$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer File: 89402655017312B8CFCB367BA82966AA21E11F90.cer (raw, json) Hash identifier: wa75hv/a2PLVHRVYCgI9c45cBOQ+1pZPBq2ieWYGCKI= Subject key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 464396EC1C0ABC1F80E7BE2D7E0CBA7189A44CDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft caRepository: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 Sep 2023 21:13:51 +0000 Certificate not after: Sun 01 Sep 2024 21:18:51 +0000 Subordinate resources: IP: 103.213.128.0/22 IP: 110.50.80.0/21 IP: 123.253.232.0/22 IP: 202.147.192.0/20 IP: 2400:1880::/32 IP: 2404:b280::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:43:96:ec:1c:0a:bc:1f:80:e7:be:2d:7e:0c:ba:71:89:a4:4c:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 3 21:13:51 2023 GMT Not After : Sep 1 21:18:51 2024 GMT Subject: CN=89402655017312B8CFCB367BA82966AA21E11F90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a0:a7:5c:fa:7b:a2:eb:56:ee:c0:29:3c:b5: f8:22:d7:21:cc:a0:b3:60:37:47:c1:78:d1:b2:be: 8b:12:e6:b8:e3:b4:1f:47:8d:78:64:db:21:3a:bd: d4:27:37:6f:cd:4c:25:af:7a:1a:14:d3:3f:54:54: f8:b9:6a:23:18:a5:40:3f:1f:74:2f:ab:e3:93:0c: 31:73:23:a2:35:6a:df:e4:40:e6:3f:80:78:d5:cb: 3e:f3:ec:97:a5:74:bd:95:73:2b:24:64:5e:b8:bf: ef:dd:6c:03:b7:62:eb:36:23:50:84:98:2b:ec:5c: 7e:2d:4e:6e:80:d9:cd:55:e4:c6:98:dc:11:d5:62: d4:df:8a:5e:11:2d:04:4c:87:3f:47:dc:c4:4c:96: ef:03:3d:2c:04:c0:11:6b:e5:1c:0a:9e:10:23:16: 01:28:ba:d6:b8:61:44:13:7f:be:8e:08:e1:ba:0c: f3:c5:94:2e:5a:3c:5c:40:06:a2:43:8a:a3:88:e5: 60:28:ad:de:2e:6c:8a:93:de:83:17:b5:4c:e0:b0: 33:7a:51:9c:c6:30:f7:d0:8a:20:fe:a0:f5:32:46: f3:66:99:4d:6b:bd:93:fd:fb:f4:de:f7:51:30:b1: 99:e3:5f:09:ac:70:84:46:27:32:62:60:31:e2:84: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.128.0/22 110.50.80.0/21 123.253.232.0/22 202.147.192.0/20 IPv6: 2400:1880::/32 2404:b280::/32 Signature Algorithm: sha256WithRSAEncryption 8e:af:48:ef:66:f1:63:0a:b5:bc:21:30:08:9c:43:06:c3:6e: 44:93:0a:96:4c:43:14:e5:b7:c9:39:4e:2c:32:50:b9:98:2b: 50:a4:fb:b9:c8:5c:e1:7f:f5:b5:51:99:b1:49:6b:40:b9:dc: 2a:35:0e:0a:38:3c:c6:77:08:ac:f2:cc:cc:42:73:dc:47:24: cd:12:f2:1e:50:4a:91:97:40:1e:44:f7:41:91:9e:6f:3e:5c: 25:2d:c3:07:a8:35:8e:1b:dd:85:48:6f:c0:55:75:96:3d:ad: e9:aa:25:fc:ba:47:32:06:18:b1:29:18:6d:13:90:e3:2d:8a: 55:8a:42:2c:db:4b:3e:c3:62:39:92:f6:c1:63:0f:9f:ff:af: c6:a6:d3:92:f1:46:0a:82:4c:c7:84:7e:f2:11:52:77:14:27: 3d:af:88:b6:29:fc:a9:85:88:47:6d:61:30:17:62:0f:39:cc: 82:5f:ec:4b:59:99:c2:ef:eb:7d:a5:72:90:75:5b:fc:6f:2a: 83:94:95:60:64:83:74:3d:aa:98:a0:f9:9e:08:21:c1:06:ba: 4a:e1:04:ed:e3:bb:96:d1:69:81:8c:59:fc:fc:5b:9a:a2:d3: 23:bd:5d:6e:80:40:99:a6:e4:78:3e:18:c6:30:57:ae:1c:d3: bc:eb:3f:13 -----BEGIN CERTIFICATE----- MIIF7TCCBNWgAwIBAgIURkOW7BwKvB+A574tfgy6cYmkTN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwMzIxMTM1MVoX DTI0MDkwMTIxMTg1MVowMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0Iz NjdCQTgyOTY2QUEyMUUxMUY5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSgp1z6e6LrVu7AKTy1+CLXIcygs2A3R8F40bK+ixLmuOO0H0eNeGTbITq9 1Cc3b81MJa96GhTTP1RU+LlqIxilQD8fdC+r45MMMXMjojVq3+RA5j+AeNXLPvPs l6V0vZVzKyRkXri/791sA7di6zYjUISYK+xcfi1OboDZzVXkxpjcEdVi1N+KXhEt BEyHP0fcxEyW7wM9LATAEWvlHAqeECMWASi61rhhRBN/vo4I4boM88WULlo8XEAG okOKo4jlYCit3i5sipPegxe1TOCwM3pRnMYw99CKIP6g9TJG82aZTWu9k/379N73 UTCxmeNfCaxwhEYnMmJgMeKEgmsCAwEAAaOCAuAwggLcMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIlAJlUBcxK4z8s2e6gpZqoh4R+QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBj LTRkNmMtNDQwOC04OTQ3LWZiYTZlN2M0YmU3Yy8wLzg5NDAyNjU1MDE3MzEyQjhD RkNCMzY3QkE4Mjk2NkFBMjFFMTFGOTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRwYIKwYBBQUHAQcBAf8EODA2MB4EAgABMBgD BAJn1YADBANuMlADBAJ7/egDBATKk8AwFAQCAAIwDgMFACQAGIADBQAkBLKAMA0G CSqGSIb3DQEBCwUAA4IBAQCOr0jvZvFjCrW8ITAInEMGw25EkwqWTEMU5bfJOU4s MlC5mCtQpPu5yFzhf/W1UZmxSWtAudwqNQ4KODzGdwis8szMQnPcRyTNEvIeUEqR l0AeRPdBkZ5vPlwlLcMHqDWOG92FSG/AVXWWPa3pqiX8ukcyBhixKRhtE5DjLYpV ikIs20s+w2I5kvbBYw+f/6/GptOS8UYKgkzHhH7yEVJ3FCc9r4i2KfyphYhHbWEw F2IPOcyCX+xLWZnC7+t9pXKQdVv8byqDlJVgZIN0PaqYoPmeCCHBBrpK4QTt47uW 0WmBjFn8/FuaotMjvV1ugECZpuR4PhjGMFeuHNO86z8T -----END CERTIFICATE-----Generated at Tue Apr 30 03:30:55 2024 by rpki-client on console-fra.rpki-client.org