$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer File: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer (raw, json) Hash identifier: G5DPRyEd+rosPTI9ipcb9XsOcpoletqyQ8UbUe/U4PE= Subject key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 153E98085C564FF8C4D20AAD887D427D42CDEE23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft caRepository: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 11 Aug 2023 05:13:12 +0000 Certificate not after: Fri 09 Aug 2024 05:18:12 +0000 Subordinate resources: IP: 103.254.168.0/22 IP: 2400:f580::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:3e:98:08:5c:56:4f:f8:c4:d2:0a:ad:88:7d:42:7d:42:cd:ee:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 11 05:13:12 2023 GMT Not After : Aug 9 05:18:12 2024 GMT Subject: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6a:c6:8b:69:33:d8:13:53:2e:93:6a:fa:90: c2:a2:1b:b3:e7:dd:64:13:11:0d:60:b4:72:97:98: 3f:c3:a0:40:f2:82:41:ad:4f:8c:10:c3:e6:65:f5: 51:00:2c:53:c1:6a:f1:2a:18:01:fa:55:ea:75:08: 04:4a:a7:39:e3:13:78:e1:7c:42:42:de:e4:ef:a2: c9:00:94:33:b4:39:0a:3c:ec:74:f4:b5:57:80:07: d0:95:44:d8:2e:99:43:5f:21:c9:c5:56:fa:31:f5: 90:b1:da:8b:10:7a:fe:50:85:5e:47:89:27:19:06: 54:11:a6:df:76:32:20:0d:e6:43:f8:12:70:f4:c9: 08:4c:36:39:2e:d7:f7:2b:b6:c5:7a:c6:16:61:84: e4:b4:37:df:88:eb:17:f0:48:04:67:b9:32:3f:c9: 16:f5:14:fb:6c:2b:2a:70:a2:db:a4:2e:de:e3:96: 3a:bf:cf:e4:09:9c:10:2c:27:65:cc:aa:6c:8a:5e: 4c:9e:2c:8c:97:07:84:91:61:0b:cb:02:cf:92:7f: b7:59:8a:1e:98:bb:70:c2:75:0e:04:1a:ec:98:50: 6c:5c:02:02:08:e6:91:fc:e0:a1:a2:9d:4b:eb:d4: f7:57:58:46:75:a8:26:6f:3a:3a:92:4f:5b:46:e8: 0b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/22 IPv6: 2400:f580::/32 Signature Algorithm: sha256WithRSAEncryption 87:a3:55:a8:96:e5:03:09:d4:53:b1:ac:79:b5:40:25:5d:02: 27:f4:9d:74:5f:af:b1:56:52:90:c8:7f:76:95:b1:fb:8a:7f: 16:ce:87:41:6f:1d:10:e8:a2:e5:6f:9b:d9:63:43:4d:c9:f8: eb:3f:c3:55:e1:99:3e:4b:b8:2d:8d:f6:a0:18:f3:e9:ce:ce: 2a:a8:c4:b6:55:8b:99:d2:d1:f3:fa:d0:37:b5:00:e4:df:05: 5f:bc:3f:78:be:80:24:03:9a:da:e8:02:c0:ae:70:9d:ae:68: 95:c8:1a:47:24:ea:93:1d:b9:e4:5d:33:ff:6f:cb:33:1a:2e: 7f:b0:2f:0c:e7:0f:87:12:dd:9b:90:c5:5d:8b:d9:8d:5d:b2: 5c:89:50:52:df:e4:10:65:cf:20:c2:b9:63:e5:8c:4d:c5:e5: 0f:bd:db:2a:83:b4:ef:26:90:72:2a:4c:14:a9:d7:21:74:68: d7:7c:3a:0e:58:68:14:d0:76:9c:1e:a1:ca:a0:59:8e:16:3b: 83:c4:c6:56:cb:60:7f:88:88:11:d9:4c:a8:18:c2:cd:6d:3e: 1b:07:23:f4:bf:e7:d3:a1:27:b5:6a:30:9e:fb:ea:87:3a:93: 8b:27:c9:23:20:e5:61:2a:b0:95:4d:9b:8f:02:89:75:1c:12: d2:18:a4:0e -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUFT6YCFxWT/jE0gqtiH1CfULN7iMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxMTA1MTMxMloX DTI0MDgwOTA1MTgxMlowMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2 RUM0Q0FGN0MxQzU5RTE4MjA3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVqxotpM9gTUy6TavqQwqIbs+fdZBMRDWC0cpeYP8OgQPKCQa1PjBDD5mX1 UQAsU8Fq8SoYAfpV6nUIBEqnOeMTeOF8QkLe5O+iyQCUM7Q5CjzsdPS1V4AH0JVE 2C6ZQ18hycVW+jH1kLHaixB6/lCFXkeJJxkGVBGm33YyIA3mQ/gScPTJCEw2OS7X 9yu2xXrGFmGE5LQ334jrF/BIBGe5Mj/JFvUU+2wrKnCi26Qu3uOWOr/P5AmcECwn ZcyqbIpeTJ4sjJcHhJFhC8sCz5J/t1mKHpi7cMJ1DgQa7JhQbFwCAgjmkfzgoaKd S+vU91dYRnWoJm86OpJPW0boC4sCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDsrqejVNXq9d2tuxMr3wcWeGCB0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yYWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYx LTBlMzItNGU2NS1iYjg4LWQ3MjQwNWIyNDQ1MS8wLzNCMkJBOUU4RDUzNTdBQkQ3 NzZCNkVDNENBRjdDMUM1OUUxODIwNzQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJn/qgwDQQCAAIwBwMFACQA9YAwDQYJKoZIhvcNAQELBQADggEBAIejVaiW5QMJ 1FOxrHm1QCVdAif0nXRfr7FWUpDIf3aVsfuKfxbOh0FvHRDoouVvm9ljQ03J+Os/ w1XhmT5LuC2N9qAY8+nOziqoxLZVi5nS0fP60De1AOTfBV+8P3i+gCQDmtroAsCu cJ2uaJXIGkck6pMdueRdM/9vyzMaLn+wLwznD4cS3ZuQxV2L2Y1dslyJUFLf5BBl zyDCuWPljE3F5Q+92yqDtO8mkHIqTBSp1yF0aNd8Og5YaBTQdpweocqgWY4WO4PE xlbLYH+IiBHZTKgYws1tPhsHI/S/59OhJ7VqMJ776oc6k4snySMg5WEqsJVNm48C iXUcEtIYpA4= -----END CERTIFICATE-----Generated at Wed May 8 15:17:35 2024 by rpki-client on console-fra.rpki-client.org