$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer File: 23F26F571E3865A06A13936555D8DAA27B433933.cer (raw, json) Hash identifier: uOVAW8S7185jWnVzBoZ+uM8YzQTjvG8Py6Zl+o3bvq8= Subject key identifier: 23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 761FC85CC7DFA7A0368B6AB5D6D8ECA79402C2C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.mft caRepository: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Aug 2023 17:57:08 +0000 Certificate not after: Fri 16 Aug 2024 18:02:08 +0000 Subordinate resources: IP: 103.173.138.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:1f:c8:5c:c7:df:a7:a0:36:8b:6a:b5:d6:d8:ec:a7:94:02:c2:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 18 17:57:08 2023 GMT Not After : Aug 16 18:02:08 2024 GMT Subject: CN=23F26F571E3865A06A13936555D8DAA27B433933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9d:7f:70:c6:8e:09:57:a3:20:12:64:64:20: 39:f2:ba:65:57:cc:02:63:f9:98:05:53:73:6c:b1: c1:81:fd:49:2a:24:c8:bc:4b:00:21:af:02:ea:8e: c8:67:42:b5:3d:2e:68:54:1a:00:9a:53:53:3a:b4: 94:b9:8a:f5:94:e6:38:e3:6c:e0:2e:aa:80:81:be: 76:14:35:4a:24:4b:1e:58:84:37:ae:f1:b9:50:f5: 62:17:d6:87:c0:29:9f:7f:71:74:64:50:a5:c5:3a: 9d:62:9a:76:8c:ab:5b:00:8c:94:23:86:95:dc:a5: 72:57:24:7d:7d:d4:40:6b:8a:5a:c2:54:63:ff:97: be:b9:f4:f5:ef:59:62:65:42:14:cb:70:be:14:0c: 5e:25:21:02:8f:6f:08:1b:ac:cf:46:79:a2:f5:37: 27:62:26:8a:2c:01:f3:68:b6:b5:83:b7:ec:f4:f5: 80:e0:4f:04:84:4b:b7:00:f8:8d:0c:e4:97:99:33: 09:94:53:76:07:0b:36:fc:12:99:a6:a0:d6:2e:34: ac:e6:19:e6:a0:19:c2:4f:b9:76:1c:e3:07:8e:31: cb:ee:0a:d4:4c:32:a5:04:ee:8d:80:32:70:55:77: 35:4d:3d:5b:1f:42:3d:df:9c:fd:0c:6b:89:c3:d9: bc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.138.0/23 Signature Algorithm: sha256WithRSAEncryption 53:d0:ee:f5:f0:e5:10:45:d5:28:91:58:e9:44:20:84:c8:cc: 91:23:74:fa:03:b6:fe:c0:85:e4:39:98:98:56:0e:55:a2:43: f9:ec:cd:e3:68:27:3a:7a:e5:20:81:be:6b:0e:f3:af:bf:ba: db:c8:2d:57:9f:8a:23:a9:7d:2d:d3:b4:0b:c2:ed:c8:98:3e: 58:c0:40:32:b8:69:19:2e:31:1e:67:a6:66:9a:43:47:8b:a4: 84:13:33:80:d1:26:b4:c7:94:63:e0:2f:47:67:3f:7c:09:85: 5e:44:f0:10:85:f3:ad:fd:ab:71:06:81:9d:61:2c:6c:f2:ef: b9:56:37:9f:fd:f5:e6:91:17:19:bc:da:10:6d:a3:1d:8f:d0: 35:b7:f7:9c:ba:81:b8:e9:2d:65:ef:56:ee:3c:d4:d8:fb:94: 07:33:b6:fd:37:56:61:83:f3:64:c2:41:f9:95:d3:a4:4d:27: ee:31:3e:97:25:d2:ac:81:7c:1b:b6:3c:a5:79:da:1c:16:2a: 6d:5a:58:2f:ec:f0:a8:1b:ed:d0:22:49:d4:e3:9d:dc:b5:35: cb:02:c2:28:29:96:99:6e:b0:5e:c3:4d:1d:5d:1e:72:73:d4: 15:64:ba:ff:06:ad:83:bd:e4:8e:3f:0c:3b:6b:8c:86:fa:44: 06:4b:a6:7e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdh/IXMffp6A2i2q11tjsp5QCwsEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxODE3NTcwOFoX DTI0MDgxNjE4MDIwOFowMzExMC8GA1UEAxMoMjNGMjZGNTcxRTM4NjVBMDZBMTM5 MzY1NTVEOERBQTI3QjQzMzkzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKdf3DGjglXoyASZGQgOfK6ZVfMAmP5mAVTc2yxwYH9SSokyLxLACGvAuqO yGdCtT0uaFQaAJpTUzq0lLmK9ZTmOONs4C6qgIG+dhQ1SiRLHliEN67xuVD1YhfW h8Apn39xdGRQpcU6nWKadoyrWwCMlCOGldylclckfX3UQGuKWsJUY/+Xvrn09e9Z YmVCFMtwvhQMXiUhAo9vCBusz0Z5ovU3J2ImiiwB82i2tYO37PT1gOBPBIRLtwD4 jQzkl5kzCZRTdgcLNvwSmaag1i40rOYZ5qAZwk+5dhzjB44xy+4K1EwypQTujYAy cFV3NU09Wx9CPd+c/QxricPZvF8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCPyb1ceOGWgahOTZVXY2qJ7QzkzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNWVmY2JmMC02NmVjLTQ4ZDMtYjIyMS0wZjA5Njg2ZDU4MTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZWZjYmYw LTY2ZWMtNDhkMy1iMjIxLTBmMDk2ODZkNTgxOC8wLzIzRjI2RjU3MUUzODY1QTA2 QTEzOTM2NTU1RDhEQUEyN0I0MzM5MzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrYowDQYJKoZIhvcNAQELBQADggEBAFPQ7vXw5RBF1SiRWOlEIITIzJEjdPoD tv7AheQ5mJhWDlWiQ/nszeNoJzp65SCBvmsO86+/utvILVefiiOpfS3TtAvC7ciY PljAQDK4aRkuMR5npmaaQ0eLpIQTM4DRJrTHlGPgL0dnP3wJhV5E8BCF8639q3EG gZ1hLGzy77lWN5/99eaRFxm82hBtox2P0DW395y6gbjpLWXvVu481Nj7lAcztv03 VmGD82TCQfmV06RNJ+4xPpcl0qyBfBu2PKV52hwWKm1aWC/s8Kgb7dAiSdTjndy1 NcsCwigplplusF7DTR1dHnJz1BVkuv8GrYO95I4/DDtrjIb6RAZLpn4= -----END CERTIFICATE-----Generated at Wed May 8 21:02:11 2024 by rpki-client on console-fra.rpki-client.org