$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer File: B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer (raw, json) Hash identifier: DuqXGtJ4s59+GIbZDObrXGA0vxopTBDp8hqAFCWRWnE= Subject key identifier: B1:6C:47:72:F3:D7:70:45:BB:A9:97:F9:4C:EA:CA:9E:0D:CC:28:65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65B8501C3229B7D9618B70B40F2FE74C07A78A62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 29 Nov 2023 05:43:49 +0000 Certificate not after: Wed 27 Nov 2024 05:48:49 +0000 Subordinate resources: IP: 180.131.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b8:50:1c:32:29:b7:d9:61:8b:70:b4:0f:2f:e7:4c:07:a7:8a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 05:43:49 2023 GMT Not After : Nov 27 05:48:49 2024 GMT Subject: CN=B16C4772F3D77045BBA997F94CEACA9E0DCC2865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:28:ea:d7:78:fe:38:7c:66:ee:31:61:80: d0:49:9d:fa:86:34:0e:75:fc:d3:f1:47:81:38:cd: f8:e5:70:7c:cc:2e:b0:26:67:5c:11:c5:bd:61:01: 5e:5e:b7:ee:2c:cd:e7:5f:75:07:eb:84:84:ba:7f: 3b:ef:c6:36:35:93:b5:19:15:85:a8:84:5f:e7:60: c0:2e:a8:87:42:d4:12:8e:8d:11:a1:d5:01:8d:36: 51:24:11:ad:fe:da:db:0d:f0:0b:43:01:5c:bd:68: 20:93:f6:55:1e:e1:20:7e:68:06:fc:64:3d:ce:be: 66:e2:f0:c6:d9:fd:46:96:2a:8c:c8:c5:5b:93:90: 4d:1c:21:62:1e:9e:aa:bf:f3:66:e3:6e:7c:1e:de: be:eb:98:0e:05:7c:0b:00:19:ae:7d:ec:43:11:b6: b6:89:0f:97:fd:25:01:e1:82:38:d3:37:71:7c:8c: 57:c2:13:40:b5:e6:f2:1e:14:64:56:25:69:93:0f: fc:10:1c:ec:79:24:37:2a:80:c9:5a:87:01:c3:96: 36:60:4c:43:5a:29:90:94:20:96:44:ff:d4:8d:ac: 07:a3:b0:5c:9d:9c:77:bb:de:a1:67:f9:50:b8:3a: cc:6f:ea:8d:52:87:f9:c4:2c:81:35:f7:ff:0e:ba: 6e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:6C:47:72:F3:D7:70:45:BB:A9:97:F9:4C:EA:CA:9E:0D:CC:28:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.129.0/24 Signature Algorithm: sha256WithRSAEncryption 35:4d:61:7e:20:a7:da:a3:08:db:2d:17:43:bb:dd:2f:16:d6: 28:38:a1:d5:25:7e:77:9b:6e:1e:21:f5:c0:92:60:f6:5c:e3: be:fe:fd:3f:8c:74:b5:31:ad:44:be:b5:9c:3d:67:aa:31:50: a0:ad:88:60:52:af:31:f3:de:ec:42:01:da:a3:06:82:9e:be: dd:ae:99:c6:4c:2b:71:d8:27:6f:df:cb:c1:fc:4d:92:18:af: d2:f9:49:b4:64:4f:d1:a5:2a:0f:38:74:81:b7:a4:df:ff:d2: 36:ba:94:ff:df:73:d5:44:fd:01:50:71:02:d5:25:00:6a:7e: 94:d5:40:a8:eb:f2:3b:07:ff:bd:77:e7:35:93:ee:40:b1:f8: e9:94:02:7f:77:d6:65:50:8c:15:d0:dc:0d:a3:ba:b4:c4:7f: 3c:a3:67:d0:dc:8d:ae:e6:3e:d1:d3:29:26:c8:8a:63:d4:33: f9:70:8f:28:b8:e9:87:00:61:c8:01:8d:8f:6f:e0:9f:c6:8c: 06:61:26:b8:64:59:d2:22:1a:71:94:49:ec:5e:9c:e9:9b:50: 6f:b1:c4:f7:ef:ee:1b:e0:b8:d5:b7:e5:2b:e2:17:80:43:7b: 1b:c0:7d:48:a4:c9:16:84:83:aa:96:50:8f:bf:94:e1:f7:19: e1:26:c5:b2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZbhQHDIpt9lhi3C0Dy/nTAenimIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyOTA1NDM0OVoX DTI0MTEyNzA1NDg0OVowMzExMC8GA1UEAxMoQjE2QzQ3NzJGM0Q3NzA0NUJCQTk5 N0Y5NENFQUNBOUUwRENDMjg2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCZKOrXeP44fGbuMWGA0Emd+oY0DnX80/FHgTjN+OVwfMwusCZnXBHFvWEB Xl637izN5191B+uEhLp/O+/GNjWTtRkVhaiEX+dgwC6oh0LUEo6NEaHVAY02USQR rf7a2w3wC0MBXL1oIJP2VR7hIH5oBvxkPc6+ZuLwxtn9RpYqjMjFW5OQTRwhYh6e qr/zZuNufB7evuuYDgV8CwAZrn3sQxG2tokPl/0lAeGCONM3cXyMV8ITQLXm8h4U ZFYlaZMP/BAc7HkkNyqAyVqHAcOWNmBMQ1opkJQglkT/1I2sB6OwXJ2cd7veoWf5 ULg6zG/qjVKH+cQsgTX3/w66bv8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLFsR3Lz13BFu6mX+Uzqyp4NzChlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzk5NDFhNC0yOGQyLTQ3ZDEtOTFlNy1hY2FiNTkwODQ0NjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOTk0MWE0 LTI4ZDItNDdkMS05MWU3LWFjYWI1OTA4NDQ2Mi8wL0IxNkM0NzcyRjNENzcwNDVC QkE5OTdGOTRDRUFDQTlFMERDQzI4NjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC0g4EwDQYJKoZIhvcNAQELBQADggEBADVNYX4gp9qjCNstF0O73S8W1ig4odUl fnebbh4h9cCSYPZc477+/T+MdLUxrUS+tZw9Z6oxUKCtiGBSrzHz3uxCAdqjBoKe vt2umcZMK3HYJ2/fy8H8TZIYr9L5SbRkT9GlKg84dIG3pN//0ja6lP/fc9VE/QFQ cQLVJQBqfpTVQKjr8jsH/7135zWT7kCx+OmUAn931mVQjBXQ3A2jurTEfzyjZ9Dc ja7mPtHTKSbIimPUM/lwjyi46YcAYcgBjY9v4J/GjAZhJrhkWdIiGnGUSexenOmb UG+xxPfv7hvguNW35SviF4BDexvAfUikyRaEg6qWUI+/lOH3GeEmxbI= -----END CERTIFICATE-----Generated at Wed May 8 09:50:41 2024 by rpki-client on console-fra.rpki-client.org