$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer File: 8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer (raw, json) Hash identifier: TKFFdcH1gMo6+L3H3S859Tm7Ehz90tGgBd3K47Uz2/w= Subject key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 730D3EC831DD1A9A48810AABAA06B5AE0D395C75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 14 Oct 2023 13:10:24 +0000 Certificate not after: Sat 12 Oct 2024 13:15:24 +0000 Subordinate resources: IP: 103.118.124.0/22 IP: 2403:31c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:0d:3e:c8:31:dd:1a:9a:48:81:0a:ab:aa:06:b5:ae:0d:39:5c:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 14 13:10:24 2023 GMT Not After : Oct 12 13:15:24 2024 GMT Subject: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ba:32:90:30:a7:cf:6a:0b:2d:52:a2:27:56: 82:43:01:e8:7e:14:06:44:d9:7f:df:37:f2:16:b3: 70:ab:8d:4c:55:64:af:c2:ff:90:da:5b:f9:41:c5: ab:8f:aa:f2:e7:6d:3a:7c:42:c6:1c:cb:51:54:f2: 2f:2d:4d:52:06:28:71:ff:55:55:0d:02:e0:0a:b0: a9:a0:f4:9d:32:4b:a2:28:3d:ec:9d:b6:5e:40:60: 76:68:09:1b:7e:6f:cf:94:09:02:bc:65:f2:12:4f: 1e:61:33:dd:c8:0a:e7:0e:14:c2:03:1e:c8:af:28: e4:18:59:60:fd:0c:bc:f5:75:fa:e0:e0:5e:f9:39: 46:fd:65:e6:f2:b8:65:be:50:e3:58:c5:22:bc:0d: f5:64:69:16:58:e9:b3:9b:00:1e:79:58:5b:fd:6b: c4:e3:0f:29:89:1b:b9:a7:41:ec:ea:79:ee:ed:1d: 75:d4:1e:b1:50:56:92:b9:f8:75:b5:3a:6d:7d:e3: 8e:b4:38:ab:39:d6:50:76:92:b7:9a:56:d0:48:d4: a9:b9:1f:24:ec:5c:cd:87:89:33:8e:76:b0:14:0a: 1d:80:00:81:2e:34:f0:51:9c:0d:95:87:13:05:44: d5:bb:a5:3f:8c:f5:67:15:fc:e3:1b:24:55:d5:e0: df:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.124.0/22 IPv6: 2403:31c0::/32 Signature Algorithm: sha256WithRSAEncryption 0a:a7:6b:42:48:88:d3:95:e0:e1:ea:0a:81:d0:34:88:94:4c: 3e:10:f3:8a:a9:33:1f:b2:a4:77:76:76:d6:7a:39:de:27:f5: c3:62:ef:c6:d1:0f:24:5c:a4:10:f3:6f:ef:0f:d4:25:b6:e2: 1c:70:c0:2e:cb:b4:b9:ca:c6:20:82:67:09:1d:24:3f:ed:57: 74:e5:98:a4:08:1a:fe:3b:71:4a:a0:60:f9:d5:38:27:15:11: 6e:3b:6b:90:5a:94:26:b2:56:59:b1:c9:b9:d7:b4:e9:68:23: cd:94:6b:88:0e:c5:cd:64:61:7b:e3:41:b3:3f:ad:1b:aa:fd: d8:67:68:c6:d7:fe:03:cf:50:95:13:33:03:57:8a:0c:d6:c3: 4a:15:67:4e:4f:f7:4f:d0:ee:01:3c:ec:dc:49:0a:3c:0a:fc: e6:5e:14:57:87:e8:c4:ae:d8:c3:60:64:51:e5:cc:97:c2:b5: cf:77:26:54:b4:24:ce:f6:c4:a8:84:7f:da:0b:20:1a:15:b6: f9:d8:34:0b:3a:33:8a:3e:b9:cd:f3:de:9d:fb:f6:92:e8:7e: 12:47:03:b6:c5:3c:89:7b:5d:a6:4a:e0:25:be:eb:e5:06:a4: 54:a6:fd:b3:b5:79:7a:4f:bc:7f:09:f3:be:b0:24:a7:88:0e: 8e:8a:9c:6d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUcw0+yDHdGppIgQqrqga1rg05XHUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxNDEzMTAyNFoX DTI0MTAxMjEzMTUyNFowMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNG QjA4RTcxQkRGNDFBQUUyMEY1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANS6MpAwp89qCy1SoidWgkMB6H4UBkTZf9838hazcKuNTFVkr8L/kNpb+UHF q4+q8udtOnxCxhzLUVTyLy1NUgYocf9VVQ0C4AqwqaD0nTJLoig97J22XkBgdmgJ G35vz5QJArxl8hJPHmEz3cgK5w4UwgMeyK8o5BhZYP0MvPV1+uDgXvk5Rv1l5vK4 Zb5Q41jFIrwN9WRpFljps5sAHnlYW/1rxOMPKYkbuadB7Op57u0dddQesVBWkrn4 dbU6bX3jjrQ4qznWUHaSt5pW0EjUqbkfJOxczYeJM452sBQKHYAAgS408FGcDZWH EwVE1bulP4z1ZxX84xskVdXg39ECAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIxfouvXr0A5OIP7COcb30Gq4g9XMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUx LWJjMDAtNGQ2Yi04NzYxLWM3ZDBkM2Y2ZGUxMi8wLzhDNUZBMkVCRDdBRjQwMzkz ODgzRkIwOEU3MUJERjQxQUFFMjBGNTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJndnwwDQQCAAIwBwMFACQDMcAwDQYJKoZIhvcNAQELBQADggEBAAqna0JIiNOV 4OHqCoHQNIiUTD4Q84qpMx+ypHd2dtZ6Od4n9cNi78bRDyRcpBDzb+8P1CW24hxw wC7LtLnKxiCCZwkdJD/tV3TlmKQIGv47cUqgYPnVOCcVEW47a5BalCayVlmxybnX tOloI82Ua4gOxc1kYXvjQbM/rRuq/dhnaMbX/gPPUJUTMwNXigzWw0oVZ05P90/Q 7gE87NxJCjwK/OZeFFeH6MSu2MNgZFHlzJfCtc93JlS0JM72xKiEf9oLIBoVtvnY NAs6M4o+uc3z3p379pLofhJHA7bFPIl7XaZK4CW+6+UGpFSm/bO1eXpPvH8J876w JKeIDo6KnG0= -----END CERTIFICATE-----Generated at Wed May 8 21:02:18 2024 by rpki-client on console-fra.rpki-client.org