$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer File: F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer (raw, json) Hash identifier: xh1oRBriHcmHiRdDvkBnO9QnRpKZW/8ndspZ9GmckwM= Subject key identifier: F3:81:08:E7:3D:42:C7:F2:0A:64:8C:A9:19:3F:BF:B8:EF:E0:EC:27 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 088044BC14A21295B85C4F0408EB622A42241EB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.mft caRepository: rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 09 Nov 2023 07:04:18 +0000 Certificate not after: Thu 07 Nov 2024 07:09:18 +0000 Subordinate resources: IP: 103.97.231.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:80:44:bc:14:a2:12:95:b8:5c:4f:04:08:eb:62:2a:42:24:1e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 9 07:04:18 2023 GMT Not After : Nov 7 07:09:18 2024 GMT Subject: CN=F38108E73D42C7F20A648CA9193FBFB8EFE0EC27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6f:83:c6:04:65:56:f2:b8:95:f1:23:74:fd: e7:b4:0e:12:4e:e5:bb:6f:42:4b:48:5a:04:1d:dc: 34:0b:5b:08:08:6c:78:87:21:c1:c1:8e:38:ed:0f: 71:18:1c:56:69:d9:c4:11:a3:94:2b:20:fa:6c:e6: 30:0e:22:b6:60:44:15:44:c2:71:57:c0:e3:5a:35: 19:bb:8f:0d:7b:d0:da:60:14:8d:52:3a:04:25:d7: 4d:38:5c:ab:f6:4c:6d:82:0d:e3:7f:44:33:a4:6e: d5:f9:ea:af:45:d3:c4:a4:bf:1b:84:2a:cd:b3:2c: 11:13:bb:e1:e5:83:f1:a4:65:b7:4b:7a:8f:0e:37: 2d:5e:9c:f5:0e:09:47:3b:9a:8d:3b:7c:2b:92:2e: dc:76:f1:67:3e:b1:d2:1a:a4:8e:12:75:0f:ce:b8: 8a:0e:9b:6a:13:58:74:a0:5a:e6:91:06:fc:3d:55: 4e:8c:ad:d7:f4:17:fb:f5:b7:3b:b6:ab:8a:59:f4: 7b:de:f5:8e:41:9f:94:1e:74:87:44:15:e5:2c:56: e2:10:7c:9e:55:a6:b6:48:58:e3:d1:64:96:b9:dc: f6:a4:61:35:05:95:44:4d:8d:71:ee:02:f2:2d:a3: a4:6e:46:b7:cd:f5:23:4e:50:d4:79:d8:5c:92:f7: 0e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F3:81:08:E7:3D:42:C7:F2:0A:64:8C:A9:19:3F:BF:B8:EF:E0:EC:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.231.0/24 Signature Algorithm: sha256WithRSAEncryption 07:bd:4f:10:81:55:ef:25:c0:16:88:98:33:75:ec:c4:bf:f0: 2a:f2:ed:f1:e0:c3:27:df:a7:6f:12:68:8c:2f:39:ee:a1:84: f1:86:e8:17:b1:11:a3:03:09:d7:ff:81:52:56:e9:66:ce:00: 04:a4:e7:5d:ec:40:c8:25:2f:8e:f8:68:a4:bc:f4:f8:69:de: 98:cb:9f:94:ef:43:d3:2c:51:8e:f6:f5:87:29:e7:d0:a4:61: 19:b6:3c:71:74:48:c4:1d:47:9b:75:68:59:f0:48:97:5e:a7: dc:dc:8e:74:6f:ae:48:1e:a3:56:6a:92:c7:57:7c:a5:3a:e4: 04:59:de:c0:cc:61:24:ec:07:a8:cf:60:2d:eb:07:ad:73:53: 36:ce:fb:ce:b4:f0:d1:9d:f3:46:59:f9:53:93:7d:b5:b4:c5: 07:fa:b6:83:4c:bb:bb:49:a1:18:a4:bd:1c:3e:8f:e6:26:9f: 67:54:d6:07:c2:a0:02:d1:2a:d6:cf:89:6d:5b:d3:aa:7d:44: 57:9f:e8:61:dc:53:eb:3e:1f:0d:83:b2:af:31:44:a5:19:e1: 2a:b2:05:d3:8a:f1:f0:55:a8:98:df:35:78:0e:58:f2:8a:5a: 4f:83:c1:8d:f8:46:49:c7:24:75:63:da:04:b7:44:a8:f7:df: 4d:dc:3a:8f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCIBEvBSiEpW4XE8ECOtiKkIkHrkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwOTA3MDQxOFoX DTI0MTEwNzA3MDkxOFowMzExMC8GA1UEAxMoRjM4MTA4RTczRDQyQzdGMjBBNjQ4 Q0E5MTkzRkJGQjhFRkUwRUMyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9vg8YEZVbyuJXxI3T957QOEk7lu29CS0haBB3cNAtbCAhseIchwcGOOO0P cRgcVmnZxBGjlCsg+mzmMA4itmBEFUTCcVfA41o1GbuPDXvQ2mAUjVI6BCXXTThc q/ZMbYIN439EM6Ru1fnqr0XTxKS/G4QqzbMsERO74eWD8aRlt0t6jw43LV6c9Q4J RzuajTt8K5Iu3HbxZz6x0hqkjhJ1D864ig6bahNYdKBa5pEG/D1VToyt1/QX+/W3 O7ariln0e971jkGflB50h0QV5SxW4hB8nlWmtkhY49Fklrnc9qRhNQWVRE2Nce4C 8i2jpG5Gt831I05Q1HnYXJL3DvcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPOBCOc9QsfyCmSMqRk/v7jv4OwnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMjM5ZmRjYi1jNDE3LTRmM2YtYjFjOS03ZTM2OWNkZTIxZmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyMzlmZGNi LWM0MTctNGYzZi1iMWM5LTdlMzY5Y2RlMjFmZC8wL0YzODEwOEU3M0Q0MkM3RjIw QTY0OENBOTE5M0ZCRkI4RUZFMEVDMjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnYecwDQYJKoZIhvcNAQELBQADggEBAAe9TxCBVe8lwBaImDN17MS/8Cry7fHg wyffp28SaIwvOe6hhPGG6BexEaMDCdf/gVJW6WbOAASk513sQMglL474aKS89Php 3pjLn5TvQ9MsUY729Ycp59CkYRm2PHF0SMQdR5t1aFnwSJdep9zcjnRvrkgeo1Zq ksdXfKU65ARZ3sDMYSTsB6jPYC3rB61zUzbO+8608NGd80ZZ+VOTfbW0xQf6toNM u7tJoRikvRw+j+Ymn2dU1gfCoALRKtbPiW1b06p9RFef6GHcU+s+Hw2Dsq8xRKUZ 4SqyBdOK8fBVqJjfNXgOWPKKWk+DwY34RknHJHVj2gS3RKj3303cOo8= -----END CERTIFICATE-----Generated at Wed May 8 21:02:29 2024 by rpki-client on console-fra.rpki-client.org