$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/348D53D52081AB75C21BE292C2A5077DF4B75308.cer File: 348D53D52081AB75C21BE292C2A5077DF4B75308.cer (raw, json) Hash identifier: bmT+pg9+leQaG4BDtgT+OnBtp7jM/dGKZwcPfhcTWyU= Subject key identifier: 34:8D:53:D5:20:81:AB:75:C2:1B:E2:92:C2:A5:07:7D:F4:B7:53:08 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1769133CF2E9CA7A3617CD12A922F1482199B3F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.mft caRepository: rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 04:22:57 +0000 Certificate not after: Mon 29 Jul 2024 04:27:57 +0000 Subordinate resources: IP: 175.111.88.0/22 IP: 202.43.92.0/22 IP: 2405:2c40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:36:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:69:13:3c:f2:e9:ca:7a:36:17:cd:12:a9:22:f1:48:21:99:b3:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 04:22:57 2023 GMT Not After : Jul 29 04:27:57 2024 GMT Subject: CN=348D53D52081AB75C21BE292C2A5077DF4B75308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:a0:cf:66:6f:63:60:ce:8e:26:1f:9f:0e: 59:70:04:b8:98:db:01:43:fd:02:61:a9:66:38:9b: ec:68:3f:03:52:0b:22:89:56:75:f5:91:df:7d:6d: f5:40:e1:4c:c5:be:5d:3d:a6:68:b8:3f:f3:7a:0e: 7f:0d:54:53:c4:38:b2:ef:2c:6b:b1:12:ee:f5:1f: 9e:36:6e:d9:60:86:a9:3b:3e:8c:0d:d4:71:1b:45: fd:78:ff:09:d3:87:c0:dc:67:5f:73:f3:fb:ae:f2: f1:4f:01:9b:12:ce:72:f6:96:e6:cc:c2:2a:c0:1d: 6b:fc:57:fb:83:a7:57:af:12:14:6b:55:84:a6:2e: 1b:11:33:60:ee:db:74:ff:8f:70:f2:01:57:8c:17: 7a:db:33:cd:78:f9:0e:97:3f:a3:a7:8d:59:cf:c9: 1d:e4:d9:3a:e3:43:bc:cb:89:92:41:6a:f1:fd:76: e6:4e:a6:e5:57:79:28:a7:bd:f4:63:28:1f:55:b3: ed:c4:67:80:7f:4d:90:a1:d4:f3:d0:58:ba:49:4c: 9f:fc:2a:b4:74:bc:a6:70:a4:16:04:31:b4:bf:c8: 4b:d1:c9:90:55:0e:8c:c1:ee:8e:1f:74:07:27:ae: 55:59:13:70:17:e5:20:cb:70:ba:69:58:45:34:c6: 16:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 34:8D:53:D5:20:81:AB:75:C2:1B:E2:92:C2:A5:07:7D:F4:B7:53:08 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.88.0/22 202.43.92.0/22 IPv6: 2405:2c40::/32 Signature Algorithm: sha256WithRSAEncryption 2c:a9:be:ba:44:9e:26:cf:d6:91:84:4d:96:fc:1e:81:13:0f: 76:da:01:d1:70:c4:63:36:4c:68:07:69:3d:cd:60:d1:bf:4a: 81:52:75:49:b8:68:df:3a:70:5b:9a:36:01:97:13:dc:05:6e: ce:76:d2:21:9d:3d:11:4a:82:5c:78:8b:c9:6a:92:30:54:a6: 22:cd:bb:36:e2:e1:9a:4d:00:23:61:1d:2d:4b:7d:04:c0:fd: d4:63:6a:23:a9:bb:fd:92:83:16:3c:5c:6d:84:fc:ba:33:f9: b9:81:01:ab:49:c6:b5:c4:06:97:5d:bf:b8:f5:22:49:96:7d: 4c:2c:69:aa:4b:df:98:cd:aa:fe:22:07:e1:4e:80:7d:ce:af: 9f:7c:1d:94:6c:4c:60:58:1f:73:f7:33:25:7f:67:dc:82:a1: c9:04:43:87:d7:46:0f:a8:8d:2c:e3:a9:d4:1e:cd:d4:ce:7c: 5c:e7:3a:1a:44:d7:a3:50:ae:2b:1f:00:ba:b9:cc:88:89:b1: a8:63:8f:da:8b:60:0d:83:51:97:c2:44:c7:3c:26:34:0d:9e: d2:f6:95:6c:16:b5:27:f9:8d:55:a8:e8:91:5c:6a:6d:0d:0e: 92:19:ca:1e:6c:15:84:47:14:fd:7d:bb:95:8b:5f:b7:37:79: 1e:ed:72:20 -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIUF2kTPPLpyno2F80SqSLxSCGZs/cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA0MjI1N1oX DTI0MDcyOTA0Mjc1N1owMzExMC8GA1UEAxMoMzQ4RDUzRDUyMDgxQUI3NUMyMUJF MjkyQzJBNTA3N0RGNEI3NTMwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLVoM9mb2Ngzo4mH58OWXAEuJjbAUP9AmGpZjib7Gg/A1ILIolWdfWR331t 9UDhTMW+XT2maLg/83oOfw1UU8Q4su8sa7ES7vUfnjZu2WCGqTs+jA3UcRtF/Xj/ CdOHwNxnX3Pz+67y8U8BmxLOcvaW5szCKsAda/xX+4OnV68SFGtVhKYuGxEzYO7b dP+PcPIBV4wXetszzXj5Dpc/o6eNWc/JHeTZOuNDvMuJkkFq8f125k6m5Vd5KKe9 9GMoH1Wz7cRngH9NkKHU89BYuklMn/wqtHS8pnCkFgQxtL/IS9HJkFUOjMHujh90 ByeuVVkTcBflIMtwumlYRTTGFssCAwEAAaOCAs0wggLJMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDSNU9Uggat1whviksKlB330t1MIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zMzc1MDZjNS01ZWYxLTQyOTQtODkwMi1hNDExNGZkZjNiMDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzNzUwNmM1 LTVlZjEtNDI5NC04OTAyLWE0MTE0ZmRmM2IwMC8wLzM0OEQ1M0Q1MjA4MUFCNzVD MjFCRTI5MkMyQTUwNzdERjRCNzUzMDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwD BAKvb1gDBALKK1wwDQQCAAIwBwMFACQFLEAwDQYJKoZIhvcNAQELBQADggEBACyp vrpEnibP1pGETZb8HoETD3baAdFwxGM2TGgHaT3NYNG/SoFSdUm4aN86cFuaNgGX E9wFbs520iGdPRFKglx4i8lqkjBUpiLNuzbi4ZpNACNhHS1LfQTA/dRjaiOpu/2S gxY8XG2E/Loz+bmBAatJxrXEBpddv7j1IkmWfUwsaapL35jNqv4iB+FOgH3Or598 HZRsTGBYH3P3MyV/Z9yCockEQ4fXRg+ojSzjqdQezdTOfFznOhpE16NQrisfALq5 zIiJsahjj9qLYA2DUZfCRMc8JjQNntL2lWwWtSf5jVWo6JFcam0NDpIZyh5sFYRH FP19u5WLX7c3eR7tciA= -----END CERTIFICATE-----Generated at Thu Apr 25 10:23:01 2024 by rpki-client on console-fra.rpki-client.org