$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F21589FF449CC6950642FB6826CF5416005D740C.cer File: F21589FF449CC6950642FB6826CF5416005D740C.cer (raw, json) Hash identifier: n/ZELCSdbgaRhY/KQw4DLC0ZnBhEgb2jf6Ri9OS662I= Subject key identifier: F2:15:89:FF:44:9C:C6:95:06:42:FB:68:26:CF:54:16:00:5D:74:0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 227C5719C94438A2D54D2FA1DCBF943E22B719CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0/F21589FF449CC6950642FB6826CF5416005D740C.mft caRepository: rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 07 Nov 2023 04:17:15 +0000 Certificate not after: Tue 05 Nov 2024 04:22:15 +0000 Subordinate resources: IP: 115.84.175.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:7c:57:19:c9:44:38:a2:d5:4d:2f:a1:dc:bf:94:3e:22:b7:19:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 04:17:15 2023 GMT Not After : Nov 5 04:22:15 2024 GMT Subject: CN=F21589FF449CC6950642FB6826CF5416005D740C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:8b:03:21:bc:cb:c6:26:09:da:f5:5d:dd: 23:51:b6:69:8d:4f:e4:02:71:91:98:15:95:c7:7f: 28:02:99:98:d8:fc:06:e4:d1:56:64:d4:13:bf:10: 32:f2:73:c5:06:3f:4a:64:7a:bf:9c:2c:74:69:1a: 34:9a:e5:14:d2:53:44:b3:48:46:03:f3:51:2a:04: 5c:ad:3f:5e:d9:e1:26:47:5a:81:95:98:ec:b2:59: 25:03:db:36:b0:3c:09:24:c8:9a:74:b3:76:00:1d: 9d:98:8f:cd:36:b8:f1:1f:d0:06:6e:27:d0:77:33: 8c:24:64:21:71:28:2b:66:69:e7:67:fe:9b:97:73: b6:f0:da:c9:74:68:3c:14:ec:81:af:bc:87:74:92: 95:82:d4:d1:40:b2:50:e2:48:18:b9:3d:20:3c:89: c3:cd:4f:bb:40:53:83:71:92:30:f7:28:7e:aa:9e: 57:d1:65:ef:00:9f:4d:8a:52:2a:6e:56:b1:f0:5a: 89:6b:e8:d4:0a:bf:57:90:b3:a3:6d:c3:3a:05:19: e8:e9:d9:5f:0e:20:3f:ff:da:a6:72:ec:fb:2c:cb: 48:d8:9c:d3:d5:8c:23:28:68:8c:3b:16:5f:6f:21: e1:02:f1:28:13:c1:86:86:a9:30:3c:2b:25:8a:57: f9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F2:15:89:FF:44:9C:C6:95:06:42:FB:68:26:CF:54:16:00:5D:74:0C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0/F21589FF449CC6950642FB6826CF5416005D740C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.84.175.0/24 Signature Algorithm: sha256WithRSAEncryption 67:f5:a0:04:40:01:4f:2a:a1:02:e7:63:75:28:5a:8b:72:b9: c6:cd:d6:59:9f:76:27:e3:fe:13:95:91:24:1c:03:5c:04:2f: 15:10:03:8f:6f:6e:93:f7:24:38:de:36:4e:29:69:55:86:5d: a9:55:59:73:5c:98:bf:b0:58:c7:c5:6e:73:38:24:c8:f6:ec: 0e:6b:61:81:e7:9e:df:92:01:31:15:9c:87:40:e2:14:12:22: 64:b4:63:46:a9:01:9a:2d:fb:61:df:be:97:bf:0a:ae:c9:d7: af:7d:a3:7b:9f:59:a1:10:ac:7b:1b:88:9d:ee:b2:2c:c3:d0: 81:bf:3a:f1:ff:95:30:02:54:9f:97:64:46:81:4c:64:b8:8e: c2:c6:43:7a:b9:99:ab:24:9f:11:7c:be:68:dd:a9:0a:3b:e8: 5f:b0:f1:ec:53:fa:ed:1c:3e:6f:03:a2:34:84:c4:b6:b4:dd: 83:d8:ae:bc:6c:1d:01:5c:3c:7a:ff:06:30:11:a3:ff:b4:67: fb:13:6e:c1:10:90:6f:6c:fb:d0:ac:e0:91:f5:30:58:f5:c6: df:94:82:31:a2:5a:c1:bd:6b:05:fe:70:f0:f5:82:4e:9e:73: 5a:08:17:62:d2:e3:c5:52:42:8c:23:2d:f2:f8:b8:b9:b1:02: 7c:18:e8:b2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUInxXGclEOKLVTS+h3L+UPiK3GcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNzA0MTcxNVoX DTI0MTEwNTA0MjIxNVowMzExMC8GA1UEAxMoRjIxNTg5RkY0NDlDQzY5NTA2NDJG QjY4MjZDRjU0MTYwMDVENzQwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyyiwMhvMvGJgna9V3dI1G2aY1P5AJxkZgVlcd/KAKZmNj8BuTRVmTUE78Q MvJzxQY/SmR6v5wsdGkaNJrlFNJTRLNIRgPzUSoEXK0/XtnhJkdagZWY7LJZJQPb NrA8CSTImnSzdgAdnZiPzTa48R/QBm4n0HczjCRkIXEoK2Zp52f+m5dztvDayXRo PBTsga+8h3SSlYLU0UCyUOJIGLk9IDyJw81Pu0BTg3GSMPcofqqeV9Fl7wCfTYpS Km5WsfBaiWvo1Aq/V5Czo23DOgUZ6OnZXw4gP//apnLs+yzLSNic09WMIyhojDsW X28h4QLxKBPBhoapMDwrJYpX+d8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPIVif9EnMaVBkL7aCbPVBYAXXQMMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81MDZiMWJjNy1jNjVhLTRhMTEtOTI3My04MTRjNDYwYjZjYmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwNmIxYmM3 LWM2NWEtNGExMS05MjczLTgxNGM0NjBiNmNiYS8wL0YyMTU4OUZGNDQ5Q0M2OTUw NjQyRkI2ODI2Q0Y1NDE2MDA1RDc0MEMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABzVK8wDQYJKoZIhvcNAQELBQADggEBAGf1oARAAU8qoQLnY3UoWotyucbN1lmf difj/hOVkSQcA1wELxUQA49vbpP3JDjeNk4paVWGXalVWXNcmL+wWMfFbnM4JMj2 7A5rYYHnnt+SATEVnIdA4hQSImS0Y0apAZot+2Hfvpe/Cq7J1699o3ufWaEQrHsb iJ3usizD0IG/OvH/lTACVJ+XZEaBTGS4jsLGQ3q5masknxF8vmjdqQo76F+w8exT +u0cPm8DojSExLa03YPYrrxsHQFcPHr/BjARo/+0Z/sTbsEQkG9s+9Cs4JH1MFj1 xt+UgjGiWsG9awX+cPD1gk6ec1oIF2LS48VSQowjLfL4uLmxAnwY6LI= -----END CERTIFICATE-----Generated at Wed May 8 05:33:24 2024 by rpki-client on console-ams.rpki-client.org