$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer File: DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer (raw, json) Hash identifier: H894pYYI5W0bZU8YeaA0ZuGstNtu0QaOccAL/2Po0ZU= Subject key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A9951819C163F4AA85C638317481B5D71B82012 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft caRepository: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Jul 2023 16:54:21 +0000 Certificate not after: Fri 12 Jul 2024 16:59:21 +0000 Subordinate resources: IP: 103.118.174.0/23 IP: 2001:df1:1c40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:99:51:81:9c:16:3f:4a:a8:5c:63:83:17:48:1b:5d:71:b8:20:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 16:54:21 2023 GMT Not After : Jul 12 16:59:21 2024 GMT Subject: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:c3:fd:b3:ad:47:c4:9c:b5:3c:c6:f7:49: 32:4e:d4:09:93:67:62:c0:cf:6e:35:b6:a7:98:81: 0b:c0:12:f5:b2:a5:7f:ed:fe:a7:1d:b4:96:36:99: f2:83:8e:f7:dd:89:34:c5:cb:21:5e:cd:1a:bb:48: 95:28:91:c4:c9:de:e5:81:ef:81:f8:01:02:7d:da: e8:77:11:6b:93:d1:6b:20:98:0c:07:83:ab:43:85: 92:db:b3:59:71:d6:1b:fa:73:6b:65:24:94:8a:25: b0:f3:83:4e:50:52:b1:fc:c3:c4:e6:11:0c:a9:da: a9:69:c6:22:44:0c:10:d8:01:84:b2:76:b8:78:65: 65:7d:0e:40:56:dd:9d:0e:65:61:b8:41:5d:87:e4: 7c:eb:89:cd:75:4d:28:12:8a:ef:1e:8a:34:c9:a5: 8d:3e:2e:f9:1b:c5:a7:df:ce:fe:0f:6e:95:24:77: 84:8e:93:73:57:9a:8a:6d:1e:9a:cf:e6:26:f5:f5: 84:b2:c3:80:16:e6:fb:59:7c:1a:4f:ce:3c:ec:72: 75:55:79:91:57:12:70:ec:bc:64:9c:0b:ca:37:bf: 87:84:cc:9f:a4:53:f3:d6:95:1a:5f:9a:ec:33:51: 3e:e8:6b:e6:e9:06:43:a0:d2:7b:e5:dd:04:da:78: b3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.174.0/23 IPv6: 2001:df1:1c40::/48 Signature Algorithm: sha256WithRSAEncryption 35:94:bf:8b:31:6c:a6:f3:4b:e8:28:4e:4d:bf:38:65:ca:24: 0c:e2:e6:4c:d2:71:b0:71:4c:52:f3:66:96:5c:83:79:8b:e3: e2:be:af:73:7b:9e:31:ae:4c:46:2d:5e:1f:ba:d4:3c:dc:bd: 80:16:67:b8:8e:f1:3f:33:b1:db:aa:a2:28:e9:d4:4d:4e:0c: 6d:17:e2:5c:a3:c0:9b:e8:d2:c4:12:17:b8:c3:65:d7:07:8c: f5:ba:72:e1:a8:ea:8a:e5:1a:c5:32:4b:e7:91:71:02:ff:90: fd:f0:06:94:08:4c:3a:61:9d:1d:a5:c7:17:47:bd:3e:b0:37: c6:98:33:d6:79:bc:a9:5e:5c:0c:3d:19:51:c0:e8:7b:82:51: 08:07:18:b3:3c:ed:e2:57:40:91:ca:d6:9d:fa:6c:bc:b4:5b: 7f:28:9b:8a:83:2a:60:8e:0e:e0:eb:d4:36:5c:7e:48:78:48: b2:64:f5:e9:92:31:20:b1:16:55:ae:12:38:f6:b2:ed:35:a4: 00:6d:c2:70:1e:56:a8:2b:69:26:eb:b1:0d:3d:7e:12:6a:2b: d2:64:84:00:c5:7a:a3:90:8f:d4:06:53:2e:46:03:f6:90:8c: 84:1b:a2:98:ed:5e:62:29:2a:f3:d0:28:58:5a:8f:92:bf:d4: 1b:cc:7e:77 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUGplRgZwWP0qoXGODF0gbXXG4IBIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxNDE2NTQyMVoX DTI0MDcxMjE2NTkyMVowMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjEx M0ZFMTMzNTlDQzZCMDhFRkJGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2Lw/2zrUfEnLU8xvdJMk7UCZNnYsDPbjW2p5iBC8AS9bKlf+3+px20ljaZ 8oOO992JNMXLIV7NGrtIlSiRxMne5YHvgfgBAn3a6HcRa5PRayCYDAeDq0OFktuz WXHWG/pza2UklIolsPODTlBSsfzDxOYRDKnaqWnGIkQMENgBhLJ2uHhlZX0OQFbd nQ5lYbhBXYfkfOuJzXVNKBKK7x6KNMmljT4u+RvFp9/O/g9ulSR3hI6Tc1eaim0e ms/mJvX1hLLDgBbm+1l8Gk/OPOxydVV5kVcScOy8ZJwLyje/h4TMn6RT89aVGl+a 7DNRPuhr5ukGQ6DSe+XdBNp4s6ECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNuxjM9YkUUkr7ET/hM1nMawjvvzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yN2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2Ni LTZjZmItNGRlMC05ZGFhLWQyMjJiN2E4OTA3Mi8wL0RCQjE4Q0NGNTg5MTQ1MjRB RkIxMTNGRTEzMzU5Q0M2QjA4RUZCRjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFndq4wDwQCAAIwCQMHACABDfEcQDANBgkqhkiG9w0BAQsFAAOCAQEANZS/izFs pvNL6ChOTb84ZcokDOLmTNJxsHFMUvNmllyDeYvj4r6vc3ueMa5MRi1eH7rUPNy9 gBZnuI7xPzOx26qiKOnUTU4MbRfiXKPAm+jSxBIXuMNl1weM9bpy4ajqiuUaxTJL 55FxAv+Q/fAGlAhMOmGdHaXHF0e9PrA3xpgz1nm8qV5cDD0ZUcDoe4JRCAcYszzt 4ldAkcrWnfpsvLRbfyibioMqYI4O4OvUNlx+SHhIsmT16ZIxILEWVa4SOPay7TWk AG3CcB5WqCtpJuuxDT1+Emor0mSEAMV6o5CP1AZTLkYD9pCMhBuimO1eYikq89Ao WFqPkr/UG8x+dw== -----END CERTIFICATE-----Generated at Wed May 8 21:02:28 2024 by rpki-client on console-fra.rpki-client.org