$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer File: BAC180E3FF326678277BE269EEBEC1DE3827226F.cer (raw, json) Hash identifier: XjKVz/N9jG9JABsB8NOhQKPeXvtxihaX5Hbmx6sWVww= Subject key identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21175405FD7E0BC0899CCC4F27C654364ABB6CE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft caRepository: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 05 Nov 2023 09:37:59 +0000 Certificate not after: Sun 03 Nov 2024 09:42:59 +0000 Subordinate resources: IP: 103.161.162.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:17:54:05:fd:7e:0b:c0:89:9c:cc:4f:27:c6:54:36:4a:bb:6c:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 5 09:37:59 2023 GMT Not After : Nov 3 09:42:59 2024 GMT Subject: CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:8b:ab:ac:e7:0e:75:04:18:0a:6d:1e:c2:e1: 93:da:69:07:5b:34:9e:e8:3b:23:67:84:d3:28:64: e0:e9:65:98:28:8c:f5:31:5f:b8:b6:f8:74:a3:b6: 60:2e:cc:3e:b5:90:8c:c5:f2:37:5c:bf:85:99:0d: 61:cc:36:7d:59:f3:e8:de:89:78:3a:14:02:19:33: 36:38:55:e2:97:da:24:4b:e0:d3:fe:26:89:d9:c2: 7b:71:f2:10:b7:a2:99:ad:90:85:06:70:62:28:63: 87:65:a0:64:cf:26:d3:2e:42:63:c1:2a:33:9f:6b: bc:8f:3c:63:00:0f:bb:43:37:b0:6a:02:d9:ed:81: 0f:1c:e0:ec:f1:22:d0:cc:09:c9:95:38:e8:89:39: cd:9f:c5:2d:8f:99:a0:ce:bf:20:47:0d:db:34:f7: d3:04:98:78:58:7c:b8:7c:18:94:cf:fb:21:a3:9a: 29:32:6f:3e:2e:f2:fc:45:40:20:f7:27:e1:9d:bb: 89:37:b1:e6:82:98:6f:0d:75:8a:58:f0:7e:fc:70: be:1d:9c:41:2d:b7:33:ef:d2:e3:64:b0:87:d6:c0: e7:b1:d6:56:cd:2f:69:c8:71:0f:c1:ff:01:00:e9: 0a:56:c1:a4:d0:04:8f:96:ad:d2:18:05:82:1d:92: 49:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.162.0/23 Signature Algorithm: sha256WithRSAEncryption 35:6c:2a:f8:91:00:5a:a3:06:9b:2e:54:f1:a1:b6:0a:16:07: 8b:35:81:ce:a5:ca:f9:64:c0:24:6a:6c:b1:8f:99:a9:4c:2e: ae:80:6a:6f:87:d2:bd:b1:6b:c2:4b:73:f1:ad:ea:19:40:c7: 68:ce:aa:12:7f:40:84:93:86:d6:ca:ac:88:88:63:e6:de:81: 44:3a:96:20:fe:d3:f0:ee:55:41:02:90:1f:22:a7:cd:bb:4b: 39:03:06:ba:3e:55:bf:41:74:a5:02:bf:30:96:c0:8e:16:dd: fc:ce:e4:c4:e9:be:3b:65:16:86:75:5a:fb:45:e9:84:47:d8: 3c:a3:8c:be:31:02:ba:ac:ef:72:3d:d0:3c:95:0e:3a:ea:0b: ec:af:3c:2b:86:37:13:5f:23:28:2c:62:90:9f:9f:8d:eb:64: a7:82:cf:5f:74:3c:ce:20:e4:e2:9b:68:18:1b:68:1f:12:0e: b3:7c:be:52:a3:e7:8e:0f:03:66:41:ba:aa:40:f4:2e:6e:9b: 21:2e:52:71:2b:4f:17:c7:7d:ac:73:1c:1e:0f:31:79:02:1e: 49:75:a3:8f:48:55:ce:7e:ba:db:0f:9b:75:ee:ad:d7:95:55: 3b:a9:21:f8:15:43:20:05:a0:ec:f3:55:45:5c:1f:a4:af:07: a8:df:5a:f6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIRdUBf1+C8CJnMxPJ8ZUNkq7bOEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNTA5Mzc1OVoX DTI0MTEwMzA5NDI1OVowMzExMC8GA1UEAxMoQkFDMTgwRTNGRjMyNjY3ODI3N0JF MjY5RUVCRUMxREUzODI3MjI2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJSLq6znDnUEGAptHsLhk9ppB1s0nug7I2eE0yhk4OllmCiM9TFfuLb4dKO2 YC7MPrWQjMXyN1y/hZkNYcw2fVnz6N6JeDoUAhkzNjhV4pfaJEvg0/4midnCe3Hy ELeima2QhQZwYihjh2WgZM8m0y5CY8EqM59rvI88YwAPu0M3sGoC2e2BDxzg7PEi 0MwJyZU46Ik5zZ/FLY+ZoM6/IEcN2zT30wSYeFh8uHwYlM/7IaOaKTJvPi7y/EVA IPcn4Z27iTex5oKYbw11iljwfvxwvh2cQS23M+/S42Swh9bA57HWVs0vachxD8H/ AQDpClbBpNAEj5at0hgFgh2SSYECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLrBgOP/MmZ4J3viae6+wd44JyJvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZDA5NGQzZS0wODljLTRjNjgtODBhMi01NmI1Y2JmYzEwM2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNl LTA4OWMtNGM2OC04MGEyLTU2YjVjYmZjMTAzZC8wL0JBQzE4MEUzRkYzMjY2Nzgy NzdCRTI2OUVFQkVDMURFMzgyNzIyNkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoaIwDQYJKoZIhvcNAQELBQADggEBADVsKviRAFqjBpsuVPGhtgoWB4s1gc6l yvlkwCRqbLGPmalMLq6Aam+H0r2xa8JLc/Gt6hlAx2jOqhJ/QISThtbKrIiIY+be gUQ6liD+0/DuVUECkB8ip827SzkDBro+Vb9BdKUCvzCWwI4W3fzO5MTpvjtlFoZ1 WvtF6YRH2DyjjL4xArqs73I90DyVDjrqC+yvPCuGNxNfIygsYpCfn43rZKeCz190 PM4g5OKbaBgbaB8SDrN8vlKj544PA2ZBuqpA9C5umyEuUnErTxfHfaxzHB4PMXkC Hkl1o49IVc5+utsPm3XurdeVVTupIfgVQyAFoOzzVUVcH6SvB6jfWvY= -----END CERTIFICATE-----Generated at Wed May 8 18:12:20 2024 by rpki-client on console-fra.rpki-client.org