$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer File: 8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer (raw, json) Hash identifier: hbHlGFXgBMpjoPZxSsiEPpibLx2BgW+PWvo/4qBpLkc= Subject key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A64A7B39BEC78FF242FB96C19096E982C68E4F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft caRepository: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 28 Oct 2023 19:56:43 +0000 Certificate not after: Sat 26 Oct 2024 20:01:43 +0000 Subordinate resources: IP: 103.150.148.0/23 IP: 2406:540::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:64:a7:b3:9b:ec:78:ff:24:2f:b9:6c:19:09:6e:98:2c:68:e4:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 19:56:43 2023 GMT Not After : Oct 26 20:01:43 2024 GMT Subject: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:71:e5:d7:f0:3f:91:ce:72:88:18:e2:a6:63: 51:8a:14:ac:de:08:80:8f:d5:9f:0a:71:aa:a0:f5: 82:4f:01:11:d4:70:8a:f3:f6:4a:2b:10:f9:16:15: 15:fd:fb:b2:d6:fe:d8:26:3d:c5:c0:2e:cc:a4:7c: 54:22:08:e7:d8:cd:d3:8e:9e:70:b8:4b:fb:fd:06: 68:fd:4c:43:1a:4a:8f:83:76:e6:2c:ca:08:58:5d: 4d:57:f3:f7:df:83:fb:3c:a8:b2:8d:a7:40:0d:3a: 9d:ec:3c:55:cc:f4:05:fd:af:a7:2a:84:99:03:74: 3f:9f:3e:72:76:df:a3:88:3e:fa:9a:89:72:b8:7b: f7:57:1d:31:9d:3b:24:65:17:16:e4:dc:81:f5:46: f8:13:cc:16:06:38:fd:bb:39:f2:9b:0f:18:c8:e1: 7e:6c:50:90:b1:a5:fe:6f:2b:69:d0:99:5b:aa:a5: 48:d0:cf:26:a7:08:77:a2:9d:38:c3:31:39:30:e2: c3:0f:d9:3d:e5:6c:07:32:72:94:5f:75:65:26:c8: bb:35:de:f3:23:65:d2:a4:78:e9:4d:76:1b:00:4e: 4c:6f:1c:c0:b8:e9:b9:4d:52:a5:e0:21:5b:b6:c1: 8b:b4:7b:06:44:52:b2:66:3a:f5:10:14:14:54:85: 31:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/23 IPv6: 2406:540::/32 Signature Algorithm: sha256WithRSAEncryption 07:0c:54:da:1d:12:55:42:21:52:f8:e9:a7:28:84:4b:42:63: 06:3a:f8:7d:b7:29:89:dc:8a:52:37:62:ef:06:c8:83:24:72: a7:da:78:e0:70:6b:11:bd:fa:12:c7:5e:f6:80:cc:16:a4:41: eb:38:8a:4e:6c:3e:cf:a7:9b:2e:05:c7:d3:35:da:cb:41:be: 59:d0:80:c5:b9:1d:be:53:f4:46:61:e8:16:d2:48:21:0d:e0: 37:3a:05:d4:8e:79:e9:de:b9:da:9b:5c:14:fd:3c:33:e0:ab: 24:31:d5:7e:cf:56:37:af:87:c1:0f:b0:e1:4c:58:65:fe:32: ab:e8:34:31:cc:d7:91:6c:06:3e:bb:ef:db:54:a0:07:da:e7: 69:ef:1a:24:56:22:c7:7a:f7:0a:f4:a4:23:44:23:1e:05:ab: 91:8a:d7:86:05:f3:26:4e:c6:a6:c9:8c:a8:af:6e:3c:13:b7: 52:f4:d7:37:ba:d9:ff:1f:74:c7:63:b9:10:a9:a8:69:58:2d: 37:65:87:0a:bc:37:e8:c3:e7:61:ab:82:fb:12:85:4c:39:b3: 65:5a:c3:b0:14:dc:86:ac:0a:f7:2c:c7:41:fd:4d:90:02:2b: 8a:62:95:f5:0d:56:cf:3f:61:5c:bf:64:6d:51:b6:3f:04:b7: 78:82:14:d0 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUSmSns5vseP8kL7lsGQlumCxo5PAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyODE5NTY0M1oX DTI0MTAyNjIwMDE0M1owMzExMC8GA1UEAxMoOEY1ODg5M0IxQ0UxREI4NTU1RDdC RUNCNjNERTM0MkQyMzhCNjc3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9x5dfwP5HOcogY4qZjUYoUrN4IgI/VnwpxqqD1gk8BEdRwivP2SisQ+RYV Ff37stb+2CY9xcAuzKR8VCII59jN046ecLhL+/0GaP1MQxpKj4N25izKCFhdTVfz 99+D+zyoso2nQA06new8Vcz0Bf2vpyqEmQN0P58+cnbfo4g++pqJcrh791cdMZ07 JGUXFuTcgfVG+BPMFgY4/bs58psPGMjhfmxQkLGl/m8radCZW6qlSNDPJqcId6Kd OMMxOTDiww/ZPeVsBzJylF91ZSbIuzXe8yNl0qR46U12GwBOTG8cwLjpuU1SpeAh W7bBi7R7BkRSsmY69RAUFFSFMUUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI9YiTsc4duFVde+y2PeNC0ji2d5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYmRlOTM2Yi01M2NmLTRiMDgtYjVmNy0yYjkwZGUyMWZlOTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZi LTUzY2YtNGIwOC1iNWY3LTJiOTBkZTIxZmU5NC8wLzhGNTg4OTNCMUNFMURCODU1 NUQ3QkVDQjYzREUzNDJEMjM4QjY3NzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnlpQwDQQCAAIwBwMFACQGBUAwDQYJKoZIhvcNAQELBQADggEBAAcMVNodElVC IVL46acohEtCYwY6+H23KYncilI3Yu8GyIMkcqfaeOBwaxG9+hLHXvaAzBakQes4 ik5sPs+nmy4Fx9M12stBvlnQgMW5Hb5T9EZh6BbSSCEN4Dc6BdSOeeneudqbXBT9 PDPgqyQx1X7PVjevh8EPsOFMWGX+MqvoNDHM15FsBj6779tUoAfa52nvGiRWIsd6 9wr0pCNEIx4Fq5GK14YF8yZOxqbJjKivbjwTt1L01ze62f8fdMdjuRCpqGlYLTdl hwq8N+jD52GrgvsShUw5s2Vaw7AU3IasCvcsx0H9TZACK4pilfUNVs8/YVy/ZG1R tj8Et3iCFNA= -----END CERTIFICATE-----Generated at Wed May 8 10:06:50 2024 by rpki-client on console-ams.rpki-client.org