$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer File: 11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer (raw, json) Hash identifier: ecR17/nNd9a/SmMBoHPz8CzrnhshWsSD4lv7w2qBlpU= Subject key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3E53E682A761F708826176A88EA5499976D929E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft caRepository: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 07 Jul 2023 12:36:33 +0000 Certificate not after: Fri 05 Jul 2024 12:41:33 +0000 Subordinate resources: IP: 27.131.0.0/21 IP: 45.115.64.0/22 IP: 103.16.112.0/22 IP: 103.29.4.0/22 IP: 119.110.80.0/21 IP: 2401:ae00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:53:e6:82:a7:61:f7:08:82:61:76:a8:8e:a5:49:99:76:d9:29:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 7 12:36:33 2023 GMT Not After : Jul 5 12:41:33 2024 GMT Subject: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c8:94:79:5d:20:3f:bc:60:a3:4b:a0:c2:25: 84:d5:65:fd:f4:89:68:86:94:1c:96:58:6d:ca:00: ab:eb:55:21:8e:8a:ed:e0:32:24:7d:b2:01:05:89: f9:e8:9e:1f:f3:af:54:62:77:45:3a:11:d4:58:30: 11:40:ee:92:cc:d8:c6:6e:90:fb:c0:3f:e1:6c:41: 5c:46:26:68:3c:65:9f:43:8f:40:96:82:b8:66:87: 4e:b0:0e:56:f3:74:cc:54:b2:d6:ce:30:7f:72:ba: e5:5d:38:b0:61:05:2f:12:f6:ce:75:1a:85:ec:b2: ca:fa:10:15:af:dd:ca:e4:e0:80:37:e5:ff:02:56: f9:6c:c3:a2:66:ca:25:0e:ec:fa:8c:6d:dc:14:ef: 46:a1:4b:71:04:63:22:7c:0c:09:19:32:e7:a7:89: f4:bf:9c:1e:61:30:18:22:b1:0d:d1:60:27:4f:99: 5f:b4:08:6e:d2:31:b0:37:8a:21:5a:94:77:d2:10: 3b:58:9b:fa:3f:6e:44:2d:32:4a:0a:6f:73:2f:49: 01:45:c9:9a:23:36:60:f6:fa:6b:54:48:3d:69:5b: 9f:36:6d:9a:cb:9d:64:8c:59:af:d4:90:0b:ff:26: b5:3d:d7:fb:28:8a:61:10:5c:65:9d:61:8d:17:fd: cb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.0.0/21 45.115.64.0/22 103.16.112.0/22 103.29.4.0/22 119.110.80.0/21 IPv6: 2401:ae00::/32 Signature Algorithm: sha256WithRSAEncryption 59:69:b2:e5:78:2d:87:55:a5:cc:e2:56:00:3d:4d:f5:db:07: da:f5:ed:d7:17:38:14:7a:7e:bd:60:93:7d:d8:85:59:ef:cb: 0c:f7:d8:18:1b:16:ba:53:ee:55:a5:03:03:a1:41:d9:fe:d2: 6a:da:e4:3d:9d:36:ee:26:76:2a:2f:e6:d4:2b:3b:c4:6a:7c: ad:20:5b:71:d6:74:84:d7:2b:a0:41:c4:bf:56:16:15:96:c1: 0b:65:0b:69:4e:3d:18:07:27:24:a1:6e:b9:43:15:4a:4e:fd: 32:f3:85:3c:70:78:6d:aa:c7:31:56:f4:50:f0:88:f1:5e:dc: 47:67:fe:62:55:16:4a:7c:2f:50:38:08:31:cf:3b:18:46:bc: f8:ca:ee:c6:e4:57:94:63:61:1c:8c:bd:1b:05:b3:a8:dd:eb: ac:4a:e4:7b:12:d7:fd:57:4f:8a:51:6f:3b:f1:0b:29:b9:24: 96:4c:a5:3a:bd:81:38:b4:a8:fc:8a:85:77:99:b7:7c:bd:28: 68:c4:9c:9a:48:74:e2:d1:bf:2d:9e:01:ac:fb:f5:5c:fe:11: ac:7f:a7:62:2c:f4:1d:d8:25:42:b4:d1:8b:5f:ff:9a:83:9f: 7e:23:9e:bf:22:73:d4:ab:f9:ee:49:8c:25:43:0b:13:26:71: 88:6a:10:07 -----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgIUPlPmgqdh9wiCYXaojqVJmXbZKecwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwNzEyMzYzM1oX DTI0MDcwNTEyNDEzM1owMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRC QTVENkIwRjI4RTU2OERGNkUxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/IlHldID+8YKNLoMIlhNVl/fSJaIaUHJZYbcoAq+tVIY6K7eAyJH2yAQWJ +eieH/OvVGJ3RToR1FgwEUDukszYxm6Q+8A/4WxBXEYmaDxln0OPQJaCuGaHTrAO VvN0zFSy1s4wf3K65V04sGEFLxL2znUaheyyyvoQFa/dyuTggDfl/wJW+WzDombK JQ7s+oxt3BTvRqFLcQRjInwMCRky56eJ9L+cHmEwGCKxDdFgJ0+ZX7QIbtIxsDeK IVqUd9IQO1ib+j9uRC0ySgpvcy9JAUXJmiM2YPb6a1RIPWlbnzZtmsudZIxZr9SQ C/8mtT3X+yiKYRBcZZ1hjRf9yycCAwEAAaOCAt8wggLbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBHJuihTS6RJmbS6XWsPKOVo324UMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2Njcz LTQ3YTEtNDVlNS1iNmMyLTQyYWI4YjQ3NjI0OS8wLzExQzlCQTI4NTM0QkE0NDk5 OUI0QkE1RDZCMEYyOEU1NjhERjZFMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4D BAMbgwADBAItc0ADBAJnEHADBAJnHQQDBAN3blAwDQQCAAIwBwMFACQBrgAwDQYJ KoZIhvcNAQELBQADggEBAFlpsuV4LYdVpcziVgA9TfXbB9r17dcXOBR6fr1gk33Y hVnvywz32BgbFrpT7lWlAwOhQdn+0mra5D2dNu4mdiov5tQrO8RqfK0gW3HWdITX K6BBxL9WFhWWwQtlC2lOPRgHJyShbrlDFUpO/TLzhTxweG2qxzFW9FDwiPFe3Edn /mJVFkp8L1A4CDHPOxhGvPjK7sbkV5RjYRyMvRsFs6jd66xK5HsS1/1XT4pRbzvx Cym5JJZMpTq9gTi0qPyKhXeZt3y9KGjEnJpIdOLRvy2eAaz79Vz+Eax/p2Is9B3Y JUK00Ytf/5qDn34jnr8ic9Sr+e5JjCVDCxMmcYhqEAc= -----END CERTIFICATE-----Generated at Wed May 8 15:17:32 2024 by rpki-client on console-fra.rpki-client.org