$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer File: BD809D8A065DB595DC069383736A1A9C4A96B267.cer (raw, json) Hash identifier: CIFkg3rF2uIbHyDKHOf5fWA3tAE57Xy9w01ENTSxLbI= Subject key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0982C153DC0FD410D8DB5C1CC4E8AED6C419AB11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft caRepository: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 06:25:59 +0000 Certificate not after: Mon 29 Jul 2024 06:30:59 +0000 Subordinate resources: IP: 45.127.132.0/22 IP: 103.56.204.0/22 IP: 2001:df5:1c00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:82:c1:53:dc:0f:d4:10:d8:db:5c:1c:c4:e8:ae:d6:c4:19:ab:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 06:25:59 2023 GMT Not After : Jul 29 06:30:59 2024 GMT Subject: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4d:c0:33:45:c6:1e:4e:ea:00:ce:61:72:e2: a0:37:e8:66:08:4d:27:1d:47:3d:e8:ce:2c:1c:69: a9:09:10:e7:b9:d5:8a:1f:83:47:d5:1d:1a:fc:ba: 28:e9:72:be:0a:df:3e:b9:83:d6:1f:d5:97:f8:e8: 59:e7:94:ca:16:22:2e:fb:19:17:49:98:d1:cf:64: 17:94:d9:15:a7:88:3e:37:77:97:e9:79:5d:7c:c6: 49:d5:5f:97:44:58:6e:d5:a8:d2:65:d7:76:70:01: b3:35:7b:13:d1:86:5c:69:56:3c:7f:2b:39:8b:cd: 55:48:b5:86:eb:bb:c1:d5:12:75:67:65:0c:ac:46: d1:bd:f8:1e:6b:96:0b:62:5b:2d:6f:e4:c0:72:d8: bc:16:3d:03:f8:e9:97:23:f5:33:96:22:d6:dd:3a: ed:2f:f8:69:1b:d3:88:59:8b:d1:19:f0:4f:1b:84: fe:ae:91:5c:bf:79:fd:20:42:af:a1:d2:bc:b8:fd: 19:e2:12:d1:2c:c3:65:36:78:93:77:45:de:3f:91: ec:11:5f:74:3a:f8:a4:78:b5:48:d3:87:e4:a7:23: 29:e9:e9:21:e8:7f:f1:53:87:08:9b:4d:14:02:14: 77:a7:6e:3c:4b:a3:f9:a7:99:3a:e6:3d:f7:1d:4c: 63:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.127.132.0/22 103.56.204.0/22 IPv6: 2001:df5:1c00::/48 Signature Algorithm: sha256WithRSAEncryption 07:72:36:d2:0e:0a:16:87:1d:0c:c8:d7:3c:e8:8f:00:ce:66: 9d:68:db:1a:3f:83:e4:29:49:77:70:73:00:e8:a5:9a:2f:a2: 2a:17:77:be:7f:70:26:ea:8c:c0:2d:78:35:c5:80:29:13:77: 42:bf:4d:81:3a:8e:1b:80:0e:28:d7:6c:00:59:4c:e9:cf:02: 6b:b8:df:36:95:4a:b9:08:61:4d:25:4d:7c:6a:93:47:2d:49: 91:aa:6f:34:5c:dd:c8:6a:7b:a5:32:00:15:02:c5:d7:8b:93: 5b:ce:a6:7f:42:7b:ea:e5:a4:21:6e:17:90:93:eb:4d:42:66: b6:f8:64:47:41:89:30:70:3c:dd:4f:41:68:8c:66:96:bd:ab: be:c9:a6:d8:21:29:18:49:93:dd:46:ed:9b:6d:a3:fd:12:63: f6:47:0c:43:90:6b:a9:cc:ee:05:b4:91:2a:f2:e3:e0:2d:5a: 3a:40:be:81:38:a7:4c:0c:e8:80:92:4e:24:95:b4:67:9f:3f: f6:49:c2:7d:4d:c2:26:8a:57:a5:69:e8:e0:3a:65:ab:d9:09: 7f:23:0f:c0:17:e4:fc:6c:80:d3:9e:22:5b:d9:fd:46:23:4e: 60:73:5e:ba:e8:2e:d8:78:ce:90:e5:29:47:a1:d1:27:fa:12: 3e:df:80:50 -----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIUCYLBU9wP1BDY21wcxOiu1sQZqxEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA2MjU1OVoX DTI0MDcyOTA2MzA1OVowMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5 MzgzNzM2QTFBOUM0QTk2QjI2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOhNwDNFxh5O6gDOYXLioDfoZghNJx1HPejOLBxpqQkQ57nVih+DR9UdGvy6 KOlyvgrfPrmD1h/Vl/joWeeUyhYiLvsZF0mY0c9kF5TZFaeIPjd3l+l5XXzGSdVf l0RYbtWo0mXXdnABszV7E9GGXGlWPH8rOYvNVUi1huu7wdUSdWdlDKxG0b34HmuW C2JbLW/kwHLYvBY9A/jplyP1M5Yi1t067S/4aRvTiFmL0RnwTxuE/q6RXL95/SBC r6HSvLj9GeIS0SzDZTZ4k3dF3j+R7BFfdDr4pHi1SNOH5KcjKenpIeh/8VOHCJtN FAIUd6duPEuj+aeZOuY99x1MY6ECAwEAAaOCAs8wggLLMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL2AnYoGXbWV3AaTg3NqGpxKlrJnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kM2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZjhmNTVj LTllMzUtNGNlMi04OTBmLTBkZTNlMjQwNDYxMS8wL0JEODA5RDhBMDY1REI1OTVE QzA2OTM4MzczNkExQTlDNEE5NkIyNjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwD BAItf4QDBAJnOMwwDwQCAAIwCQMHACABDfUcADANBgkqhkiG9w0BAQsFAAOCAQEA B3I20g4KFocdDMjXPOiPAM5mnWjbGj+D5ClJd3BzAOilmi+iKhd3vn9wJuqMwC14 NcWAKRN3Qr9NgTqOG4AOKNdsAFlM6c8Ca7jfNpVKuQhhTSVNfGqTRy1JkapvNFzd yGp7pTIAFQLF14uTW86mf0J76uWkIW4XkJPrTUJmtvhkR0GJMHA83U9BaIxmlr2r vsmm2CEpGEmT3Ubtm22j/RJj9kcMQ5BrqczuBbSRKvLj4C1aOkC+gTinTAzogJJO JJW0Z58/9knCfU3CJopXpWno4Dplq9kJfyMPwBfk/GyA054iW9n9RiNOYHNeuugu 2HjOkOUpR6HRJ/oSPt+AUA== -----END CERTIFICATE-----Generated at Wed May 8 21:02:26 2024 by rpki-client on console-fra.rpki-client.org