:7c:67:61:5d:5c:d3:d3:17:35:58: ea:79:af:79:a8:9d:b5:28:2d:1b:41:34:bf:69:ba:21:72:50: c2:17:d4:a0:f0:7a:ed:89:08:da:83:c6:49:45:61:c8:85:07: d1:a8:85:be -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVINmfdGobfJTy+7IJkVrZyQJvhIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNzA0MjMyN1oX DTI0MDcyNTA0MjgyN1owMzExMC8GA1UEAxMoRkU1NjUyQUQ0NzAyMTA0REIwODJD Mzk2QjA1RUU1RDA0NTQyRTdENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJf+Gq+n1sNITHHgqYlWd6mNRfF32EN/A+r7Xkl4zzXa1SooNFaEn0b+Mg9Y BoGe0gljDx0vOSKOQXirOi4YzMnpTeb7CWD4vXp4TifkWYWg2Y7jPMKK3b3kYHz1 Wc41I5C9JWneiJy4wsMRQZkkqKQbjq2TxPmO6IDeuF3/oYaytYTsX/NVHArijB1e yz9dRQuxH13AaBxVNyPFUuR697Pv4DeUXkg6MmLFjlD8VxlaamLy1BBG5Z5KMGRs xIh45hMmj7rnb1U4fr9HCbIv9/XPkzKLLyMDb6HdzA3eKdrQAOLYwAMoQ8EZETRu FpNd690RlhnOiEspQL+W5X+Wn+cCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP5WUq1HAhBNsILDlrBe5dBFQufXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hN2FmZDU3YS1lNmRlLTRhNWYtYjVjNi0xMDg2NWQ1YThjOTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3YWZkNTdh LWU2ZGUtNGE1Zi1iNWM2LTEwODY1ZDVhOGM5OC8wL0ZFNTY1MkFENDcwMjEwNERC MDgyQzM5NkIwNUVFNUQwNDU0MkU3RDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn7xQwDQYJKoZIhvcNAQELBQADggEBAEw1rQnBtthfs7hMQSLTuDevImT7NH2n n+OXZNmH6D7bE1fpo6U7TpF8uKn5TMpHEg6XKGL0k3nyBGjqOo51cTbK9+vS7+wy IxxckEN32sR41G2BrBsTgH8UdB4hw48ymgBkeGmmID9jS6t59Ux3pVhAyS4ZCyi7 Ptnxvzg7gIpKsKHi4a3MNiopewF7HZCzp1wLtrqjmEppCmOdZC1YRE/4IhN9Wnrz 1F1qGugmeZqp+O8nUFC0THuoNSgN2CHHc0mi4YZspGZbZcEsQI3KfGdhXVzT0xc1 WOp5r3monbUoLRtBNL9puiFyUMIX1KDweu2JCNqDxklFYciFB9Gohb4= -----END CERTIFICATE-----Generated at Wed May 8 15:17:50 2024 by rpki-client on console-fra.rpki-client.org