$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer File: 215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer (raw, json) Hash identifier: M9oNhq9XeTL2+NlXyZRbH2QAwj/0qYYbWSxsNhTtC4I= Subject key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 69860187BF098EA2B440DCA9CD73C1A2C3A28C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 26 Oct 2023 18:07:23 +0000 Certificate not after: Thu 24 Oct 2024 18:12:23 +0000 Subordinate resources: IP: 103.161.184.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:86:01:87:bf:09:8e:a2:b4:40:dc:a9:cd:73:c1:a2:c3:a2:8c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 26 18:07:23 2023 GMT Not After : Oct 24 18:12:23 2024 GMT Subject: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a3:ac:a4:79:97:38:58:44:55:9b:30:6d:e8: 2b:03:b5:22:57:59:62:63:34:be:f4:85:60:51:9f: 58:7e:88:91:da:4d:bb:32:27:42:3b:0d:0b:81:a3: 9a:eb:e4:77:37:9a:48:94:01:72:f9:0c:23:e5:40: 53:df:c3:20:8c:8b:7c:44:c6:fa:75:7e:40:ac:0b: fe:5b:5a:de:22:c7:a2:5a:17:7e:34:2a:16:12:44: 6d:82:ee:e6:e6:68:db:97:7d:5e:5f:0a:53:c5:37: 9f:17:ab:1b:0e:c5:d7:a9:8d:e1:59:ba:52:4b:e7: 54:7d:91:aa:a4:6e:04:29:64:ed:97:c1:80:cb:b9: 21:b0:af:00:bd:3a:f1:cb:e4:6a:5d:49:0e:3b:ae: 16:64:1e:09:f1:aa:5f:46:cd:04:1e:e3:51:7b:41: cf:f8:d5:5f:1b:ba:fa:bb:25:77:61:8d:3d:73:03: ff:b1:d9:a1:1a:9a:e9:be:fd:87:48:a9:66:f0:6f: a4:80:12:54:a1:5b:2d:33:a0:d6:a9:5c:28:fe:85: 4c:ce:98:fc:a0:40:ca:a0:c3:38:af:19:b8:fe:30: c7:d4:b0:72:dc:e1:3b:2d:13:ab:7c:a6:b7:49:14: d3:e6:4d:7e:cd:8e:31:f6:a9:41:1b:59:e0:58:d4: 76:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.184.0/23 Signature Algorithm: sha256WithRSAEncryption 68:62:b5:d1:a4:2d:bd:88:91:58:ed:29:79:8b:05:94:e1:f3: 21:87:70:f3:91:4d:f9:90:b3:28:63:1e:f1:62:6e:81:cd:40: b0:51:65:a3:c1:7e:36:60:81:8a:04:cf:40:9a:7c:71:f5:3c: 66:ce:21:e5:63:40:ad:67:45:4d:1e:1a:2b:b6:c6:3f:d3:b7: 12:e8:99:8e:19:a2:cd:e9:e3:26:7f:dc:70:72:9a:43:a3:6a: ae:2e:a9:76:60:cd:0a:27:57:2e:2a:4f:b3:77:cc:4c:e7:15: d5:45:29:6f:1b:18:eb:a4:3a:50:4b:6c:39:8c:f8:c8:18:27: 7b:de:ed:7d:71:ac:19:d9:b8:1f:f7:d0:f8:4f:36:ac:fe:5c: 02:86:f3:5e:5e:31:8c:bd:3d:0a:5f:08:5c:20:fd:fb:9f:03: 6e:43:14:b3:99:2e:0a:bf:84:3e:fe:24:b7:4d:07:f7:92:69: 6b:b5:ab:b2:7f:6b:c6:ef:cc:1a:8b:42:fa:ef:aa:8c:28:1d: f1:f1:38:ed:ca:1d:ef:63:f2:ab:3d:5e:e5:b5:68:e0:9d:4f: 8a:2d:2f:58:d9:39:9a:f4:c1:ab:8f:cf:67:9d:ed:ac:d4:84: 01:19:45:22:92:e8:a4:1c:4e:6e:0b:41:d3:43:c8:99:5f:63: 19:3e:89:1b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUaYYBh78JjqK0QNypzXPBosOijIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyNjE4MDcyM1oX DTI0MTAyNDE4MTIyM1owMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0 RDdDQTIxNEM5MjNBMDk2QjJGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWjrKR5lzhYRFWbMG3oKwO1IldZYmM0vvSFYFGfWH6IkdpNuzInQjsNC4Gj muvkdzeaSJQBcvkMI+VAU9/DIIyLfETG+nV+QKwL/lta3iLHoloXfjQqFhJEbYLu 5uZo25d9Xl8KU8U3nxerGw7F16mN4Vm6UkvnVH2RqqRuBClk7ZfBgMu5IbCvAL06 8cvkal1JDjuuFmQeCfGqX0bNBB7jUXtBz/jVXxu6+rsld2GNPXMD/7HZoRqa6b79 h0ipZvBvpIASVKFbLTOg1qlcKP6FTM6Y/KBAyqDDOK8ZuP4wx9SwctzhOy0Tq3ym t0kU0+ZNfs2OMfapQRtZ4FjUdjUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCFfx+XiK4xGkQ1NfKIUySOglrL+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mM2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMw LWRlMWItNDZkZC1iZjM3LTE4ZmUzYThkNWZiZi8wLzIxNUZDN0U1RTIyQjhDNDY5 MTBENEQ3Q0EyMTRDOTIzQTA5NkIyRkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnobgwDQYJKoZIhvcNAQELBQADggEBAGhitdGkLb2IkVjtKXmLBZTh8yGHcPOR TfmQsyhjHvFiboHNQLBRZaPBfjZggYoEz0CafHH1PGbOIeVjQK1nRU0eGiu2xj/T txLomY4Zos3p4yZ/3HBymkOjaq4uqXZgzQonVy4qT7N3zEznFdVFKW8bGOukOlBL bDmM+MgYJ3ve7X1xrBnZuB/30PhPNqz+XAKG815eMYy9PQpfCFwg/fufA25DFLOZ Lgq/hD7+JLdNB/eSaWu1q7J/a8bvzBqLQvrvqowoHfHxOO3KHe9j8qs9XuW1aOCd T4otL1jZOZr0wauPz2ed7azUhAEZRSKS6KQcTm4LQdNDyJlfYxk+iRs= -----END CERTIFICATE-----Generated at Tue May 7 18:07:06 2024 by rpki-client on console-fra.rpki-client.org