$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer File: 8659BE8500DEBB314448F1412FA1E264025A4148.cer (raw, json) Hash identifier: HLMtzC/uJGLw7eIWzJkZaq02Y3DKkbmt3FRbY4Mqa0g= Subject key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 198765724592BFC98C6EB23356A060CE8A92210D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft caRepository: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 09 Oct 2023 07:42:45 +0000 Certificate not after: Mon 07 Oct 2024 07:47:45 +0000 Subordinate resources: IP: 103.164.192.0/23 IP: 2001:df1:1bc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:87:65:72:45:92:bf:c9:8c:6e:b2:33:56:a0:60:ce:8a:92:21:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 9 07:42:45 2023 GMT Not After : Oct 7 07:47:45 2024 GMT Subject: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:36:d7:5e:8f:7e:53:ef:c1:6b:a2:94:68:f9: 66:ff:64:81:c5:fd:03:36:92:b7:75:f1:0c:35:8e: 5a:8a:00:e4:01:64:fe:ef:95:36:39:c3:27:31:aa: f0:45:e0:8a:3d:e3:8c:ff:22:0f:27:92:aa:ab:14: 56:6e:c5:a2:bd:75:4f:28:bf:77:86:c5:26:03:fe: b0:07:b5:46:61:f8:1d:05:08:8d:5a:67:25:6e:dd: 8d:03:c2:ed:c1:2d:3f:06:d6:b4:3b:40:66:15:96: 7e:9c:29:2b:71:a1:40:2c:f3:83:7a:e0:5f:98:a5: 81:45:49:35:9d:7c:6d:5a:1c:b5:06:c9:3d:6a:62: dc:d9:17:0b:b9:ed:cf:b1:62:86:bd:f6:b7:d9:29: 2d:bd:19:33:e1:ce:1c:e7:1f:ee:a2:4c:92:a5:3c: 88:c4:05:f6:9d:06:a4:fc:df:97:98:d5:e0:92:a5: c2:d1:cd:7f:87:bc:1e:45:0d:b2:50:9b:4a:d1:14: e9:77:f5:c2:ac:97:08:2d:8b:eb:81:fe:df:c5:1a: 6c:64:fd:64:e0:95:e9:7b:84:b8:fa:5d:63:d9:96: 29:5b:c8:d9:d3:ad:5f:da:c1:e5:22:a1:d0:6c:a2: 1b:22:b8:9e:0f:0e:2c:35:0f:97:4f:7b:0f:21:23: fb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.192.0/23 IPv6: 2001:df1:1bc0::/48 Signature Algorithm: sha256WithRSAEncryption 0a:0a:99:ac:de:a3:37:5a:23:7e:74:30:a7:8d:05:68:ca:ba: a9:22:14:41:51:92:03:b2:1c:26:bf:54:e0:aa:15:80:2c:1c: f7:d7:14:df:dd:a9:6d:ea:f6:64:c0:99:fd:61:17:df:a3:fc: 77:f1:c9:a9:a1:82:5b:d6:c3:c8:e5:36:e4:ea:7d:1c:6f:e1: 46:75:6b:d3:0b:bc:9c:bd:f7:de:df:23:66:57:36:8b:8a:de: 38:3c:13:65:a9:2f:d3:0c:6a:64:6d:a0:75:25:cb:1e:30:61: 21:66:09:a7:9b:52:9f:9c:a8:ec:93:21:0a:f0:31:72:12:b4: af:bd:e0:5e:3a:1c:b3:f1:94:07:23:59:47:eb:77:4b:8e:59: 29:3b:c0:f8:be:95:36:90:11:89:3b:61:02:2b:87:b8:28:cc: a6:47:71:60:a9:a7:2f:63:1d:ab:27:98:f8:2d:44:75:45:41: d3:0b:e0:74:c2:79:74:be:0c:c9:60:28:78:0a:c9:d6:3c:aa: a3:54:71:0d:bc:5e:32:b2:16:b2:8e:ec:a4:c1:08:2f:37:87: 54:d2:e7:66:eb:10:f5:a8:ff:37:6f:98:c2:5a:86:06:83:c6: 29:f9:ec:74:c5:3a:29:0e:21:93:11:28:2e:d7:cd:a3:19:28: 5f:76:35:9e -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUGYdlckWSv8mMbrIzVqBgzoqSIQ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwOTA3NDI0NVoX DTI0MTAwNzA3NDc0NVowMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhG MTQxMkZBMUUyNjQwMjVBNDE0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN02116PflPvwWuilGj5Zv9kgcX9AzaSt3XxDDWOWooA5AFk/u+VNjnDJzGq 8EXgij3jjP8iDyeSqqsUVm7For11Tyi/d4bFJgP+sAe1RmH4HQUIjVpnJW7djQPC 7cEtPwbWtDtAZhWWfpwpK3GhQCzzg3rgX5ilgUVJNZ18bVoctQbJPWpi3NkXC7nt z7Fihr32t9kpLb0ZM+HOHOcf7qJMkqU8iMQF9p0GpPzfl5jV4JKlwtHNf4e8HkUN slCbStEU6Xf1wqyXCC2L64H+38UabGT9ZOCV6XuEuPpdY9mWKVvI2dOtX9rB5SKh 0GyiGyK4ng8OLDUPl097DyEj+w0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIZZvoUA3rsxREjxQS+h4mQCWkFIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYTQ4ZTRl LWZjOTUtNGFjZi1iZWFjLWQ5M2EwZjY5NDQyMS8wLzg2NTlCRTg1MDBERUJCMzE0 NDQ4RjE0MTJGQTFFMjY0MDI1QTQxNDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnpMAwDwQCAAIwCQMHACABDfEbwDANBgkqhkiG9w0BAQsFAAOCAQEACgqZrN6j N1ojfnQwp40FaMq6qSIUQVGSA7IcJr9U4KoVgCwc99cU392pber2ZMCZ/WEX36P8 d/HJqaGCW9bDyOU25Op9HG/hRnVr0wu8nL333t8jZlc2i4reODwTZakv0wxqZG2g dSXLHjBhIWYJp5tSn5yo7JMhCvAxchK0r73gXjocs/GUByNZR+t3S45ZKTvA+L6V NpARiTthAiuHuCjMpkdxYKmnL2MdqyeY+C1EdUVB0wvgdMJ5dL4MyWAoeArJ1jyq o1RxDbxeMrIWso7spMEILzeHVNLnZusQ9aj/N2+YwlqGBoPGKfnsdMU6KQ4hkxEo LtfNoxkoX3Y1ng== -----END CERTIFICATE-----Generated at Wed May 8 15:17:39 2024 by rpki-client on console-fra.rpki-client.org