$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer (raw, json) Hash identifier: Y41Plu4btyNe3SL0AzNzwfqnQL37v9FJ5nyUoqDvXJo= Subject key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5F8D4E65CECA8D503E0EA25B0FB73AC899E535E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft caRepository: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 20 Oct 2023 10:13:47 +0000 Certificate not after: Fri 18 Oct 2024 10:18:47 +0000 Subordinate resources: IP: 103.167.70.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:8d:4e:65:ce:ca:8d:50:3e:0e:a2:5b:0f:b7:3a:c8:99:e5:35:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 20 10:13:47 2023 GMT Not After : Oct 18 10:18:47 2024 GMT Subject: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:69:7a:62:f9:49:c9:0b:7c:86:c9:12:bb:ef: 46:44:34:70:57:02:6c:1e:3f:38:05:06:37:88:ea: 0e:b0:10:0e:7c:ef:0e:17:14:88:bb:7f:ca:8c:e0: ec:c3:a8:61:33:d5:b2:00:78:a4:1b:30:87:53:87: 30:87:0b:41:24:bd:d5:b1:ba:e5:5b:5e:22:fd:95: 97:a1:35:72:f0:c1:c4:30:03:4c:4f:79:c1:14:6b: 63:92:08:80:22:b7:4a:76:99:11:7e:1b:17:d8:12: 35:fa:e9:ce:44:9d:aa:d0:ad:ce:ea:fc:83:57:51: af:d7:45:42:f4:f6:43:1f:db:03:5a:fc:3d:3f:1f: 2a:20:cb:d0:7d:85:dd:1c:9a:25:8f:2e:7d:6d:b2: 61:ce:f5:b1:28:81:5f:8e:51:d6:62:c6:2e:d7:bc: 1d:e6:27:b4:1d:bf:e0:93:46:80:65:20:41:4d:de: 0b:42:37:8c:79:38:da:e6:c9:3f:ef:72:57:e9:e4: f7:cf:ed:bd:b1:22:b0:31:10:11:9e:99:01:2b:bf: fc:4c:db:8b:ad:b7:fc:c7:0c:37:7f:72:67:d8:8e: a9:57:b5:8a:e5:a5:d2:8b:34:b9:ac:80:b0:a6:87: 3d:91:7a:7c:d2:ac:0f:30:40:cd:a3:eb:6a:df:25: 53:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.70.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:35:8b:f2:53:3e:11:07:e4:85:d9:a9:bb:ae:68:4b:28:2e: 84:a0:2c:d3:df:9c:0a:85:7f:cf:e4:10:d5:88:54:67:f5:ed: 9f:25:b3:2a:46:0d:a8:52:8f:55:28:9b:aa:a6:b3:5c:84:47: d0:a7:50:48:bc:fb:69:77:1c:96:61:26:d0:78:ef:4a:1e:2d: 81:69:97:5c:a1:14:eb:71:2f:8b:4a:34:da:22:76:33:a2:ed: 92:ec:55:52:b3:f9:b8:c9:2a:e2:07:9a:23:d4:d5:d6:9c:c2: bb:d5:40:da:5b:6d:31:c3:eb:e9:fd:4b:6e:da:3f:4a:95:5b: 0f:57:0e:6b:59:3f:eb:91:a9:22:7d:8b:be:95:ce:82:0c:21: 8c:aa:79:78:38:97:ed:b9:c4:a0:10:c5:ba:12:ce:b6:db:e3: ba:6c:7b:32:cd:78:9e:2d:c4:92:cc:d8:04:9c:75:f2:77:fe: e8:79:3e:a4:51:43:35:ee:b9:0a:7b:18:8e:4f:7b:ef:7c:ca: 0f:15:50:76:1f:01:a5:6d:16:87:40:fb:55:ba:2e:81:f6:50: 68:b5:70:aa:b1:2d:64:b6:fc:34:25:7e:ea:8c:07:65:67:66: ee:f6:7d:9c:a0:a4:93:5b:61:a8:6a:57:e9:b6:3a:54:4a:33: e7:8b:55:7d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUX41OZc7KjVA+DqJbD7c6yJnlNegwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyMDEwMTM0N1oX DTI0MTAxODEwMTg0N1owMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYz QzkzMTlFRjM0NzQ5OTYxMEU1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPNpemL5SckLfIbJErvvRkQ0cFcCbB4/OAUGN4jqDrAQDnzvDhcUiLt/yozg 7MOoYTPVsgB4pBswh1OHMIcLQSS91bG65VteIv2Vl6E1cvDBxDADTE95wRRrY5II gCK3SnaZEX4bF9gSNfrpzkSdqtCtzur8g1dRr9dFQvT2Qx/bA1r8PT8fKiDL0H2F 3RyaJY8ufW2yYc71sSiBX45R1mLGLte8HeYntB2/4JNGgGUgQU3eC0I3jHk42ubJ P+9yV+nk98/tvbEisDEQEZ6ZASu//Ezbi623/McMN39yZ9iOqVe1iuWl0os0uayA sKaHPZF6fNKsDzBAzaPrat8lU3sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI2nvS+1PySR+288kxnvNHSZYQ5QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdk LWU1MDktNDdiYS1iZTlkLTg5NTU2ZjUzMGVhOC8wLzhEQTdCRDJGQjUzRjI0OTFG QjZGM0M5MzE5RUYzNDc0OTk2MTBFNTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnp0YwDQYJKoZIhvcNAQELBQADggEBAA81i/JTPhEH5IXZqbuuaEsoLoSgLNPf nAqFf8/kENWIVGf17Z8lsypGDahSj1Uom6qms1yER9CnUEi8+2l3HJZhJtB470oe LYFpl1yhFOtxL4tKNNoidjOi7ZLsVVKz+bjJKuIHmiPU1dacwrvVQNpbbTHD6+n9 S27aP0qVWw9XDmtZP+uRqSJ9i76VzoIMIYyqeXg4l+25xKAQxboSzrbb47psezLN eJ4txJLM2AScdfJ3/uh5PqRRQzXuuQp7GI5Pe+98yg8VUHYfAaVtFodA+1W6LoH2 UGi1cKqxLWS2/DQlfuqMB2VnZu72fZygpJNbYahqV+m2OlRKM+eLVX0= -----END CERTIFICATE-----Generated at Tue May 7 18:07:13 2024 by rpki-client on console-fra.rpki-client.org