$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer File: B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer (raw, json) Hash identifier: fFKOcomqxPez2jz+1FvCwuLlQLCesauYFbfulieInKE= Subject key identifier: B3:2E:9E:AB:D0:55:A1:2F:D3:AA:7A:30:7C:1D:F6:83:2A:48:1A:F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 540831142A554C3DA149634C625907DD32FB5D69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.mft caRepository: rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 27 Nov 2023 07:24:02 +0000 Certificate not after: Mon 25 Nov 2024 07:29:02 +0000 Subordinate resources: IP: 27.124.76.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:08:31:14:2a:55:4c:3d:a1:49:63:4c:62:59:07:dd:32:fb:5d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 07:24:02 2023 GMT Not After : Nov 25 07:29:02 2024 GMT Subject: CN=B32E9EABD055A12FD3AA7A307C1DF6832A481AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:3a:28:c7:f3:70:74:4d:84:2d:4e:77:3c: a9:19:52:07:37:66:87:d0:41:4b:d8:57:a9:de:a2: 90:6c:ca:11:89:a3:51:03:51:8b:83:7a:9a:c9:59: 28:24:a2:c0:4a:3b:d2:36:b9:f7:74:a6:e5:45:0b: 0c:5f:c9:55:42:91:92:0b:b1:fc:36:8b:31:00:c3: 27:24:c4:02:bd:76:57:7b:42:da:c1:5b:b3:68:2b: 56:dd:d3:60:4a:5a:d7:25:54:7d:d0:51:22:72:7a: ca:a8:45:79:d5:89:fc:0f:d9:ae:5d:9f:d1:8b:3d: fd:91:74:4b:b3:c0:68:58:93:5d:dc:ac:ef:a8:cf: ad:83:3f:78:32:51:c8:72:cb:d6:b6:a5:09:4e:bc: f8:9f:f7:51:5a:5b:46:c1:99:36:56:8a:52:0e:27: 73:b4:c0:3c:3c:2d:cb:82:f9:11:6e:84:18:be:d1: 8c:57:86:e3:0b:62:00:68:92:e8:d9:ea:4b:df:63: 48:cb:88:4b:bf:ab:ef:fe:22:c0:c0:85:19:8a:e6: 28:07:d8:aa:cd:08:0e:be:35:38:76:1c:0a:d2:ad: 34:f9:fd:9f:7e:8c:cf:63:06:40:f6:3a:cc:bf:fd: 98:46:eb:23:5d:a3:c2:3c:a2:df:90:a1:4a:d9:ec: f7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B3:2E:9E:AB:D0:55:A1:2F:D3:AA:7A:30:7C:1D:F6:83:2A:48:1A:F8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.76.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:46:4d:de:4d:dc:94:ec:c1:da:7f:02:86:7a:03:9a:d1:59: 33:e2:44:16:6f:14:18:4c:f6:35:1d:8c:7c:62:e8:8a:42:27: 5b:9c:5f:7b:a2:07:be:11:c2:b2:5a:09:d6:9c:09:7a:8d:e7: 4a:ec:ec:0b:fb:20:fc:66:dc:a9:c3:91:1b:4a:a6:55:86:fc: d9:e1:a3:95:33:c1:5e:53:43:17:b9:d5:33:30:c5:58:0b:c0: a3:8b:58:a7:81:b0:0c:a0:99:05:ef:d9:fc:0e:57:b6:3a:af: 67:3e:e3:cc:2b:5e:6e:fa:62:26:17:79:27:dd:5c:f6:d4:9b: e0:24:37:16:0d:40:01:39:fc:68:4f:85:fb:a2:79:5f:70:d4: b9:dd:2a:40:f3:2f:56:6c:8f:d5:5b:9a:2e:b0:a4:9b:dc:06: 7c:ae:09:37:75:73:00:97:dc:4b:d6:da:73:d6:fc:4c:2d:ac: 7c:0a:a3:42:30:90:e5:f8:94:d9:c9:1d:26:70:91:f7:e4:22: 96:dd:6c:2a:04:e9:10:87:0f:f0:05:de:d1:40:98:22:a7:4d: bc:26:7f:74:03:f9:45:90:77:22:80:fd:d3:6b:99:38:7e:96: 10:ee:b3:36:22:a9:a6:81:39:a3:e3:9c:86:74:a3:f8:90:39: 81:e6:b3:ff -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVAgxFCpVTD2hSWNMYlkH3TL7XWkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNzA3MjQwMloX DTI0MTEyNTA3MjkwMlowMzExMC8GA1UEAxMoQjMyRTlFQUJEMDU1QTEyRkQzQUE3 QTMwN0MxREY2ODMyQTQ4MUFGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZiOijH83B0TYQtTnc8qRlSBzdmh9BBS9hXqd6ikGzKEYmjUQNRi4N6mslZ KCSiwEo70ja593Sm5UULDF/JVUKRkgux/DaLMQDDJyTEAr12V3tC2sFbs2grVt3T YEpa1yVUfdBRInJ6yqhFedWJ/A/Zrl2f0Ys9/ZF0S7PAaFiTXdys76jPrYM/eDJR yHLL1ralCU68+J/3UVpbRsGZNlaKUg4nc7TAPDwty4L5EW6EGL7RjFeG4wtiAGiS 6NnqS99jSMuIS7+r7/4iwMCFGYrmKAfYqs0IDr41OHYcCtKtNPn9n36Mz2MGQPY6 zL/9mEbrI12jwjyi35ChStns92UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLMunqvQVaEv06p6MHwd9oMqSBr4MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZjJhODAxMS00YzY2LTQzZDEtYmJjNS1mYjExZTg5ZjkxZTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMmE4MDEx LTRjNjYtNDNkMS1iYmM1LWZiMTFlODlmOTFlMC8wL0IzMkU5RUFCRDA1NUExMkZE M0FBN0EzMDdDMURGNjgzMkE0ODFBRjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEbfEwwDQYJKoZIhvcNAQELBQADggEBAAtGTd5N3JTswdp/AoZ6A5rRWTPiRBZv FBhM9jUdjHxi6IpCJ1ucX3uiB74RwrJaCdacCXqN50rs7Av7IPxm3KnDkRtKplWG /Nnho5UzwV5TQxe51TMwxVgLwKOLWKeBsAygmQXv2fwOV7Y6r2c+48wrXm76YiYX eSfdXPbUm+AkNxYNQAE5/GhPhfuieV9w1LndKkDzL1Zsj9Vbmi6wpJvcBnyuCTd1 cwCX3EvW2nPW/EwtrHwKo0IwkOX4lNnJHSZwkffkIpbdbCoE6RCHD/AF3tFAmCKn Tbwmf3QD+UWQdyKA/dNrmTh+lhDuszYiqaaBOaPjnIZ0o/iQOYHms/8= -----END CERTIFICATE-----Generated at Tue May 7 18:07:21 2024 by rpki-client on console-fra.rpki-client.org