$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer File: B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.cer (raw, json) Hash identifier: 17CSzs/thkpJ3AI4+MwPs5yMGzDoWbak7DA9jTrmk/c= Subject key identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31E509C1129F0A1FA4907D7BC73F643F6EAB3022 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft caRepository: rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 14 Jun 2023 12:43:16 +0000 Certificate not after: Wed 12 Jun 2024 12:48:16 +0000 Subordinate resources: IP: 103.154.24.0/23 IP: 2406:5240::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:e5:09:c1:12:9f:0a:1f:a4:90:7d:7b:c7:3f:64:3f:6e:ab:30:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 14 12:43:16 2023 GMT Not After : Jun 12 12:48:16 2024 GMT Subject: CN=B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:30:03:c5:02:81:50:a5:78:31:ce:d2:a9:6f: b7:52:82:3b:fb:37:a1:38:6b:1b:73:bd:b0:70:50: 4a:d0:9a:65:18:9e:34:0e:10:f0:c0:45:e6:0b:41: 9b:00:3b:fe:e0:e0:8d:4c:70:23:1b:a4:b8:c8:23: 66:90:da:ad:60:4c:c3:9e:fb:34:4d:3f:65:4b:1d: 42:09:14:95:aa:62:90:18:45:f6:79:d4:65:0b:0d: 0d:a0:71:93:55:09:31:c7:eb:12:77:fa:4e:f8:8f: 07:77:da:6f:b3:22:25:bc:30:87:e0:ef:f9:9c:a6: a6:21:66:4b:db:3f:a0:ca:e3:86:97:b5:8d:59:16: 94:a8:96:db:32:8b:28:e7:c8:d3:18:b2:af:35:01: 9b:f9:f0:70:eb:99:bd:78:2a:64:ce:a2:b9:20:bb: 4b:de:22:67:58:1f:38:6f:0a:51:1d:5a:4e:77:25: 6c:dc:86:66:52:1f:6f:9c:b9:ec:63:60:fa:f8:98: ed:5a:bd:fe:70:0b:86:62:6f:ce:7f:f6:5e:d9:e4: 8f:71:37:02:38:6e:63:cc:c7:c5:98:e9:72:96:1d: da:10:57:00:3f:17:42:c2:33:3d:79:3b:31:66:3e: e8:c6:cc:34:05:f0:7b:f0:b2:83:f5:ce:26:61:95: 33:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B8:43:6A:CB:7C:E8:F8:C2:F5:72:45:FF:E4:E6:BA:2F:52:39:3F:4D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ebefbf04-41be-48d7-ac00-8a3c498ca9ae/0/B8436ACB7CE8F8C2F57245FFE4E6BA2F52393F4D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.24.0/23 IPv6: 2406:5240::/32 Signature Algorithm: sha256WithRSAEncryption 42:ab:50:48:6e:3d:8e:62:37:7b:28:37:11:b5:5e:ce:f8:38: 1d:be:99:bb:5e:aa:21:4f:22:ed:90:6c:ab:b5:44:a6:d6:78: e0:37:a4:11:f7:6f:2b:cd:bf:7f:f2:38:02:a7:ec:c5:5b:e7: 9b:78:7f:80:b9:97:ab:8c:4e:13:46:6d:e7:32:ea:67:ab:94: f6:20:c2:c9:e3:ff:8f:07:7e:6f:4f:2b:8e:e3:e9:2b:49:1a: 90:cf:34:66:1c:6a:c5:6a:d7:04:f1:85:ec:54:f0:6a:8e:6d: 28:a3:bb:e8:50:1d:11:0d:27:bc:8f:e0:eb:59:86:fe:85:0d: 13:cd:47:8b:cc:ea:ff:d2:32:27:a8:c8:17:49:24:b7:eb:78: 8a:89:e8:e1:9d:4a:5f:9e:45:30:15:bc:af:39:b1:98:5c:5c: 4d:fe:46:6c:3e:b1:e6:de:8b:71:6e:9e:90:fc:9a:f9:c2:f6: 76:63:bc:3f:d8:1b:7d:88:72:9b:fe:bf:c2:c7:f1:8f:7a:43: 3e:3b:38:69:c2:92:76:c8:a4:5b:16:84:d6:59:44:be:b8:9b: 45:96:e2:e5:0d:06:b6:9e:62:2c:38:0a:ec:26:b0:20:68:01: 78:6a:9f:a8:3e:87:10:05:27:fc:20:ef:53:3a:cf:1b:54:23: 58:f9:28:b0 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUMeUJwRKfCh+kkH17xz9kP26rMCIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxNDEyNDMxNloX DTI0MDYxMjEyNDgxNlowMzExMC8GA1UEAxMoQjg0MzZBQ0I3Q0U4RjhDMkY1NzI0 NUZGRTRFNkJBMkY1MjM5M0Y0RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkwA8UCgVCleDHO0qlvt1KCO/s3oThrG3O9sHBQStCaZRieNA4Q8MBF5gtB mwA7/uDgjUxwIxukuMgjZpDarWBMw577NE0/ZUsdQgkUlapikBhF9nnUZQsNDaBx k1UJMcfrEnf6TviPB3fab7MiJbwwh+Dv+ZympiFmS9s/oMrjhpe1jVkWlKiW2zKL KOfI0xiyrzUBm/nwcOuZvXgqZM6iuSC7S94iZ1gfOG8KUR1aTnclbNyGZlIfb5y5 7GNg+viY7Vq9/nALhmJvzn/2Xtnkj3E3AjhuY8zHxZjpcpYd2hBXAD8XQsIzPXk7 MWY+6MbMNAXwe/Cyg/XOJmGVM+8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLhDast86PjC9XJF/+Tmui9SOT9NMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lYmVmYmYwNC00MWJlLTQ4ZDctYWMwMC04YTNjNDk4Y2E5YWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ViZWZiZjA0 LTQxYmUtNDhkNy1hYzAwLThhM2M0OThjYTlhZS8wL0I4NDM2QUNCN0NFOEY4QzJG NTcyNDVGRkU0RTZCQTJGNTIzOTNGNEQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnmhgwDQQCAAIwBwMFACQGUkAwDQYJKoZIhvcNAQELBQADggEBAEKrUEhuPY5i N3soNxG1Xs74OB2+mbteqiFPIu2QbKu1RKbWeOA3pBH3byvNv3/yOAKn7MVb55t4 f4C5l6uMThNGbecy6merlPYgwsnj/48Hfm9PK47j6StJGpDPNGYcasVq1wTxhexU 8GqObSiju+hQHRENJ7yP4OtZhv6FDRPNR4vM6v/SMieoyBdJJLfreIqJ6OGdSl+e RTAVvK85sZhcXE3+Rmw+sebei3FunpD8mvnC9nZjvD/YG32Icpv+v8LH8Y96Qz47 OGnCknbIpFsWhNZZRL64m0WW4uUNBraeYiw4CuwmsCBoAXhqn6g+hxAFJ/wg71M6 zxtUI1j5KLA= -----END CERTIFICATE-----Generated at Wed May 8 15:17:46 2024 by rpki-client on console-fra.rpki-client.org