$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer File: 842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer (raw, json) Hash identifier: F4acbpgViozJtBDipynFtMijZK9EPkZ4vPeuQRtpbxo= Subject key identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72F22082775AA5DDCBB4E7B4F072C8B86572FB74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft caRepository: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 Nov 2023 07:50:47 +0000 Certificate not after: Fri 15 Nov 2024 07:55:47 +0000 Subordinate resources: IP: 202.47.162.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f2:20:82:77:5a:a5:dd:cb:b4:e7:b4:f0:72:c8:b8:65:72:fb:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 07:50:47 2023 GMT Not After : Nov 15 07:55:47 2024 GMT Subject: CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:49:e9:b3:82:2d:a8:61:6c:f0:69:53:e3: f7:29:6a:09:50:57:d6:ef:81:f6:24:1c:c0:19:38: a5:fc:91:3e:da:8e:50:7a:94:77:b1:a7:a3:9c:31: 64:af:db:63:e0:06:08:b1:23:c1:55:6e:f8:05:09: 8d:50:f1:13:b5:4b:9a:58:e0:19:31:da:39:f3:b7: 77:bd:58:97:42:3a:b7:0c:1b:b1:9f:39:3c:f3:8d: eb:d9:7a:13:d1:b7:1a:b5:7c:10:92:0a:2f:c0:25: 58:40:8a:03:e6:9d:c0:78:8e:44:69:00:20:2d:c3: de:97:13:04:22:9a:55:01:0c:e2:0f:fc:f2:fe:d7: 29:84:cb:c2:a9:45:eb:f2:b9:b8:fb:c5:ee:9a:79: d4:57:dc:84:38:5f:14:de:e6:3a:f8:43:83:8d:e8: 1c:30:15:d4:e3:b6:78:96:63:06:fa:06:58:27:1f: c3:a5:96:09:de:59:a4:82:67:c4:25:8b:5d:0c:02: 0e:24:47:2b:60:73:4a:9c:03:1a:53:24:7f:1e:f9: 12:03:a4:9f:c7:42:73:eb:31:cf:0c:ed:01:13:9f: a7:fa:4e:06:c5:31:f2:41:c8:9a:e4:40:6e:da:cb: 4f:ff:0c:0f:21:cb:27:3a:9e:50:d8:b5:14:04:b2: ea:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.162.0/23 Signature Algorithm: sha256WithRSAEncryption 44:b4:48:d1:3f:f3:92:1e:0c:93:99:a0:e2:11:f7:4f:ef:b7: 28:0e:88:1e:1f:36:f1:47:a7:b7:f3:84:82:d6:0d:ee:be:cc: c9:2c:22:ae:b1:de:00:51:f0:ce:56:53:90:8c:0d:eb:fa:aa: ca:f5:59:80:df:70:b0:71:f0:51:04:7f:b1:15:05:78:67:30: fc:15:3c:f0:ce:e3:8c:f9:2f:f4:62:8c:be:eb:ee:0d:29:12: ec:ee:0e:21:7d:93:a0:4b:59:19:0f:7a:2e:91:3d:c9:8b:22: 5a:fa:c6:14:55:a6:7a:bd:4f:00:8e:02:2f:2e:9b:07:9f:a5: d0:68:ff:0c:1e:e1:43:8a:69:86:b1:b5:66:82:52:23:07:79: c6:55:49:36:a3:f9:36:63:5d:d2:0b:5f:54:7d:55:14:04:12: 3a:23:03:77:ec:4c:6e:d9:2b:57:2f:b2:7e:45:73:43:ce:c4: ba:6c:76:06:37:4b:df:23:28:bd:a8:e3:20:15:aa:7a:5a:54: a2:9d:b8:81:c5:6d:8c:f5:84:bf:d0:a2:37:01:98:f6:ce:0a: f5:88:23:61:9d:58:7c:6a:9d:53:5f:d6:1a:f3:ba:6e:32:ee: 6d:f8:bf:05:df:1f:7e:35:74:4b:33:41:b6:f5:d6:0b:89:d2: 01:08:08:10 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcvIggndapd3LtOe08HLIuGVy+3QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNzA3NTA0N1oX DTI0MTExNTA3NTU0N1owMzExMC8GA1UEAxMoODQyMjMzRDZFNzU2QkM5M0MwREI5 QTQ1REQyRjdCQ0Q5N0NCMjlBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyiSemzgi2oYWzwaVPj9ylqCVBX1u+B9iQcwBk4pfyRPtqOUHqUd7Gno5wx ZK/bY+AGCLEjwVVu+AUJjVDxE7VLmljgGTHaOfO3d71Yl0I6twwbsZ85PPON69l6 E9G3GrV8EJIKL8AlWECKA+adwHiORGkAIC3D3pcTBCKaVQEM4g/88v7XKYTLwqlF 6/K5uPvF7pp51FfchDhfFN7mOvhDg43oHDAV1OO2eJZjBvoGWCcfw6WWCd5ZpIJn xCWLXQwCDiRHK2BzSpwDGlMkfx75EgOkn8dCc+sxzwztAROfp/pOBsUx8kHImuRA btrLT/8MDyHLJzqeUNi1FASy6uUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIQiM9bnVryTwNuaRd0ve82XyymvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ODEyNzRhZi03Y2QwLTQwYWYtYTMyMS02NzY4OThkNThkYjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MTI3NGFm LTdjZDAtNDBhZi1hMzIxLTY3Njg5OGQ1OGRiOC8wLzg0MjIzM0Q2RTc1NkJDOTND MERCOUE0NUREMkY3QkNEOTdDQjI5QUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKL6IwDQYJKoZIhvcNAQELBQADggEBAES0SNE/85IeDJOZoOIR90/vtygOiB4f NvFHp7fzhILWDe6+zMksIq6x3gBR8M5WU5CMDev6qsr1WYDfcLBx8FEEf7EVBXhn MPwVPPDO44z5L/RijL7r7g0pEuzuDiF9k6BLWRkPei6RPcmLIlr6xhRVpnq9TwCO Ai8umwefpdBo/wwe4UOKaYaxtWaCUiMHecZVSTaj+TZjXdILX1R9VRQEEjojA3fs TG7ZK1cvsn5Fc0POxLpsdgY3S98jKL2o4yAVqnpaVKKduIHFbYz1hL/QojcBmPbO CvWII2GdWHxqnVNf1hrzum4y7m34vwXfH341dEszQbb11guJ0gEICBA= -----END CERTIFICATE-----Generated at Wed May 8 09:50:32 2024 by rpki-client on console-fra.rpki-client.org