$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer File: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer (raw, json) Hash identifier: KQKARfk2VK5wCYZ5hM+XE+Nf5/9JFt+o5bfRuytwGEQ= Subject key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E7C3F2CA7CCAF372E2C8876BCA68618969241CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft caRepository: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 16 Aug 2023 08:38:21 +0000 Certificate not after: Wed 14 Aug 2024 08:43:21 +0000 Subordinate resources: IP: 103.172.170.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:7c:3f:2c:a7:cc:af:37:2e:2c:88:76:bc:a6:86:18:96:92:41:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 16 08:38:21 2023 GMT Not After : Aug 14 08:43:21 2024 GMT Subject: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:f9:15:3d:28:2e:56:82:7c:f5:18:4b:80: d5:14:8a:d0:a0:e2:87:3a:c5:e5:3b:65:18:97:81: 5e:3f:1c:0e:a3:ea:34:b9:2f:3f:22:eb:c4:9d:de: 1a:b6:8e:be:d0:b3:08:d9:10:9a:50:ea:15:cd:b2: e2:db:74:12:0b:45:29:0f:df:ad:c6:6a:cb:e1:5e: 63:a1:f8:56:56:44:60:3b:89:f5:c8:8d:08:8f:91: ba:65:1b:a6:52:35:5c:37:d9:d4:a1:57:58:3d:5e: 1c:f2:b2:1c:c2:4e:57:08:f0:06:30:2a:ba:33:f3: 5a:79:57:ee:65:79:69:fd:c8:f7:f8:ab:92:a2:d5: db:a0:7c:fc:d4:2b:1e:10:72:41:0a:e1:4d:f0:54: 23:4b:2e:db:73:8c:7b:c2:fa:1d:87:3a:b2:d4:ff: 4c:7e:3b:99:0b:65:de:c0:1a:f9:c0:86:85:08:58: 13:22:12:e8:a5:5a:b8:24:cd:8c:15:b5:ea:de:96: 5d:48:b9:49:02:94:ca:98:c2:62:91:85:71:59:31: c9:9f:d5:05:10:8a:2c:bd:98:ea:ca:f4:a5:00:ec: c6:f5:be:0a:30:b0:1e:a7:33:92:20:86:bb:2f:ba: 8c:ba:90:f4:2e:12:59:f1:5d:17:ff:cf:ca:11:f9: c2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.170.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:5b:73:ef:cf:9d:b4:42:40:ca:71:0c:67:b6:b4:4c:e0:e8: 4a:36:d8:8c:3c:9f:e6:bd:4c:e6:92:b8:83:5c:de:ec:b4:d2: f8:e9:4f:21:c7:80:62:d8:0e:08:45:8f:8e:4c:1d:1d:bf:55: 65:87:c5:6c:b3:6a:4e:59:c1:d0:92:fd:29:7f:35:cc:40:9c: d0:fa:0d:53:5b:f5:7a:47:66:47:66:f4:81:d9:18:5f:99:ea: 9b:a2:71:89:98:cf:78:42:cb:6b:75:a6:89:97:4c:6e:ab:e7: 12:dd:7f:38:4b:e8:3a:42:cf:06:f4:a5:3d:cb:93:d0:e1:26: bf:9d:b1:0d:e9:54:09:fb:79:1d:4f:e3:eb:72:d2:3e:48:62: d1:ce:48:17:5a:72:2b:af:20:cb:47:9a:f9:a6:75:38:d7:75: c4:c7:18:dc:c6:52:92:f6:3f:27:53:35:8b:f2:60:38:40:49: 47:cf:12:7e:0b:16:4a:9e:8d:18:f0:2d:d0:2e:a2:20:4e:3c: f9:40:01:66:7c:cc:11:b3:fc:6f:f7:ff:d1:31:e2:26:a9:f0: 3d:aa:bc:01:1c:c9:4b:bf:8c:81:f1:29:db:9a:60:21:0c:91: 04:a4:3e:8c:f6:3e:ed:41:40:ad:2a:91:a9:6d:8a:2c:36:03: a2:f8:5b:a9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULnw/LKfMrzcuLIh2vKaGGJaSQcswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxNjA4MzgyMVoX DTI0MDgxNDA4NDMyMVowMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0 MUFCQ0U0RUI2OUYwNTZERjA5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL+7+RU9KC5Wgnz1GEuA1RSK0KDihzrF5TtlGJeBXj8cDqPqNLkvPyLrxJ3e GraOvtCzCNkQmlDqFc2y4tt0EgtFKQ/frcZqy+FeY6H4VlZEYDuJ9ciNCI+RumUb plI1XDfZ1KFXWD1eHPKyHMJOVwjwBjAqujPzWnlX7mV5af3I9/irkqLV26B8/NQr HhByQQrhTfBUI0su23OMe8L6HYc6stT/TH47mQtl3sAa+cCGhQhYEyIS6KVauCTN jBW16t6WXUi5SQKUypjCYpGFcVkxyZ/VBRCKLL2Y6sr0pQDsxvW+CjCwHqczkiCG uy+6jLqQ9C4SWfFdF//PyhH5wmMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJv3LIu3yjWb5GdBq85Otp8FbfCUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yMWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIxZGI2Yzli LWQ4ZmMtNGQ4Yy04MGNiLWZkMjI0MTIwOGRkZS8wLzlCRjcyQzhCQjdDQTM1OUJF NDY3NDFBQkNFNEVCNjlGMDU2REYwOTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrKowDQYJKoZIhvcNAQELBQADggEBAGpbc+/PnbRCQMpxDGe2tEzg6Eo22Iw8 n+a9TOaSuINc3uy00vjpTyHHgGLYDghFj45MHR2/VWWHxWyzak5ZwdCS/Sl/NcxA nND6DVNb9XpHZkdm9IHZGF+Z6puicYmYz3hCy2t1pomXTG6r5xLdfzhL6DpCzwb0 pT3Lk9DhJr+dsQ3pVAn7eR1P4+ty0j5IYtHOSBdaciuvIMtHmvmmdTjXdcTHGNzG UpL2PydTNYvyYDhASUfPEn4LFkqejRjwLdAuoiBOPPlAAWZ8zBGz/G/3/9Ex4iap 8D2qvAEcyUu/jIHxKduaYCEMkQSkPoz2Pu1BQK0qkaltiiw2A6L4W6k= -----END CERTIFICATE-----Generated at Wed May 8 14:59:54 2024 by rpki-client on console-ams.rpki-client.org