$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer File: C2E929DFB05F81B91880BC808154365AECAC27D2.cer (raw, json) Hash identifier: RlaqLDy8dxWTxVTJmB7kR6PO/BOXqGP/HzD8EDLbh1g= Subject key identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7014E959DBB054996CE5CD7AE48F87B7F3954CF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 21 Nov 2023 10:57:58 +0000 Certificate not after: Tue 19 Nov 2024 11:02:58 +0000 Subordinate resources: IP: 202.47.186.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:14:e9:59:db:b0:54:99:6c:e5:cd:7a:e4:8f:87:b7:f3:95:4c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 10:57:58 2023 GMT Not After : Nov 19 11:02:58 2024 GMT Subject: CN=C2E929DFB05F81B91880BC808154365AECAC27D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:30:1d:0a:2a:f6:f0:c2:98:ee:38:f2:ee: 0d:a6:6f:8f:a1:50:12:45:59:28:c6:77:fb:61:62: 05:a3:f6:ee:d0:c7:15:31:d5:fd:ec:a2:88:74:99: ae:84:d3:6b:6a:43:c2:2a:86:39:bc:95:db:ff:74: 34:30:2f:f6:a2:10:7c:e2:e3:39:3c:8f:6d:a0:9b: 36:02:76:fd:f5:99:43:ca:5d:ed:5a:a5:0e:83:a3: 8d:d8:a5:0f:d8:63:36:31:1f:0a:7c:52:b8:d9:ad: f2:1a:de:bb:81:d2:bd:33:03:bd:e8:4f:73:39:71: 8c:f1:5c:9f:8b:30:28:ef:aa:40:37:d3:d7:92:f2: 6b:19:84:bd:b7:9f:b1:b9:69:e1:e8:a2:31:fc:37: 7e:84:8e:fd:71:1a:b1:31:f9:f0:15:29:57:ed:74: de:95:fc:e1:a8:aa:7f:ba:3e:4f:a2:34:85:85:4f: 1d:97:df:49:db:67:3a:02:72:48:16:36:29:25:a9: 85:27:2b:06:6e:26:24:26:9f:1d:7a:29:12:23:8b: 76:49:29:a5:c9:c2:e3:2d:1e:aa:9b:a5:35:2f:1e: ad:b4:0f:34:b3:8b:c0:b3:c1:f9:c3:0f:9b:80:3a: 39:37:71:76:df:bf:d1:83:ff:fd:b8:d8:b0:6e:59: b1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.186.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:57:3b:71:a8:b1:2e:53:ab:7e:0a:d5:8a:73:81:14:9b:71: 50:ab:01:82:23:a7:93:f9:a4:49:61:a1:65:4e:23:ae:5d:0a: 19:e4:d8:23:4a:fc:62:e4:e3:00:a3:6d:3c:e4:2a:38:de:7c: 91:d7:21:6e:5c:72:53:db:2b:5c:d8:2e:fc:28:13:6c:d0:11: b0:36:1b:7e:d8:98:bc:da:d8:13:84:10:c4:df:41:fd:70:fe: 13:40:51:86:78:8e:29:2e:eb:e7:4a:79:56:55:02:22:d8:28: 14:a3:93:7f:07:cf:bf:de:e0:6c:ba:97:eb:0e:58:85:c7:45: 5c:92:66:d4:2f:7e:2f:a7:08:e6:56:4a:da:34:95:61:5b:fc: bb:65:09:5e:4e:53:e3:be:18:9d:aa:6f:04:f5:a4:81:cf:0f: 61:47:d6:00:7d:93:41:a1:0a:72:d6:2f:93:28:18:05:6c:12: c5:a8:f5:35:21:bd:a4:19:fb:d5:79:4f:4b:0e:60:c6:c3:dc: ac:14:f8:5a:f6:45:00:a5:70:e6:8f:f3:f4:c0:c0:65:83:5d: 86:1b:72:a1:cc:4f:83:b0:49:d7:e2:91:fa:36:09:dc:70:4c: 30:46:36:09:e5:4e:ce:a1:ad:ae:ee:a4:21:d4:a0:53:5d:d7: 96:88:3d:c7 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcBTpWduwVJls5c165I+Ht/OVTPgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMTEwNTc1OFoX DTI0MTExOTExMDI1OFowMzExMC8GA1UEAxMoQzJFOTI5REZCMDVGODFCOTE4ODBC QzgwODE1NDM2NUFFQ0FDMjdEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlPMB0KKvbwwpjuOPLuDaZvj6FQEkVZKMZ3+2FiBaP27tDHFTHV/eyiiHSZ roTTa2pDwiqGObyV2/90NDAv9qIQfOLjOTyPbaCbNgJ2/fWZQ8pd7VqlDoOjjdil D9hjNjEfCnxSuNmt8hreu4HSvTMDvehPczlxjPFcn4swKO+qQDfT15LyaxmEvbef sblp4eiiMfw3foSO/XEasTH58BUpV+103pX84aiqf7o+T6I0hYVPHZffSdtnOgJy SBY2KSWphScrBm4mJCafHXopEiOLdkkppcnC4y0eqpulNS8erbQPNLOLwLPB+cMP m4A6OTdxdt+/0YP//bjYsG5ZsWsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMLpKd+wX4G5GIC8gIFUNlrsrCfSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDZmZmFkMi0yMGJjLTQyNDYtODI5My00NDY2NmNlMWNmZTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNmZmYWQy LTIwYmMtNDI0Ni04MjkzLTQ0NjY2Y2UxY2ZlMC8wL0MyRTkyOURGQjA1RjgxQjkx ODgwQkM4MDgxNTQzNjVBRUNBQzI3RDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKL7owDQYJKoZIhvcNAQELBQADggEBAHtXO3GosS5Tq34K1YpzgRSbcVCrAYIj p5P5pElhoWVOI65dChnk2CNK/GLk4wCjbTzkKjjefJHXIW5cclPbK1zYLvwoE2zQ EbA2G37YmLza2BOEEMTfQf1w/hNAUYZ4jiku6+dKeVZVAiLYKBSjk38Hz7/e4Gy6 l+sOWIXHRVySZtQvfi+nCOZWSto0lWFb/LtlCV5OU+O+GJ2qbwT1pIHPD2FH1gB9 k0GhCnLWL5MoGAVsEsWo9TUhvaQZ+9V5T0sOYMbD3KwU+Fr2RQClcOaP8/TAwGWD XYYbcqHMT4OwSdfikfo2CdxwTDBGNgnlTs6hra7upCHUoFNd15aIPcc= -----END CERTIFICATE-----Generated at Wed May 8 21:02:27 2024 by rpki-client on console-fra.rpki-client.org