$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.cer File: 80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.cer (raw, json) Hash identifier: 6jHlSOBnb3C0RCmvyvihCmMVGHdiDNglbt3lGbDZjDI= Subject key identifier: 80:D8:9E:42:9E:BB:AA:D9:E0:9C:35:0D:9D:D8:FA:DC:91:7C:BA:1A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2DDECAFC6860A923941245438FA0C720DC0644F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.mft caRepository: rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Jul 2023 20:34:08 +0000 Certificate not after: Tue 23 Jul 2024 20:39:08 +0000 Subordinate resources: IP: 103.78.104.0/23 IP: 2001:df6:2a00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:de:ca:fc:68:60:a9:23:94:12:45:43:8f:a0:c7:20:dc:06:44:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 25 20:34:08 2023 GMT Not After : Jul 23 20:39:08 2024 GMT Subject: CN=80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:26:60:9a:25:77:c2:16:8d:ee:0b:c5:a3:4f: 0b:11:e6:78:4f:1c:bd:41:8d:74:0e:42:7c:83:88: 4a:64:ed:d6:95:5f:66:6f:a9:6d:66:7e:1e:d6:e0: a8:f9:7d:f8:80:d8:dd:fd:f0:f5:10:11:64:6e:64: 4f:38:a1:4e:9d:1a:a4:58:65:b0:df:b0:17:8b:be: 11:81:cf:f8:14:97:bd:fc:6c:8d:18:9d:14:42:17: 29:b5:b3:bb:12:c3:34:a0:7e:57:6c:71:03:62:7e: 7d:6a:08:e4:66:57:fa:92:14:46:c0:76:c5:d9:6b: fb:df:ca:d0:6f:a9:1b:fc:fd:cb:e4:69:f1:bf:98: 96:80:de:46:ea:c1:5b:b7:38:81:60:31:de:c0:db: 9f:fe:4b:8a:a0:7c:69:24:bc:d1:99:b8:23:80:f5: 57:32:1d:c5:a4:f1:5f:25:4c:e6:8e:12:20:7c:87: a4:7e:de:4f:6c:3d:4e:bf:97:61:69:24:d8:40:64: a8:63:90:4c:8e:64:c9:8e:48:27:1a:f5:b4:a7:43: 9e:04:49:a8:f4:5d:7f:91:ef:27:59:5e:97:61:4c: ac:7f:be:05:04:3b:c2:ba:76:ab:5e:53:e3:1c:67: f5:41:d0:63:72:df:28:48:6f:5f:53:b3:2e:1b:89: ac:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 80:D8:9E:42:9E:BB:AA:D9:E0:9C:35:0D:9D:D8:FA:DC:91:7C:BA:1A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.104.0/23 IPv6: 2001:df6:2a00::/48 Signature Algorithm: sha256WithRSAEncryption 0a:21:f9:1a:85:0f:c4:9d:7a:6e:d4:1b:c9:52:e2:a7:7d:3a: 20:d1:a7:2f:1e:7f:6b:10:4b:d5:fa:fa:cf:f2:9f:54:41:49: d3:af:8b:45:8e:94:1b:fb:b4:c0:64:ea:c1:c8:3b:91:5d:33: c7:62:01:e1:51:30:17:9d:d4:0f:bf:b3:d9:a6:4a:af:c0:bf: b8:0b:08:94:ac:4e:96:16:ae:65:9c:69:eb:e8:d4:6f:cb:82: 24:1d:1c:d9:e2:a7:c9:b7:db:89:65:b4:14:17:5d:ff:85:ad: 85:fc:09:aa:c1:0b:30:70:cb:7b:86:8a:79:ae:90:94:8e:0b: 16:a9:84:c2:b5:43:5c:a3:a4:84:15:99:09:86:fb:a5:de:2d: 64:dd:41:4e:c1:52:9e:43:3b:35:e4:45:a2:f8:c5:5b:4c:8d: 1e:7a:cf:60:f7:dc:70:42:e4:50:2f:d5:61:fc:db:6d:d2:d0: e3:74:db:9c:f8:ed:08:79:ea:d3:c9:26:3f:0c:96:60:50:00: 3a:55:a6:fe:6b:7d:5b:4b:10:66:1f:9d:1c:08:c6:1c:cc:80: 35:c1:f1:9b:ab:e0:b7:8b:e0:34:fd:22:4a:eb:49:58:97:2b: 03:fa:8a:03:7b:50:aa:46:cc:1e:94:17:6d:93:91:62:5f:62: c1:9e:fe:70 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIULd7K/GhgqSOUEkVDj6DHINwGRPIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyNTIwMzQwOFoX DTI0MDcyMzIwMzkwOFowMzExMC8GA1UEAxMoODBEODlFNDI5RUJCQUFEOUUwOUMz NTBEOUREOEZBREM5MTdDQkExQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUmYJold8IWje4LxaNPCxHmeE8cvUGNdA5CfIOISmTt1pVfZm+pbWZ+Htbg qPl9+IDY3f3w9RARZG5kTzihTp0apFhlsN+wF4u+EYHP+BSXvfxsjRidFEIXKbWz uxLDNKB+V2xxA2J+fWoI5GZX+pIURsB2xdlr+9/K0G+pG/z9y+Rp8b+YloDeRurB W7c4gWAx3sDbn/5LiqB8aSS80Zm4I4D1VzIdxaTxXyVM5o4SIHyHpH7eT2w9Tr+X YWkk2EBkqGOQTI5kyY5IJxr1tKdDngRJqPRdf5HvJ1lel2FMrH++BQQ7wrp2q15T 4xxn9UHQY3LfKEhvX1OzLhuJrKsCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIDYnkKeu6rZ4Jw1DZ3Y+tyRfLoaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83OTEyYWM4OC0wMzNkLTQ5N2UtYmY2My01NTUzZDVkYzZkYzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5MTJhYzg4 LTAzM2QtNDk3ZS1iZjYzLTU1NTNkNWRjNmRjOS8wLzgwRDg5RTQyOUVCQkFBRDlF MDlDMzUwRDlERDhGQURDOTE3Q0JBMUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnTmgwDwQCAAIwCQMHACABDfYqADANBgkqhkiG9w0BAQsFAAOCAQEACiH5GoUP xJ16btQbyVLip306INGnLx5/axBL1fr6z/KfVEFJ06+LRY6UG/u0wGTqwcg7kV0z x2IB4VEwF53UD7+z2aZKr8C/uAsIlKxOlhauZZxp6+jUb8uCJB0c2eKnybfbiWW0 FBdd/4WthfwJqsELMHDLe4aKea6QlI4LFqmEwrVDXKOkhBWZCYb7pd4tZN1BTsFS nkM7NeRFovjFW0yNHnrPYPfccELkUC/VYfzbbdLQ43TbnPjtCHnq08kmPwyWYFAA OlWm/mt9W0sQZh+dHAjGHMyANcHxm6vgt4vgNP0iSutJWJcrA/qKA3tQqkbMHpQX bZORYl9iwZ7+cA== -----END CERTIFICATE-----Generated at Wed May 8 18:12:10 2024 by rpki-client on console-fra.rpki-client.org