$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer File: 8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer (raw, json) Hash identifier: PHB+fMd+AHY8w+YZPyLtpG/7AmOVk9qg2zjSIzOvyh4= Subject key identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63E2FE4F61326CDC62309A5BC7E6C85F5DA78FE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.mft caRepository: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 13 Oct 2023 12:29:17 +0000 Certificate not after: Fri 11 Oct 2024 12:34:17 +0000 Subordinate resources: IP: 103.17.178.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e2:fe:4f:61:32:6c:dc:62:30:9a:5b:c7:e6:c8:5f:5d:a7:8f:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 13 12:29:17 2023 GMT Not After : Oct 11 12:34:17 2024 GMT Subject: CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ed:ab:dd:28:d7:a7:4d:89:17:de:96:9d:f2: 88:49:16:e9:8e:3b:1b:bb:74:ff:60:3b:47:58:8c: 58:a7:86:3a:c5:d6:fc:27:62:79:53:13:51:db:ce: c9:42:44:82:55:2b:9d:59:a3:30:63:01:8b:30:c5: 73:c4:19:e4:cd:e6:99:de:a2:27:92:fd:42:28:10: 6d:f7:fc:8c:dd:45:6e:31:9b:05:36:fa:88:94:48: 5d:64:f3:30:34:33:f0:cc:9f:68:d7:fa:30:0c:49: 00:e0:b7:7e:b8:fd:bd:4a:b8:41:e5:e8:f8:bb:0a: 50:bb:36:5b:2b:5a:03:89:c0:d2:9b:40:83:f0:43: c3:f5:09:39:6f:92:ae:96:b1:5d:73:06:25:08:39: fd:40:31:40:7c:07:91:bc:76:48:f0:73:24:05:67: 1b:97:14:e5:98:44:ac:ec:4d:6d:7d:66:c5:77:2d: 56:e3:26:fb:cf:d3:96:3d:e1:1d:ab:6a:ef:b2:54: de:d0:a4:72:23:18:3e:41:84:d5:cb:c0:83:de:26: a0:59:8f:8c:68:25:b0:fd:e4:05:f6:0c:32:c1:be: f8:0c:ba:bd:f8:43:08:f8:a7:b5:90:60:f9:ab:02: a5:cf:29:b5:6b:34:88:c7:e8:d6:1e:fb:37:68:d5: 91:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.178.0/23 Signature Algorithm: sha256WithRSAEncryption 19:13:35:68:07:45:9f:67:b1:53:f9:3c:81:eb:c1:31:78:20: 7a:55:8f:8a:35:f2:6d:55:1a:0f:e0:e0:3f:d3:a7:7b:3c:77: cf:a5:87:68:2f:39:7a:12:23:fe:3c:91:12:c6:28:df:f4:a2: a6:e5:f5:22:30:ea:c5:02:15:4b:6d:4f:cc:cf:20:db:72:b5: 55:d8:9e:89:91:63:2b:d9:cf:57:60:4e:c9:0a:a7:8e:d6:9d: 9d:bf:49:4a:9e:f4:25:54:2e:c4:67:73:bf:30:52:c8:c4:d1: 31:db:b9:14:53:c5:b4:07:3d:34:1b:f3:5f:55:e9:cc:0e:aa: 7e:2e:e5:73:1c:2a:30:94:35:f8:46:c7:65:29:72:c7:bc:10: e7:36:76:f5:8a:a7:0c:a8:7e:73:02:de:fa:f2:38:a0:69:f7: 4b:43:28:78:2a:25:0b:93:24:e4:d1:fc:6b:a7:53:5c:b2:35: 8f:b4:3c:ad:7d:ec:f4:78:81:84:0f:5b:a9:cc:8c:81:f4:0b: fe:9d:40:86:0c:a4:9e:a8:8f:cf:b2:2c:fd:93:af:dd:8a:01: d2:43:b0:ae:9a:ab:7c:7f:4f:34:ed:f3:15:b7:da:e5:cd:39: e5:f0:b3:6b:2d:f1:e2:c5:ac:d3:60:bf:24:f6:da:2c:55:a9: a5:7f:a0:5c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUY+L+T2EybNxiMJpbx+bIX12nj+QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxMzEyMjkxN1oX DTI0MTAxMTEyMzQxN1owMzExMC8GA1UEAxMoODcxMUQwNUQ4MkJBRkI3QkVBQjI3 NUUwNzlBNzJEREQ1NTQwNjRFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOftq90o16dNiRfelp3yiEkW6Y47G7t0/2A7R1iMWKeGOsXW/CdieVMTUdvO yUJEglUrnVmjMGMBizDFc8QZ5M3mmd6iJ5L9QigQbff8jN1FbjGbBTb6iJRIXWTz MDQz8MyfaNf6MAxJAOC3frj9vUq4QeXo+LsKULs2WytaA4nA0ptAg/BDw/UJOW+S rpaxXXMGJQg5/UAxQHwHkbx2SPBzJAVnG5cU5ZhErOxNbX1mxXctVuMm+8/Tlj3h Hatq77JU3tCkciMYPkGE1cvAg94moFmPjGglsP3kBfYMMsG++Ay6vfhDCPintZBg +asCpc8ptWs0iMfo1h77N2jVkfcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIcR0F2Cuvt76rJ14HmnLd1VQGTqMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWY4MzdiMy1kZmQyLTQyY2MtOWI3OS03NGI2YmFmZDRlMmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZjgzN2Iz LWRmZDItNDJjYy05Yjc5LTc0YjZiYWZkNGUyZC8wLzg3MTFEMDVEODJCQUZCN0JF QUIyNzVFMDc5QTcyRERENTU0MDY0RUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnEbIwDQYJKoZIhvcNAQELBQADggEBABkTNWgHRZ9nsVP5PIHrwTF4IHpVj4o1 8m1VGg/g4D/Tp3s8d8+lh2gvOXoSI/48kRLGKN/0oqbl9SIw6sUCFUttT8zPINty tVXYnomRYyvZz1dgTskKp47WnZ2/SUqe9CVULsRnc78wUsjE0THbuRRTxbQHPTQb 819V6cwOqn4u5XMcKjCUNfhGx2Upcse8EOc2dvWKpwyofnMC3vryOKBp90tDKHgq JQuTJOTR/GunU1yyNY+0PK197PR4gYQPW6nMjIH0C/6dQIYMpJ6oj8+yLP2Tr92K AdJDsK6aq3x/TzTt8xW32uXNOeXws2st8eLFrNNgvyT22ixVqaV/oFw= -----END CERTIFICATE-----Generated at Wed May 8 17:45:19 2024 by rpki-client on console-ams.rpki-client.org