$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer (raw, json) Hash identifier: ZBAhitxi479tznuZ3yLGf/Gd2CqZqDDvQfwxcUb9E5s= Subject key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34B0FCA7EE6F11BDE2BB196CA3E5798500165581 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft caRepository: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 08:05:04 +0000 Certificate not after: Mon 29 Jul 2024 08:10:04 +0000 Subordinate resources: IP: 103.52.16.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b0:fc:a7:ee:6f:11:bd:e2:bb:19:6c:a3:e5:79:85:00:16:55:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 08:05:04 2023 GMT Not After : Jul 29 08:10:04 2024 GMT Subject: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:bd:fa:51:90:8f:5b:5b:3e:3e:36:f8:9c: 41:81:ea:51:9d:b6:fe:6b:32:70:ff:12:06:ab:16: 33:8c:d0:a5:41:94:90:a0:c0:19:ab:c1:dc:ee:da: e3:9e:56:67:22:49:b3:a4:02:46:25:fd:0c:e8:77: 0e:55:e1:16:e8:d1:12:9c:12:d0:8b:73:36:d9:70: ce:58:39:f5:e2:6d:d4:12:a6:eb:a0:ef:ff:b6:d8: d5:b6:6c:20:94:e7:4e:0a:c4:0e:e2:a7:1d:4f:25: ea:46:3f:cb:24:94:1e:e1:65:bd:25:2e:70:ba:11: 1e:2f:15:c1:3f:bf:0a:2a:14:24:ac:be:49:f0:75: 66:86:db:ca:4a:63:f6:7a:bf:b3:d5:fa:18:b3:24: 5d:76:b0:07:88:3c:6a:f9:56:2f:c2:51:1b:e7:06: ad:86:74:24:38:fc:2f:1a:73:9d:9d:8a:65:78:44: 80:b6:84:7c:22:1a:d9:aa:21:6d:6c:42:ff:68:60: 33:1b:2d:58:fe:2f:c2:08:00:c1:b3:38:31:15:36: 3e:8d:b7:40:69:0c:88:ab:70:ba:6f:ee:69:79:f1: 22:54:76:8a:0a:6c:9e:78:37:90:58:15:1c:3f:5a: 0e:64:1a:09:06:71:17:44:53:d0:0b:21:49:82:c0: 6e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.16.0/22 Signature Algorithm: sha256WithRSAEncryption 49:e6:d7:08:43:17:82:12:ce:6a:a9:37:29:d8:c5:e3:d5:78: 97:a5:9e:12:1a:4f:2e:7a:07:8c:f5:22:e9:b4:6b:7e:e1:08: 8a:38:eb:46:c5:f8:4f:52:c9:85:28:ec:8f:01:85:d8:1d:5f: 66:a9:48:07:3f:31:e3:50:34:cf:35:78:9c:f4:4c:5b:dc:c0: fa:5e:c7:17:be:51:78:48:a9:35:90:cc:10:a3:c0:5f:8f:8f: 26:7f:df:1f:17:1f:1b:2b:ca:32:bd:de:50:73:b5:3e:72:62: 85:df:2a:38:db:ae:1a:ea:27:f2:48:c0:de:51:7a:6a:35:02: 28:09:ad:27:5b:60:d3:74:22:67:7d:fb:d6:a4:82:0e:0e:8f: 5e:6a:8f:68:5b:7f:99:c2:e0:0b:64:ad:72:f3:dd:d0:6c:0a: c3:aa:fd:e6:39:df:80:67:e5:4a:0e:79:ef:68:93:24:e7:37: d7:7a:0d:62:38:80:de:6b:b7:f5:9e:6b:31:56:d8:58:f2:78: 1d:79:23:7f:2e:7b:6a:56:ce:17:36:fd:88:7a:d6:e6:7f:a7: c3:7b:77:11:cb:84:34:3b:1b:9c:7c:2c:b2:9d:66:86:b1:cc: 91:d8:13:81:0d:d6:3c:43:50:37:a5:94:62:df:89:cc:45:a3: 0e:b2:36:4b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUNLD8p+5vEb3iuxlso+V5hQAWVYEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA4MDUwNFoX DTI0MDcyOTA4MTAwNFowMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0 MERCRjFFMkIwNTNBOUMwQjZBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDLvfpRkI9bWz4+NvicQYHqUZ22/msycP8SBqsWM4zQpUGUkKDAGavB3O7a 455WZyJJs6QCRiX9DOh3DlXhFujREpwS0ItzNtlwzlg59eJt1BKm66Dv/7bY1bZs IJTnTgrEDuKnHU8l6kY/yySUHuFlvSUucLoRHi8VwT+/CioUJKy+SfB1Zobbykpj 9nq/s9X6GLMkXXawB4g8avlWL8JRG+cGrYZ0JDj8LxpznZ2KZXhEgLaEfCIa2aoh bWxC/2hgMxstWP4vwggAwbM4MRU2Po23QGkMiKtwum/uaXnxIlR2igpsnng3kFgV HD9aDmQaCQZxF0RT0AshSYLAbu0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIIfFlgfkxoZoUtA2/HisFOpwLagMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBm LTAyZDMtNDIxNy05ZmMzLTAwNDdhZTE4MzZkYy8wLzgyMUYxNjU4MUY5MzFBMTlB MTRCNDBEQkYxRTJCMDUzQTlDMEI2QTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnNBAwDQYJKoZIhvcNAQELBQADggEBAEnm1whDF4ISzmqpNynYxePVeJelnhIa Ty56B4z1Ium0a37hCIo460bF+E9SyYUo7I8BhdgdX2apSAc/MeNQNM81eJz0TFvc wPpexxe+UXhIqTWQzBCjwF+PjyZ/3x8XHxsryjK93lBztT5yYoXfKjjbrhrqJ/JI wN5Remo1AigJrSdbYNN0Imd9+9akgg4Oj15qj2hbf5nC4AtkrXLz3dBsCsOq/eY5 34Bn5UoOee9okyTnN9d6DWI4gN5rt/WeazFW2FjyeB15I38ue2pWzhc2/Yh61uZ/ p8N7dxHLhDQ7G5x8LLKdZoaxzJHYE4EN1jxDUDellGLficxFow6yNks= -----END CERTIFICATE-----Generated at Wed May 8 21:02:17 2024 by rpki-client on console-fra.rpki-client.org