$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer File: F389B5570A768F4811B6377427EE5A9710A3078F.cer (raw, json) Hash identifier: EiP5e9U/w7wS7cYtkaGqJJ2VhkEUl65RrFpUzK1LJjs= Subject key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32FDF04C7533106F48B41BD115AE0DE72AB08460 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 29 Jun 2023 15:51:26 +0000 Certificate not after: Thu 27 Jun 2024 15:56:26 +0000 Subordinate resources: IP: 202.93.24.0/21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:fd:f0:4c:75:33:10:6f:48:b4:1b:d1:15:ae:0d:e7:2a:b0:84:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 29 15:51:26 2023 GMT Not After : Jun 27 15:56:26 2024 GMT Subject: CN=F389B5570A768F4811B6377427EE5A9710A3078F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:02:3c:86:2f:3f:4b:e3:a4:27:f7:48:76:02: 7e:5a:e9:49:3d:24:cb:3e:aa:ee:a3:04:ef:56:7c: 65:a1:42:40:7a:87:06:b7:7c:f8:56:d6:ca:92:53: 3c:4b:10:81:00:36:95:81:17:84:d4:2f:8d:47:44: 57:a4:4c:0a:c3:85:90:53:20:3b:f4:2f:99:de:63: ca:24:5b:6e:ce:59:32:f2:be:5f:5c:cf:fc:a5:fe: 35:81:80:db:b5:31:b4:e8:92:6a:68:f3:6b:19:03: 51:7b:5f:98:63:d1:ac:19:68:1d:87:d2:c8:93:c9: 0e:10:6e:d6:dc:a5:42:94:8f:ea:2e:20:7b:dd:42: 13:ef:27:a0:01:ab:0b:b4:ef:22:e8:7a:84:12:2a: 50:cc:6c:a0:b0:31:bf:13:a1:50:e0:87:05:69:56: 83:cc:ec:07:10:4a:f9:ef:89:79:d5:2b:7b:62:36: 28:e2:d8:ab:56:c6:17:a5:81:56:19:e0:2d:19:06: 85:f4:b3:5e:ae:ad:a4:87:23:ff:5f:b5:1a:22:41: 15:a7:3d:bf:79:4e:f5:e1:2b:ed:d0:24:d4:40:1e: 37:4f:8a:64:0e:b8:f2:07:95:47:00:ff:8e:e8:4f: aa:fb:22:d2:9d:41:02:bf:42:91:a4:37:7d:aa:fe: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.24.0/21 Signature Algorithm: sha256WithRSAEncryption 35:88:64:df:22:ed:3e:60:8f:80:aa:51:f0:05:ed:08:30:2f: a0:e2:3b:ed:b9:66:6b:4a:cd:4e:2a:37:e5:9f:6e:4d:5b:11: 19:41:af:d5:3e:07:1d:70:85:bc:e3:6e:94:7b:fb:9e:76:7e: f6:41:4d:e3:83:3d:5c:79:fc:ce:34:25:be:b5:bd:ac:6e:5c: 66:0e:0f:5c:7d:3a:40:38:62:2d:fb:df:bf:37:0a:47:d9:b4: f7:f2:b3:3a:b3:c9:46:fc:af:5b:7c:f0:dc:3f:14:62:d3:91: 4c:87:a2:1f:25:35:39:c0:b6:49:a5:77:ff:f4:d0:da:48:8b: 85:fb:da:2c:a6:8f:87:32:58:e9:88:35:a0:58:6a:b1:a1:bc: 6e:91:47:82:6a:1a:76:31:86:68:39:c7:df:02:3f:9e:a3:73: 7b:47:fe:3d:16:2c:5d:90:12:0f:ea:5c:70:ab:67:14:a3:22: 68:bf:5c:d5:d0:4f:67:9a:18:7d:51:69:c5:04:ae:14:44:bc: 28:f2:f3:89:32:72:2e:1e:1f:8c:21:e7:bc:49:eb:48:fb:50: 2e:02:d8:04:d2:7c:5e:a7:0a:f6:59:c9:e4:33:75:4d:af:60: a7:a0:93:e4:65:76:21:3d:b1:c7:3a:52:e3:e6:d4:48:6a:3a: 23:33:49:17 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMv3wTHUzEG9ItBvRFa4N5yqwhGAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyOTE1NTEyNloX DTI0MDYyNzE1NTYyNlowMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYz Nzc0MjdFRTVBOTcxMEEzMDc4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYCPIYvP0vjpCf3SHYCflrpST0kyz6q7qME71Z8ZaFCQHqHBrd8+FbWypJT PEsQgQA2lYEXhNQvjUdEV6RMCsOFkFMgO/Qvmd5jyiRbbs5ZMvK+X1zP/KX+NYGA 27UxtOiSamjzaxkDUXtfmGPRrBloHYfSyJPJDhBu1tylQpSP6i4ge91CE+8noAGr C7TvIuh6hBIqUMxsoLAxvxOhUOCHBWlWg8zsBxBK+e+JedUre2I2KOLYq1bGF6WB VhngLRkGhfSzXq6tpIcj/1+1GiJBFac9v3lO9eEr7dAk1EAeN0+KZA648geVRwD/ juhPqvsi0p1BAr9CkaQ3far+2mECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPOJtVcKdo9IEbY3dCfuWpcQowePMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOGFiM2Uw LWNhNjgtNDJmNi05OGY2LTY1NGEyNTJhODY0OC8wL0YzODlCNTU3MEE3NjhGNDgx MUI2Mzc3NDI3RUU1QTk3MTBBMzA3OEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPKXRgwDQYJKoZIhvcNAQELBQADggEBADWIZN8i7T5gj4CqUfAF7QgwL6DiO+25 ZmtKzU4qN+Wfbk1bERlBr9U+Bx1whbzjbpR7+552fvZBTeODPVx5/M40Jb61vaxu XGYOD1x9OkA4Yi373783CkfZtPfyszqzyUb8r1t88Nw/FGLTkUyHoh8lNTnAtkml d//00NpIi4X72iymj4cyWOmINaBYarGhvG6RR4JqGnYxhmg5x98CP56jc3tH/j0W LF2QEg/qXHCrZxSjImi/XNXQT2eaGH1RacUErhREvCjy84kyci4eH4wh57xJ60j7 UC4C2ATSfF6nCvZZyeQzdU2vYKegk+RldiE9scc6UuPm1EhqOiMzSRc= -----END CERTIFICATE-----Generated at Wed May 8 10:06:57 2024 by rpki-client on console-ams.rpki-client.org