$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer File: 233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer (raw, json) Hash identifier: r5rozfPvfJ6R8DQnoaZQT/LceMU+Gd3xiA53dPSFfeU= Subject key identifier: 23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 321491E2FFF70E66195C8CD36FDF4231CBA0A8CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.mft caRepository: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 22:22:38 +0000 Certificate not after: Sun 28 Jul 2024 22:27:38 +0000 Subordinate resources: IP: 202.165.32.0/20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:14:91:e2:ff:f7:0e:66:19:5c:8c:d3:6f:df:42:31:cb:a0:a8:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 22:22:38 2023 GMT Not After : Jul 28 22:27:38 2024 GMT Subject: CN=233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:d3:24:15:8a:e6:d2:03:80:02:86:71:3f: 75:ed:a6:1c:06:21:8e:43:41:26:2f:2d:79:14:66: b4:d4:48:d4:42:17:e1:76:d2:b5:02:12:44:3c:6a: 74:54:7f:80:11:6d:48:c7:9a:0a:25:fb:20:0f:df: 6b:6c:88:6a:2b:ce:df:7d:3d:30:50:9d:92:e6:9c: 40:e2:44:46:f0:58:fd:92:14:e8:d6:fb:cc:90:b9: c9:14:6b:93:7c:4d:56:17:ec:c2:fc:d0:95:a7:a4: 42:e3:38:d9:58:a2:94:40:bf:14:be:d8:d9:21:21: f4:50:41:29:0a:b8:f7:c4:4b:67:de:17:23:3c:26: 05:fb:01:6c:a8:3f:8a:a6:59:a1:74:e2:ec:2b:dd: 14:61:69:d1:f8:78:6e:7d:ee:07:6c:16:99:a2:76: fc:09:36:0a:1f:7d:71:24:43:de:11:3b:c5:41:ea: 22:83:a5:12:0f:c1:8a:ef:67:45:bd:a3:48:75:24: 32:f2:88:78:bd:ce:33:50:38:35:96:5e:f6:2a:b0: 2f:d4:b3:19:1e:94:0d:d8:73:a5:3b:cd:f0:38:f0: 77:ef:8e:0f:e1:6b:f9:28:e3:cc:85:9a:8b:de:56: 06:6a:03:f9:32:dd:e6:9e:ba:2a:19:b7:67:34:58: 69:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.32.0/20 Signature Algorithm: sha256WithRSAEncryption 2e:28:f6:53:70:86:be:fb:6e:ab:74:02:a1:f3:55:4f:8c:07: c3:46:7c:c8:94:80:ca:1e:de:85:a7:79:20:29:bc:cb:84:86: 76:59:dc:bf:2b:a9:5f:7c:4a:58:71:c7:2d:34:c7:4b:c3:17: 1b:a4:82:aa:a4:3a:51:1d:b6:8d:e5:dc:27:cc:68:3b:c1:a6: 1b:96:9f:f6:fd:68:71:05:46:87:ae:f6:19:07:b3:ce:2b:84: 3a:a3:6f:66:37:4f:74:41:a1:4e:be:fe:5c:7f:28:4e:98:a3: a2:f8:19:8e:29:dd:e0:88:0d:fd:af:27:17:fc:2d:e0:56:03: 82:d7:fc:9d:17:c4:67:c5:82:af:2e:ae:f1:01:24:0c:75:06: 14:26:1e:27:a1:08:83:a7:38:10:42:8d:12:15:6a:6f:a2:3a: 4c:30:e8:4b:c0:66:f4:1f:52:f6:54:51:f5:d6:7f:77:d5:86: 94:8e:59:39:76:56:d2:c2:25:8b:dd:13:ae:34:5a:8f:23:df: 4c:33:7e:f4:04:40:a7:3b:0a:12:4a:b6:08:9c:ad:40:ff:04: c7:c0:d5:3e:0a:4e:60:48:3b:ea:8d:66:f2:59:ee:62:0d:98: 52:f4:12:33:61:a1:cc:1e:c0:1f:66:85:ab:4e:f8:ba:a7:a3: 7b:3a:dc:51 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMhSR4v/3DmYZXIzTb99CMcugqM0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIyMjIzOFoX DTI0MDcyODIyMjczOFowMzExMC8GA1UEAxMoMjMzQUYyNkQ3REFFNkMzNTlFQjAz QUQ1QzZGQjRCNEUwNURERjIzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7J0yQViubSA4AChnE/de2mHAYhjkNBJi8teRRmtNRI1EIX4XbStQISRDxq dFR/gBFtSMeaCiX7IA/fa2yIaivO3309MFCdkuacQOJERvBY/ZIU6Nb7zJC5yRRr k3xNVhfswvzQlaekQuM42ViilEC/FL7Y2SEh9FBBKQq498RLZ94XIzwmBfsBbKg/ iqZZoXTi7CvdFGFp0fh4bn3uB2wWmaJ2/Ak2Ch99cSRD3hE7xUHqIoOlEg/Biu9n Rb2jSHUkMvKIeL3OM1A4NZZe9iqwL9SzGR6UDdhzpTvN8Djwd++OD+Fr+SjjzIWa i95WBmoD+TLd5p66Khm3ZzRYaWsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCM68m19rmw1nrA61cb7S04F3fI9MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jNTVlYWM5Ny0zMWI1LTRmMzMtODJmNC01MjQxNDcwY2JiYmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1NWVhYzk3 LTMxYjUtNGYzMy04MmY0LTUyNDE0NzBjYmJiZS8wLzIzM0FGMjZEN0RBRTZDMzU5 RUIwM0FENUM2RkI0QjRFMDVEREYyM0QubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATKpSAwDQYJKoZIhvcNAQELBQADggEBAC4o9lNwhr77bqt0AqHzVU+MB8NGfMiU gMoe3oWneSApvMuEhnZZ3L8rqV98Slhxxy00x0vDFxukgqqkOlEdto3l3CfMaDvB phuWn/b9aHEFRoeu9hkHs84rhDqjb2Y3T3RBoU6+/lx/KE6Yo6L4GY4p3eCIDf2v Jxf8LeBWA4LX/J0XxGfFgq8urvEBJAx1BhQmHiehCIOnOBBCjRIVam+iOkww6EvA ZvQfUvZUUfXWf3fVhpSOWTl2VtLCJYvdE640Wo8j30wzfvQEQKc7ChJKtgicrUD/ BMfA1T4KTmBIO+qNZvJZ7mINmFL0EjNhocwewB9mhatO+Lqno3s63FE= -----END CERTIFICATE-----Generated at Wed May 8 04:37:47 2024 by rpki-client on console-fra.rpki-client.org