$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer (raw, json) Hash identifier: ev+bNQtmMH+eeu8xvIDmYj8xeL2JRW08TAuSOZanY8E= Subject key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E45810971C6C20F2C31A2AA7531343A441FC9F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft caRepository: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 09 Aug 2023 10:48:35 +0000 Certificate not after: Wed 07 Aug 2024 10:53:35 +0000 Subordinate resources: IP: 103.193.166.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:45:81:09:71:c6:c2:0f:2c:31:a2:aa:75:31:34:3a:44:1f:c9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 9 10:48:35 2023 GMT Not After : Aug 7 10:53:35 2024 GMT Subject: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:65:15:d8:63:de:39:56:e4:a6:c1:11:c6: 39:4e:7a:f7:94:34:4f:d4:aa:84:f2:20:be:31:7e: ff:da:03:78:de:a7:c8:7e:73:f7:f3:39:f6:93:d9: a2:b7:c1:43:39:7c:aa:c9:99:c6:3d:c2:cc:b4:41: 71:4e:d4:e4:0d:5c:b1:5b:53:dd:dc:20:6d:55:0c: 25:78:a1:47:d1:bb:11:ba:db:1f:e5:69:bc:01:d6: f9:51:24:a6:1e:d8:2f:8e:39:96:e3:96:ce:92:75: 60:16:35:ed:32:9a:08:f4:b4:e8:f3:e0:2b:ee:87: 07:5c:00:f3:7b:c3:1c:6c:47:94:1a:b8:b0:47:fe: bc:ef:65:61:98:b5:2b:04:23:75:fc:90:cf:96:8e: e0:e7:8a:5a:be:b3:b9:8d:d0:d7:2c:1d:de:d5:14: a0:af:59:91:06:3f:72:b6:50:97:69:14:37:23:5f: 77:3d:5f:36:80:cb:06:79:54:de:e2:14:2e:c8:48: 7f:ba:04:ac:9a:5e:cd:82:b3:80:8c:b5:7a:9e:1f: 36:da:36:47:04:31:ed:60:c0:d7:7b:35:b8:f0:3a: 3c:4e:50:06:6c:99:b7:bc:24:b0:5d:29:03:20:fb: d5:ad:39:88:a3:dd:5d:78:c6:3a:e7:d1:85:64:ff: af:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.166.0/23 Signature Algorithm: sha256WithRSAEncryption 79:3b:bf:29:6c:a9:7a:1d:10:f7:a1:bf:e1:3e:ec:d6:29:15: 02:dd:6b:a7:20:86:cc:e1:97:09:a0:1f:a8:bf:db:50:ca:ac: 5e:69:4a:85:e7:fa:6e:ac:56:aa:5d:d1:51:80:7f:94:32:dc: a5:d0:91:5a:85:28:24:55:2a:7c:e9:52:50:cf:21:df:59:c9: 1a:d0:93:83:21:4e:50:12:cc:f9:fc:29:14:17:59:eb:4b:7f: 21:bf:48:0d:21:0b:de:7b:5c:15:80:ac:c4:6d:5c:17:70:c8: 87:c0:17:5f:64:61:63:c7:a5:3e:d5:a7:a2:34:7b:0c:f5:1f: e8:0e:94:27:45:40:7d:ff:7a:e0:7c:a1:1a:00:e4:da:e8:92: 52:3a:96:82:be:b0:ef:c3:2e:2c:a3:fe:7c:5e:97:e2:f7:a7: fb:64:4c:be:49:34:ad:0e:14:38:14:46:6d:82:64:75:91:1d: 67:68:e9:68:54:b2:aa:8a:88:94:7a:ba:0e:ff:f1:8d:5c:0b: 80:a0:7d:52:e4:f8:88:77:25:bc:64:85:55:5b:a5:7f:43:2f: ad:e4:49:72:d2:09:44:d3:09:cc:3d:26:44:8c:58:e6:b8:76: 6c:f4:59:63:a0:a1:8a:60:32:6b:37:c3:40:03:2f:fc:d0:0f: 2f:c7:3f:ac -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXkWBCXHGwg8sMaKqdTE0OkQfyfEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwOTEwNDgzNVoX DTI0MDgwNzEwNTMzNVowMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZF OTA1N0E3RjE1MjJEQzlCODFBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvIZRXYY945VuSmwRHGOU5695Q0T9SqhPIgvjF+/9oDeN6nyH5z9/M59pPZ orfBQzl8qsmZxj3CzLRBcU7U5A1csVtT3dwgbVUMJXihR9G7EbrbH+VpvAHW+VEk ph7YL445luOWzpJ1YBY17TKaCPS06PPgK+6HB1wA83vDHGxHlBq4sEf+vO9lYZi1 KwQjdfyQz5aO4OeKWr6zuY3Q1ywd3tUUoK9ZkQY/crZQl2kUNyNfdz1fNoDLBnlU 3uIULshIf7oErJpezYKzgIy1ep4fNto2RwQx7WDA13s1uPA6PE5QBmyZt7wksF0p AyD71a05iKPdXXjGOufRhWT/r9UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCEL571RLxIv1j/pBXp/FSLcm4GnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MDM2OTc0 LTgxMzEtNDVhZi05NGNlLWY0OWI0ODExYzE3My8wLzIxMEJFN0JENTEyRjEyMkZE NjNGRTkwNTdBN0YxNTIyREM5QjgxQTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnwaYwDQYJKoZIhvcNAQELBQADggEBAHk7vylsqXodEPehv+E+7NYpFQLda6cg hszhlwmgH6i/21DKrF5pSoXn+m6sVqpd0VGAf5Qy3KXQkVqFKCRVKnzpUlDPId9Z yRrQk4MhTlASzPn8KRQXWetLfyG/SA0hC957XBWArMRtXBdwyIfAF19kYWPHpT7V p6I0ewz1H+gOlCdFQH3/euB8oRoA5NroklI6loK+sO/DLiyj/nxel+L3p/tkTL5J NK0OFDgURm2CZHWRHWdo6WhUsqqKiJR6ug7/8Y1cC4CgfVLk+Ih3JbxkhVVbpX9D L63kSXLSCUTTCcw9JkSMWOa4dmz0WWOgoYpgMms3w0ADL/zQDy/HP6w= -----END CERTIFICATE-----Generated at Wed May 8 07:45:21 2024 by rpki-client on console-ams.rpki-client.org