$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer File: DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.cer (raw, json) Hash identifier: uXiMgbmkG3o44L6uPlWWvMG4TrIHMMn1lbAOuNKzgKM= Subject key identifier: DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09C775CBCFF049D22E032E0EAD96E06109266BDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.mft caRepository: rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 22:53:07 +0000 Certificate not after: Sun 28 Jul 2024 22:58:07 +0000 Subordinate resources: IP: 103.116.216.0/22 IP: 2403:6c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:c7:75:cb:cf:f0:49:d2:2e:03:2e:0e:ad:96:e0:61:09:26:6b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 22:53:07 2023 GMT Not After : Jul 28 22:58:07 2024 GMT Subject: CN=DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f6:52:94:a0:5e:06:c9:ec:b5:67:0e:fc:05: 10:99:f2:a2:1d:bb:a9:ff:30:46:23:88:56:52:e7: 2a:60:52:9f:93:c5:65:fe:3a:14:43:c9:47:09:b2: 1f:79:66:d1:a4:38:1a:0c:c0:97:3c:21:a5:79:4f: 4a:36:bf:cc:cf:e4:50:67:5c:13:aa:ec:a4:6d:1d: e5:fd:8f:a2:15:6c:8e:4f:e4:01:58:c6:58:fc:3e: 1b:41:2f:ee:11:29:e7:3c:f3:e4:2c:ae:4f:c7:77: 27:64:07:3e:d8:08:32:b4:9c:71:1b:74:38:f9:b7: 02:48:60:98:56:b4:14:49:de:4e:e3:2e:82:76:2b: bc:02:21:66:92:71:92:9c:83:c6:a0:05:16:81:fb: d0:92:31:52:e2:29:87:35:cf:54:8d:00:d2:42:cc: c0:71:65:23:af:26:3b:56:8a:da:de:40:b1:51:57: 46:2f:df:ed:9d:23:06:d9:12:2a:73:27:21:55:d6: ca:19:79:07:b0:b8:b8:cf:5e:f6:45:01:7b:67:eb: 70:e4:a4:7c:c9:27:21:fe:6b:7b:69:2a:fb:f9:3d: 66:33:6e:2e:96:07:70:18:06:76:68:74:74:97:ef: d5:8a:3a:6d:39:ac:ae:02:4e:4a:7f:20:84:9d:c5: 87:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DB:6B:AB:95:61:4F:69:81:1F:2A:E9:B4:83:73:E7:9D:2D:C2:D7:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/86d720d5-b7d4-4395-a06b-19904a63f948/0/DB6BAB95614F69811F2AE9B48373E79D2DC2D7F3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.116.216.0/22 IPv6: 2403:6c0::/32 Signature Algorithm: sha256WithRSAEncryption 2a:c9:c9:18:db:2e:17:a6:77:c8:98:bc:4b:e3:1a:16:56:cb: fc:2f:18:4e:2f:4a:0b:07:5a:97:1d:74:b8:65:b5:30:94:ea: f4:e6:c0:a5:c0:14:77:17:40:10:0e:41:10:bf:88:63:7a:5d: 73:cf:3b:91:6b:93:d3:3e:da:dc:4b:eb:4f:b8:bc:34:48:13: 0f:3c:a3:72:4e:1d:a2:01:65:39:22:4c:7c:63:28:d6:d9:53: 57:f9:59:a3:41:38:1c:95:f2:ae:5f:98:41:1d:4e:ca:14:bc: d1:8e:48:1c:85:89:4e:e9:30:d0:3e:da:8c:0c:93:2c:48:cf: be:e7:44:17:91:c0:42:b3:95:44:6f:a8:02:c8:1b:74:0a:1a: 9e:86:79:c4:e7:75:d9:c8:f6:d3:af:ed:5f:d3:50:f5:0f:6a: 59:97:56:21:cf:ea:fa:94:24:0e:54:d7:10:80:7d:c1:8a:5d: a5:42:93:9f:53:11:f0:58:70:fe:6b:47:00:38:c2:0e:0b:7a: 62:ad:92:03:49:21:e4:e5:79:ab:50:b9:86:59:b1:77:ef:c7: ef:23:66:75:db:a6:50:da:a0:90:8b:24:29:8a:b8:b0:74:60: 75:41:be:40:00:5a:7a:84:8f:4c:e0:a1:82:15:09:89:38:e9: 50:fc:5a:2e -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUCcd1y8/wSdIuAy4OrZbgYQkma94wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIyNTMwN1oX DTI0MDcyODIyNTgwN1owMzExMC8GA1UEAxMoREI2QkFCOTU2MTRGNjk4MTFGMkFF OUI0ODM3M0U3OUQyREMyRDdGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJr2UpSgXgbJ7LVnDvwFEJnyoh27qf8wRiOIVlLnKmBSn5PFZf46FEPJRwmy H3lm0aQ4GgzAlzwhpXlPSja/zM/kUGdcE6rspG0d5f2PohVsjk/kAVjGWPw+G0Ev 7hEp5zzz5CyuT8d3J2QHPtgIMrSccRt0OPm3AkhgmFa0FEneTuMugnYrvAIhZpJx kpyDxqAFFoH70JIxUuIphzXPVI0A0kLMwHFlI68mO1aK2t5AsVFXRi/f7Z0jBtkS KnMnIVXWyhl5B7C4uM9e9kUBe2frcOSkfMknIf5re2kq+/k9ZjNuLpYHcBgGdmh0 dJfv1Yo6bTmsrgJOSn8ghJ3FhysCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNtrq5VhT2mBHyrptINz550twtfzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NmQ3MjBkNS1iN2Q0LTQzOTUtYTA2Yi0xOTkwNGE2M2Y5NDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg2ZDcyMGQ1 LWI3ZDQtNDM5NS1hMDZiLTE5OTA0YTYzZjk0OC8wL0RCNkJBQjk1NjE0RjY5ODEx RjJBRTlCNDgzNzNFNzlEMkRDMkQ3RjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJndNgwDQQCAAIwBwMFACQDBsAwDQYJKoZIhvcNAQELBQADggEBACrJyRjbLhem d8iYvEvjGhZWy/wvGE4vSgsHWpcddLhltTCU6vTmwKXAFHcXQBAOQRC/iGN6XXPP O5Frk9M+2txL60+4vDRIEw88o3JOHaIBZTkiTHxjKNbZU1f5WaNBOByV8q5fmEEd TsoUvNGOSByFiU7pMNA+2owMkyxIz77nRBeRwEKzlURvqALIG3QKGp6GecTnddnI 9tOv7V/TUPUPalmXViHP6vqUJA5U1xCAfcGKXaVCk59TEfBYcP5rRwA4wg4LemKt kgNJIeTleatQuYZZsXfvx+8jZnXbplDaoJCLJCmKuLB0YHVBvkAAWnqEj0zgoYIV CYk46VD8Wi4= -----END CERTIFICATE-----Generated at Fri May 3 04:42:31 2024 by rpki-client on console-fra.rpki-client.org