$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.cer File: 8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.cer (raw, json) Hash identifier: qgrrMc2ZEdn9avoyHhVbkgpvaCDzeDbM23KDTxGEzDg= Subject key identifier: 8D:C2:ED:08:70:A0:05:15:26:06:E2:E6:BE:B6:B6:C7:8A:52:2A:F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 594B76A20FE96F179B9EEA6B1DA086AAFFAF790D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0/8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.mft caRepository: rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 27 Sep 2023 12:00:35 +0000 Certificate not after: Wed 25 Sep 2024 12:05:35 +0000 Subordinate resources: IP: 103.172.30.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:4b:76:a2:0f:e9:6f:17:9b:9e:ea:6b:1d:a0:86:aa:ff:af:79:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 27 12:00:35 2023 GMT Not After : Sep 25 12:05:35 2024 GMT Subject: CN=8DC2ED0870A005152606E2E6BEB6B6C78A522AF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:83:7d:25:81:5c:b7:bd:19:49:b8:44:9c:32: 3e:4a:bc:e0:04:ff:33:2b:d3:6f:f5:ef:28:4e:6f: b9:e9:7c:76:5e:92:3a:f3:af:a1:36:20:50:c0:70: 16:d9:eb:bf:15:2a:b0:24:26:67:a6:ac:4a:1d:8f: 81:c1:7a:ac:30:eb:6b:1a:e8:db:35:92:7a:77:53: 29:3a:ed:2e:7d:38:fd:4d:59:11:be:37:08:af:d0: 9e:fd:19:6f:78:fa:f4:2b:05:8f:80:73:43:2c:b4: d9:04:af:12:a4:92:fe:13:bb:46:af:24:d7:88:5a: 67:42:c7:4c:b7:1a:26:e4:71:52:c4:d9:19:2a:d9: a9:ed:2b:b9:ae:3a:25:63:84:c6:64:16:2a:5e:26: d5:4b:25:8f:b5:17:1d:13:a5:1a:38:97:5b:45:4d: 5f:d6:6a:45:ed:1f:80:bf:1d:e1:6e:bc:24:a0:f0: 47:c9:16:e0:8c:4a:9e:17:d3:a0:df:fb:56:24:20: d5:e0:15:c9:95:04:5a:1e:15:3e:79:64:a0:bb:3b: 6e:36:f3:cc:22:04:60:76:09:0c:88:0b:e3:57:2f: f5:9c:b7:a1:83:bf:4e:25:b0:7d:03:f1:77:3f:d2: c7:c2:c8:fc:34:34:4f:1e:93:f1:55:71:86:cc:c2: 05:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:C2:ED:08:70:A0:05:15:26:06:E2:E6:BE:B6:B6:C7:8A:52:2A:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0/8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.30.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b8:00:00:95:6c:81:89:0b:b6:b0:2d:29:1a:37:bf:76:e7: 3f:30:1a:2d:24:1d:da:23:d4:be:47:e2:50:2f:ff:42:71:28: b3:21:21:ae:33:16:d3:4f:45:2a:0a:13:f5:17:17:93:97:85: d8:12:f5:27:1d:93:00:a6:4f:b5:08:06:83:ab:1d:02:18:96: 8b:d7:9d:c0:b7:1c:4b:a8:94:f3:be:4c:ec:a5:bc:ad:6c:eb: 09:69:76:0f:74:95:f8:76:7b:9a:82:7c:c4:08:e2:63:ec:31: 88:c9:3c:89:6d:15:31:16:aa:e7:5f:36:80:7e:8d:a0:78:e5: 4b:16:18:8a:01:a8:e0:fc:c7:3c:f7:8b:a1:e2:91:c2:cc:18: 3f:df:83:14:35:5f:60:23:9e:49:12:5e:2b:37:75:11:49:09: 02:5b:a9:b3:9a:2b:e7:00:71:18:0b:64:d7:5c:2c:08:e9:24: 3e:28:ad:85:ab:25:2f:2b:7e:49:3e:dc:9a:48:02:3e:94:c6: 59:bf:68:d5:7d:f9:24:f2:7f:a3:a7:2a:ba:21:af:48:70:ad: 88:4c:4d:58:b8:b2:6d:e7:6b:fe:84:62:ef:05:55:6b:25:33: 9e:89:19:b0:89:e2:fb:d4:f9:78:00:d8:18:11:9c:c2:d9:65: d8:28:17:ce -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWUt2og/pbxebnuprHaCGqv+veQ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyNzEyMDAzNVoX DTI0MDkyNTEyMDUzNVowMzExMC8GA1UEAxMoOERDMkVEMDg3MEEwMDUxNTI2MDZF MkU2QkVCNkI2Qzc4QTUyMkFGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyDfSWBXLe9GUm4RJwyPkq84AT/MyvTb/XvKE5vuel8dl6SOvOvoTYgUMBw FtnrvxUqsCQmZ6asSh2PgcF6rDDraxro2zWSendTKTrtLn04/U1ZEb43CK/Qnv0Z b3j69CsFj4BzQyy02QSvEqSS/hO7Rq8k14haZ0LHTLcaJuRxUsTZGSrZqe0rua46 JWOExmQWKl4m1Uslj7UXHROlGjiXW0VNX9ZqRe0fgL8d4W68JKDwR8kW4IxKnhfT oN/7ViQg1eAVyZUEWh4VPnlkoLs7bjbzzCIEYHYJDIgL41cv9Zy3oYO/TiWwfQPx dz/Sx8LI/DQ0Tx6T8VVxhszCBUcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI3C7QhwoAUVJgbi5r62tseKUir0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84OTE5YjgwZC00NjkzLTQwOTUtYTllMy00MTJlMTI4MjhmZjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MTliODBk LTQ2OTMtNDA5NS1hOWUzLTQxMmUxMjgyOGZmMi8wLzhEQzJFRDA4NzBBMDA1MTUy NjA2RTJFNkJFQjZCNkM3OEE1MjJBRjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnrB4wDQYJKoZIhvcNAQELBQADggEBACO4AACVbIGJC7awLSkaN7925z8wGi0k Hdoj1L5H4lAv/0JxKLMhIa4zFtNPRSoKE/UXF5OXhdgS9ScdkwCmT7UIBoOrHQIY lovXncC3HEuolPO+TOylvK1s6wlpdg90lfh2e5qCfMQI4mPsMYjJPIltFTEWqudf NoB+jaB45UsWGIoBqOD8xzz3i6HikcLMGD/fgxQ1X2AjnkkSXis3dRFJCQJbqbOa K+cAcRgLZNdcLAjpJD4orYWrJS8rfkk+3JpIAj6Uxlm/aNV9+STyf6OnKrohr0hw rYhMTVi4sm3na/6EYu8FVWslM56JGbCJ4vvU+XgA2BgRnMLZZdgoF84= -----END CERTIFICATE-----Generated at Thu May 9 00:37:02 2024 by rpki-client on console-fra.rpki-client.org