$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CEEE0277998C75D36A98EC102AD67573C8C514E9.cer File: CEEE0277998C75D36A98EC102AD67573C8C514E9.cer (raw, json) Hash identifier: XUytBGC6YM8rsbXfcUk5w5vI46R0QPxCAMmxIOG6LuA= Subject key identifier: CE:EE:02:77:99:8C:75:D3:6A:98:EC:10:2A:D6:75:73:C8:C5:14:E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 690B85953D0742FCC3A48481DD6C073F4344B080 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0/CEEE0277998C75D36A98EC102AD67573C8C514E9.mft caRepository: rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 Nov 2023 12:20:35 +0000 Certificate not after: Fri 15 Nov 2024 12:25:35 +0000 Subordinate resources: IP: 202.122.8.0/21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0b:85:95:3d:07:42:fc:c3:a4:84:81:dd:6c:07:3f:43:44:b0:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 12:20:35 2023 GMT Not After : Nov 15 12:25:35 2024 GMT Subject: CN=CEEE0277998C75D36A98EC102AD67573C8C514E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:02:4a:e3:00:5d:bd:d2:84:87:49:7c:f6:70: 58:ec:e8:15:b1:fe:c3:c9:64:a7:d4:16:bb:fb:45: e3:bb:db:0c:dc:73:e1:63:0b:59:be:0e:48:16:59: ad:29:d2:cc:77:77:83:b3:8f:e4:6e:19:6c:bc:17: aa:ae:5d:b7:0a:5d:f7:43:3a:21:ca:e6:aa:47:72: c0:74:9a:b7:11:c9:96:0b:cd:92:da:e1:a2:c0:84: 01:be:7c:c9:c9:18:e2:f7:e9:7a:09:0c:2a:0b:63: b0:83:b1:66:66:af:eb:1b:d7:bf:ec:13:66:b8:76: d7:1b:1e:d7:54:40:61:f5:93:03:be:60:9a:2a:d5: 1f:79:c0:85:6b:3f:66:2b:09:c0:1f:ad:4a:73:ca: ef:28:c8:62:f9:43:a7:3c:9e:92:e0:50:69:af:92: bd:f5:45:44:73:cb:b0:ce:5f:fb:77:3b:88:6c:5b: 17:2c:2c:16:b4:5a:f7:50:97:72:af:99:e0:b3:fe: bd:2c:77:c7:66:12:92:f2:91:51:de:00:b3:34:9e: 48:4e:83:5d:38:e9:31:e4:76:a8:a3:6d:83:a3:d9: fd:dc:cc:4a:39:41:d5:59:0d:ac:8a:f7:c8:7d:d6: eb:be:4e:6a:b5:6e:b4:70:7d:20:e0:06:e3:7b:0b: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CE:EE:02:77:99:8C:75:D3:6A:98:EC:10:2A:D6:75:73:C8:C5:14:E9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0/CEEE0277998C75D36A98EC102AD67573C8C514E9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.122.8.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:76:32:ab:1d:5b:e4:2d:84:68:63:1f:87:52:ba:5f:21:29: 65:29:6e:b6:c9:b8:3c:6f:4e:90:46:3a:d7:13:92:7e:0c:f8: ff:6c:eb:91:b8:60:1c:c5:a0:ec:7b:8f:e3:7b:6d:31:92:f7: b8:75:86:65:72:62:df:71:a8:33:ef:d2:af:46:a9:15:11:6d: bf:1d:92:27:81:ce:cf:ed:fb:f3:8c:26:9e:13:c0:6b:23:b8: 1a:08:da:75:96:5d:02:22:40:37:b0:5c:4a:eb:e6:da:3f:d6: ff:1b:5e:33:3c:22:5d:5d:39:7c:22:33:f1:dd:cf:76:2d:09: 36:28:ed:99:88:9d:d3:90:90:32:59:7f:9e:79:a4:f0:96:70: 9f:5f:47:74:9a:3c:97:08:bc:b1:fd:8b:23:7f:d0:f0:37:0b: 93:85:11:b3:91:8b:df:09:b7:f1:3d:2e:e6:59:e9:61:5d:16: 4c:9f:90:1c:ba:d7:12:39:95:1d:1a:81:86:55:92:ff:1d:48: d3:b0:a6:da:68:04:7f:b2:b2:d2:eb:84:58:be:75:7c:9f:9d: b0:df:8e:b4:b4:8a:ed:2e:1e:90:bb:fd:a5:03:7e:ee:9d:4b: 91:d1:79:26:94:07:e9:de:0f:c4:e2:65:04:48:2d:8c:40:6b: 61:a3:56:b3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUaQuFlT0HQvzDpISB3WwHP0NEsIAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNzEyMjAzNVoX DTI0MTExNTEyMjUzNVowMzExMC8GA1UEAxMoQ0VFRTAyNzc5OThDNzVEMzZBOThF QzEwMkFENjc1NzNDOEM1MTRFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgCSuMAXb3ShIdJfPZwWOzoFbH+w8lkp9QWu/tF47vbDNxz4WMLWb4OSBZZ rSnSzHd3g7OP5G4ZbLwXqq5dtwpd90M6IcrmqkdywHSatxHJlgvNktrhosCEAb58 yckY4vfpegkMKgtjsIOxZmav6xvXv+wTZrh21xse11RAYfWTA75gmirVH3nAhWs/ ZisJwB+tSnPK7yjIYvlDpzyekuBQaa+SvfVFRHPLsM5f+3c7iGxbFywsFrRa91CX cq+Z4LP+vSx3x2YSkvKRUd4AszSeSE6DXTjpMeR2qKNtg6PZ/dzMSjlB1VkNrIr3 yH3W675OarVutHB9IOAG43sL6ckCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM7uAneZjHXTapjsECrWdXPIxRTpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NWEzYjEwNi04ZWYwLTQ1YmYtYjI3Ny1hMjc5NDdlNDU5MWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1YTNiMTA2 LThlZjAtNDViZi1iMjc3LWEyNzk0N2U0NTkxYi8wL0NFRUUwMjc3OTk4Qzc1RDM2 QTk4RUMxMDJBRDY3NTczQzhDNTE0RTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPKeggwDQYJKoZIhvcNAQELBQADggEBAE12MqsdW+QthGhjH4dSul8hKWUpbrbJ uDxvTpBGOtcTkn4M+P9s65G4YBzFoOx7j+N7bTGS97h1hmVyYt9xqDPv0q9GqRUR bb8dkieBzs/t+/OMJp4TwGsjuBoI2nWWXQIiQDewXErr5to/1v8bXjM8Il1dOXwi M/Hdz3YtCTYo7ZmIndOQkDJZf555pPCWcJ9fR3SaPJcIvLH9iyN/0PA3C5OFEbOR i98Jt/E9LuZZ6WFdFkyfkBy61xI5lR0agYZVkv8dSNOwptpoBH+ystLrhFi+dXyf nbDfjrS0iu0uHpC7/aUDfu6dS5HReSaUB+neD8TiZQRILYxAa2GjVrM= -----END CERTIFICATE-----Generated at Thu May 9 00:37:10 2024 by rpki-client on console-fra.rpki-client.org