$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.cer File: 1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.cer (raw, json) Hash identifier: mMRQZPSnpxhoPOG5h6ZDOLv0UZJSK9DSmkSK74lVVnU= Subject key identifier: 1B:D7:53:D8:CE:FF:B0:C4:CB:B1:9A:2E:15:76:5E:C3:23:33:A8:73 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F20999763EDC5C90311DBCDC9E920275A2CEDBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.mft caRepository: rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 09 Dec 2023 09:45:48 +0000 Certificate not after: Sat 07 Dec 2024 09:50:48 +0000 Subordinate resources: IP: 103.176.182.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:20:99:97:63:ed:c5:c9:03:11:db:cd:c9:e9:20:27:5a:2c:ed:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 9 09:45:48 2023 GMT Not After : Dec 7 09:50:48 2024 GMT Subject: CN=1BD753D8CEFFB0C4CBB19A2E15765EC32333A873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:98:e8:e0:a8:19:c5:6e:c1:46:3a:00:a3:68: 82:24:22:3d:18:3b:92:3f:43:4f:61:ac:20:94:11: ed:f7:4d:73:7e:50:ae:de:f9:8e:20:d5:22:16:6d: 1d:8d:89:5c:dd:ce:05:37:f0:ce:e2:d4:c1:d8:91: 8d:ac:67:6e:53:7b:db:5b:05:15:fe:eb:f9:70:5b: e5:16:99:52:fd:5d:03:50:ba:3b:36:4c:01:35:d9: 0b:23:08:63:de:56:5e:a7:dd:5a:19:9f:51:2f:21: 3a:08:d7:33:5e:91:e4:f7:d1:9f:f1:35:ca:7f:7f: 14:67:c7:e1:d5:33:ab:d4:87:c8:31:bc:f2:ff:e3: 15:7c:d3:27:79:6a:fe:23:4c:7f:69:a8:c5:79:8e: 86:b5:96:a2:ce:65:8e:8b:ef:8d:77:99:b8:38:97: 6f:38:5a:6b:a4:f8:f9:8e:3f:a3:f9:db:86:bc:5a: 5d:61:c3:c9:6a:a0:b5:52:15:24:33:27:2b:3f:c7: 22:8e:34:bc:18:ec:c9:9c:c3:21:7f:ba:3b:4e:b4: d9:4b:07:fb:3d:f7:0d:1f:b1:b6:3d:29:74:0f:b1: 8d:25:fc:64:52:2d:6e:21:07:15:b2:90:90:12:82: 65:58:f7:e8:1e:48:88:55:a9:eb:98:f5:34:63:f7: e6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1B:D7:53:D8:CE:FF:B0:C4:CB:B1:9A:2E:15:76:5E:C3:23:33:A8:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/70e6fd81-b877-4f7c-abc6-082fcbea189f/0/1BD753D8CEFFB0C4CBB19A2E15765EC32333A873.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.182.0/23 Signature Algorithm: sha256WithRSAEncryption 90:fd:02:19:fa:48:ff:ad:8b:c1:49:68:11:6b:d0:8e:a7:5a: 5e:c4:b6:b1:4c:48:2d:86:ea:bf:39:76:84:c1:e6:ff:a1:9f: bb:48:d2:e6:c6:24:92:70:c7:3e:47:a6:b9:a2:f9:2d:46:6f: 9f:57:6b:9c:33:bc:d4:06:7a:32:c4:81:f8:80:d4:ce:14:d1: 58:df:da:9e:4d:e2:07:e2:d1:b0:73:f0:35:02:a4:01:f9:25: 70:a4:a3:ae:01:35:0d:fa:e7:59:49:f3:5b:c4:68:65:c6:b0: 88:28:39:d7:83:67:62:b9:0d:b5:f9:01:58:dd:89:b3:36:44: 94:2f:a1:3b:d0:e5:0a:4f:44:3f:9e:1d:c0:af:8a:f5:87:42: 30:42:51:94:36:e4:fa:7d:bf:ca:8f:83:7a:60:ac:b0:8d:11: 95:78:7b:f0:77:e7:28:c0:fc:fb:91:8a:3d:78:39:1d:44:63: 24:75:8a:50:b5:67:20:37:dd:93:d7:fd:b6:29:c0:54:57:7b: 10:62:8a:23:36:19:14:45:8c:ed:38:69:e5:1b:0c:44:60:c5: f4:1f:41:b2:1e:f3:59:8d:b6:34:29:1c:c0:18:87:5e:1f:03: 28:9d:38:fc:26:74:60:6f:9f:24:16:74:c9:f3:26:b5:37:8f: e7:c7:b8:df -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfyCZl2PtxckDEdvNyekgJ1os7b8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwOTA5NDU0OFoX DTI0MTIwNzA5NTA0OFowMzExMC8GA1UEAxMoMUJENzUzRDhDRUZGQjBDNENCQjE5 QTJFMTU3NjVFQzMyMzMzQTg3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6Y6OCoGcVuwUY6AKNogiQiPRg7kj9DT2GsIJQR7fdNc35Qrt75jiDVIhZt HY2JXN3OBTfwzuLUwdiRjaxnblN721sFFf7r+XBb5RaZUv1dA1C6OzZMATXZCyMI Y95WXqfdWhmfUS8hOgjXM16R5PfRn/E1yn9/FGfH4dUzq9SHyDG88v/jFXzTJ3lq /iNMf2moxXmOhrWWos5ljovvjXeZuDiXbzhaa6T4+Y4/o/nbhrxaXWHDyWqgtVIV JDMnKz/HIo40vBjsyZzDIX+6O0602UsH+z33DR+xtj0pdA+xjSX8ZFItbiEHFbKQ kBKCZVj36B5IiFWp65j1NGP35tcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBvXU9jO/7DEy7GaLhV2XsMjM6hzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83MGU2ZmQ4MS1iODc3LTRmN2MtYWJjNi0wODJmY2JlYTE4OWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcwZTZmZDgx LWI4NzctNGY3Yy1hYmM2LTA4MmZjYmVhMTg5Zi8wLzFCRDc1M0Q4Q0VGRkIwQzRD QkIxOUEyRTE1NzY1RUMzMjMzM0E4NzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsLYwDQYJKoZIhvcNAQELBQADggEBAJD9Ahn6SP+ti8FJaBFr0I6nWl7EtrFM SC2G6r85doTB5v+hn7tI0ubGJJJwxz5Hprmi+S1Gb59Xa5wzvNQGejLEgfiA1M4U 0Vjf2p5N4gfi0bBz8DUCpAH5JXCko64BNQ3651lJ81vEaGXGsIgoOdeDZ2K5DbX5 AVjdibM2RJQvoTvQ5QpPRD+eHcCvivWHQjBCUZQ25Pp9v8qPg3pgrLCNEZV4e/B3 5yjA/PuRij14OR1EYyR1ilC1ZyA33ZPX/bYpwFRXexBiiiM2GRRFjO04aeUbDERg xfQfQbIe81mNtjQpHMAYh14fAyidOPwmdGBvnyQWdMnzJrU3j+fHuN8= -----END CERTIFICATE-----Generated at Wed May 8 21:02:10 2024 by rpki-client on console-fra.rpki-client.org