$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer File: 8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer (raw, json) Hash identifier: yyF6ZkiCNy70pdbmKSZHH45u5xZ0S3Yh3fFz53RSG9s= Subject key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63BB771C6CB83C2B99DEB15B6512A414D9057D94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft caRepository: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 09:14:54 +0000 Certificate not after: Mon 29 Jul 2024 09:19:54 +0000 Subordinate resources: IP: 43.229.20.0/22 IP: 103.24.148.0/22 IP: 202.150.128.0/19 IP: 2401:e480::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Apr 2024 00:28:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bb:77:1c:6c:b8:3c:2b:99:de:b1:5b:65:12:a4:14:d9:05:7d:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 09:14:54 2023 GMT Not After : Jul 29 09:19:54 2024 GMT Subject: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:a5:e5:41:20:b6:1d:c3:f5:06:75:96:1b:25: f3:35:4a:57:3e:dd:fa:ce:5e:19:c5:ba:84:67:03: 2f:62:63:ac:4d:31:a9:96:6f:22:37:52:6c:b7:4b: 44:79:26:e9:bd:3f:f0:bf:e4:ee:dd:7f:7a:c5:db: 79:a3:e2:51:ce:e4:25:53:97:0f:c6:67:4c:82:7b: 8f:f3:c1:80:6a:90:60:2f:fe:b2:6f:1b:05:8d:9f: 78:51:a6:3d:b0:f6:db:f4:9c:7f:db:89:3b:f7:a1: 4d:27:7f:b1:07:30:65:d7:4e:e9:5d:6a:61:52:ff: 88:5e:9c:59:3a:48:13:dc:db:cb:c7:12:be:27:ea: 69:50:9f:04:05:e5:f3:b3:ba:08:42:ad:32:d4:d3: 24:a8:9c:54:0c:a2:eb:63:28:e9:54:1c:c4:6b:52: 00:0d:00:70:f5:d3:d7:94:22:32:8b:f3:98:b4:6b: e5:bb:c0:e6:ca:c5:16:e7:73:56:47:f2:4f:b3:76: 2f:0a:06:57:a5:06:8b:39:de:8e:5d:bc:ff:ff:c1: 62:3c:cf:18:59:2e:2f:a1:de:c2:37:69:3f:d4:c0: cd:ff:f0:e3:e3:8f:50:cb:57:83:fd:d3:9d:fd:00: f7:51:77:b1:45:41:07:29:88:fe:85:8b:49:ac:b2: ac:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.20.0/22 103.24.148.0/22 202.150.128.0/19 IPv6: 2401:e480::/32 Signature Algorithm: sha256WithRSAEncryption 66:a0:25:7a:80:d7:f0:8a:93:66:cf:a5:19:39:98:06:20:0f: d3:a0:c7:b7:6c:94:66:d4:cb:0d:6c:63:4b:26:dc:e0:b5:6d: af:fc:5d:0e:9c:2a:fc:4d:f3:9a:9d:89:2e:94:23:16:67:0f: 46:ae:32:96:99:e7:b1:54:b2:53:37:ed:9f:26:51:e8:46:09: 2b:96:b4:4b:e1:c6:94:8d:35:47:ef:c4:76:1a:bd:4e:75:73: 83:ad:bd:7c:d4:5e:be:c2:46:a9:72:b4:d5:9a:a7:cc:84:ff: b5:cf:fa:62:e9:dc:1d:fe:50:92:a0:d6:d9:4f:5f:da:81:b1: a5:f0:ff:d9:29:a1:71:12:24:05:89:62:79:82:f4:57:48:5c: 3f:24:ec:78:fd:7f:87:43:ec:75:d8:25:4d:0a:b8:70:1a:b0: b2:b0:6d:4f:d0:50:a9:71:f6:3e:94:ed:ba:d5:0c:c5:66:28: 32:f4:cd:1f:d9:f3:0f:de:c4:ae:dc:82:79:16:54:84:aa:1f: f5:09:47:f0:6e:57:2f:ad:2f:0b:ce:d7:74:b0:64:57:3e:ab: df:04:dc:cc:0d:dc:3c:0a:6b:a8:34:61:9e:b7:20:cd:40:b4: 72:e7:b5:a1:4f:9e:6b:08:27:b5:8e:86:9f:aa:d7:fa:6e:10: 01:fd:ea:27 -----BEGIN CERTIFICATE----- MIIF4DCCBMigAwIBAgIUY7t3HGy4PCuZ3rFbZRKkFNkFfZQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA5MTQ1NFoX DTI0MDcyOTA5MTk1NFowMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0 MEQ1Q0VGQUY3Mzg0NEY3RjRFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPql5UEgth3D9QZ1lhsl8zVKVz7d+s5eGcW6hGcDL2JjrE0xqZZvIjdSbLdL RHkm6b0/8L/k7t1/esXbeaPiUc7kJVOXD8ZnTIJ7j/PBgGqQYC/+sm8bBY2feFGm PbD22/Scf9uJO/ehTSd/sQcwZddO6V1qYVL/iF6cWTpIE9zby8cSvifqaVCfBAXl 87O6CEKtMtTTJKicVAyi62Mo6VQcxGtSAA0AcPXT15QiMovzmLRr5bvA5srFFudz VkfyT7N2LwoGV6UGiznejl28///BYjzPGFkuL6HewjdpP9TAzf/w4+OPUMtXg/3T nf0A91F3sUVBBymI/oWLSayyrA0CAwEAAaOCAtMwggLPMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI+xd66DUm1xPBJA1c769zhE9/TlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yYjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJj LTJlMjItNDhiZS04YmEyLTYzNGY1ODJjMmVjYi8wLzhGQjE3N0FFODM1MjZENzEz QzEyNDBENUNFRkFGNzM4NDRGN0Y0RTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBID BAIr5RQDBAJnGJQDBAXKloAwDQQCAAIwBwMFACQB5IAwDQYJKoZIhvcNAQELBQAD ggEBAGagJXqA1/CKk2bPpRk5mAYgD9Ogx7dslGbUyw1sY0sm3OC1ba/8XQ6cKvxN 85qdiS6UIxZnD0auMpaZ57FUslM37Z8mUehGCSuWtEvhxpSNNUfvxHYavU51c4Ot vXzUXr7CRqlytNWap8yE/7XP+mLp3B3+UJKg1tlPX9qBsaXw/9kpoXESJAWJYnmC 9FdIXD8k7Hj9f4dD7HXYJU0KuHAasLKwbU/QUKlx9j6U7brVDMVmKDL0zR/Z8w/e xK7cgnkWVISqH/UJR/BuVy+tLwvO13SwZFc+q98E3MwN3DwKa6g0YZ63IM1AtHLn taFPnmsIJ7WOhp+q1/puEAH96ic= -----END CERTIFICATE-----Generated at Thu Apr 18 23:20:15 2024 by rpki-client on console-fra.rpki-client.org