$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8B7E0099F26BEEE90826C9B0E424575BDE128403.cer File: 8B7E0099F26BEEE90826C9B0E424575BDE128403.cer (raw, json) Hash identifier: 6OHyk2gdsgaX3Q5KFZLY7dO+uZTKFh+TmG6FGphiDas= Subject key identifier: 8B:7E:00:99:F2:6B:EE:E9:08:26:C9:B0:E4:24:57:5B:DE:12:84:03 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2C7781C574E242C438A22E96C46AA17293A3DBCA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.mft caRepository: rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 Nov 2023 13:40:43 +0000 Certificate not after: Fri 15 Nov 2024 13:45:43 +0000 Subordinate resources: IP: 103.179.86.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:77:81:c5:74:e2:42:c4:38:a2:2e:96:c4:6a:a1:72:93:a3:db:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 13:40:43 2023 GMT Not After : Nov 15 13:45:43 2024 GMT Subject: CN=8B7E0099F26BEEE90826C9B0E424575BDE128403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f1:fe:1b:98:b3:00:a9:ca:6a:b4:e0:bf:33: 53:79:d1:dd:f0:f4:09:e4:5b:6b:3d:c8:a6:82:5a: 86:fd:20:b7:52:3c:7b:f5:75:97:0b:07:65:96:ab: 34:73:f8:e4:15:02:ee:92:cb:55:1c:f3:9c:7c:c6: 64:bf:d2:d7:28:d8:20:49:f1:68:22:ce:5e:4f:63: e4:8a:1f:fc:58:08:2b:2c:ac:56:ec:88:e9:f3:a3: d9:e4:21:ed:83:be:bc:73:87:2d:00:50:db:8d:93: 2a:b3:62:18:db:0f:b8:78:b2:3e:3b:7a:89:77:78: 84:1b:d5:37:cb:04:32:b3:0a:e9:4f:71:b2:14:66: 51:4a:b5:43:c1:c6:74:29:a5:f7:23:10:86:e3:ee: 66:65:a9:7c:e9:c1:67:a2:26:b8:1a:34:db:5f:ed: 20:1d:e6:7d:56:81:52:2e:3a:1e:b1:bb:2b:23:f4: d9:b5:de:2c:d2:a3:e7:b6:35:40:0b:ed:7b:cf:b4: d2:9c:bf:09:a7:78:dd:23:11:e7:0f:71:69:74:bf: 86:3a:97:92:cd:68:98:e7:83:8f:0e:57:4f:cf:9d: fd:04:0c:4d:7e:8e:7f:8f:f8:b0:6f:48:ca:55:89: 9d:a5:33:24:32:9d:5b:cc:38:b4:2e:be:bd:6e:c7: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8B:7E:00:99:F2:6B:EE:E9:08:26:C9:B0:E4:24:57:5B:DE:12:84:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.86.0/23 Signature Algorithm: sha256WithRSAEncryption 38:e9:fb:e0:ce:8f:31:b9:1c:61:97:de:83:9b:f7:8d:e1:6d: 85:60:90:54:ac:75:4b:a5:5a:c7:07:a0:29:bf:49:5d:a8:45: 1c:9b:34:df:c4:e2:db:db:9a:33:96:eb:bc:fd:89:7a:36:76: f0:69:11:2d:e0:6d:21:94:53:ec:0b:7b:55:d8:65:a1:01:33: 4f:30:e1:e9:70:a0:c1:07:a9:ea:8d:3e:f7:be:90:81:61:dc: 41:8e:81:a4:65:fc:1d:c2:c2:a0:4f:51:12:ee:b3:3a:8a:a6: 3c:4e:65:aa:ff:d5:4f:31:11:72:d9:72:76:55:81:b7:47:ab: d4:71:9f:39:2f:cd:08:6a:9f:3f:11:f0:56:f8:0e:00:26:b5: b6:02:dc:f8:5c:bf:a3:3e:10:3c:d5:d2:d1:e7:eb:53:0d:3a: b8:c1:ea:83:dc:00:de:cd:f1:9a:d5:14:11:6c:e7:66:d4:7a: d7:ce:77:12:fc:23:a3:0c:62:18:66:a1:4d:17:c4:04:60:5a: 84:de:dc:e1:37:a6:96:b2:a5:e7:06:3d:08:42:6b:6d:37:7a: e6:fb:f0:a7:f4:4e:b3:99:51:27:36:b8:27:dc:c9:b0:8b:fb: d8:90:d0:10:b2:80:e8:f2:4a:43:dc:3a:df:39:99:f3:fa:10: a1:fb:da:83 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULHeBxXTiQsQ4oi6WxGqhcpOj28owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNzEzNDA0M1oX DTI0MTExNTEzNDU0M1owMzExMC8GA1UEAxMoOEI3RTAwOTlGMjZCRUVFOTA4MjZD OUIwRTQyNDU3NUJERTEyODQwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTx/huYswCpymq04L8zU3nR3fD0CeRbaz3IpoJahv0gt1I8e/V1lwsHZZar NHP45BUC7pLLVRzznHzGZL/S1yjYIEnxaCLOXk9j5Iof/FgIKyysVuyI6fOj2eQh 7YO+vHOHLQBQ242TKrNiGNsPuHiyPjt6iXd4hBvVN8sEMrMK6U9xshRmUUq1Q8HG dCml9yMQhuPuZmWpfOnBZ6ImuBo021/tIB3mfVaBUi46HrG7KyP02bXeLNKj57Y1 QAvte8+00py/Cad43SMR5w9xaXS/hjqXks1omOeDjw5XT8+d/QQMTX6Of4/4sG9I ylWJnaUzJDKdW8w4tC6+vW7HxgUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIt+AJnya+7pCCbJsOQkV1veEoQDMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wOWE4ODg5Ny1jMzg3LTQ3MzUtYWNkOC0xZDFjNTNjZGUyNjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5YTg4ODk3 LWMzODctNDczNS1hY2Q4LTFkMWM1M2NkZTI2NC8wLzhCN0UwMDk5RjI2QkVFRTkw ODI2QzlCMEU0MjQ1NzVCREUxMjg0MDMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns1YwDQYJKoZIhvcNAQELBQADggEBADjp++DOjzG5HGGX3oOb943hbYVgkFSs dUulWscHoCm/SV2oRRybNN/E4tvbmjOW67z9iXo2dvBpES3gbSGUU+wLe1XYZaEB M08w4elwoMEHqeqNPve+kIFh3EGOgaRl/B3CwqBPURLuszqKpjxOZar/1U8xEXLZ cnZVgbdHq9RxnzkvzQhqnz8R8Fb4DgAmtbYC3Phcv6M+EDzV0tHn61MNOrjB6oPc AN7N8ZrVFBFs52bUetfOdxL8I6MMYhhmoU0XxARgWoTe3OE3ppaypecGPQhCa203 eub78Kf0TrOZUSc2uCfcybCL+9iQ0BCygOjySkPcOt85mfP6EKH72oM= -----END CERTIFICATE-----Generated at Tue May 7 16:42:38 2024 by rpki-client on console-ams.rpki-client.org