$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer File: F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.cer (raw, json) Hash identifier: bmi6hea3IRuwWxHxgY3fv0MZctrNXZrnCLfywcfGR+Y= Subject key identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 40CDD6B3DA35D52A69CAA67FCFFA1CF6CD983136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft caRepository: rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 29 Oct 2023 15:08:35 +0000 Certificate not after: Sun 27 Oct 2024 15:13:35 +0000 Subordinate resources: IP: 103.80.92.0/22 IP: 110.35.80.0/21 IP: 119.110.112.0/20 IP: 202.59.160.0/20 IP: 2402:2fc0::/32 IP: 2404:c000::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cd:d6:b3:da:35:d5:2a:69:ca:a6:7f:cf:fa:1c:f6:cd:98:31:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 29 15:08:35 2023 GMT Not After : Oct 27 15:13:35 2024 GMT Subject: CN=F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:57:3b:09:77:d6:ce:63:d1:ab:38:3e:b6:c9: e1:c3:44:f8:7a:7f:4b:d3:79:f7:e7:ae:04:67:a0: 4e:6d:f6:dc:c2:9e:62:ba:c8:fa:7f:85:8c:5b:8a: e2:b6:b2:83:d4:99:41:c8:5d:4a:4c:d6:04:53:d5: d8:c6:40:82:45:41:6b:46:3b:c9:15:22:1c:c7:97: 41:51:73:99:aa:1f:5f:24:dd:dc:b3:6f:cc:97:d1: 3d:ad:fc:31:c1:37:76:df:80:16:a8:b4:ac:84:88: 38:9a:8f:c6:71:85:35:22:af:49:49:87:2f:7c:12: 46:3e:22:d5:6d:e1:34:0c:a0:fb:f4:3d:ba:d5:13: f8:f2:c4:3a:09:8e:b1:3c:5e:e6:54:c8:51:4d:d9: 26:51:97:35:84:ef:4a:7e:5d:88:58:aa:d2:29:ea: c1:cb:54:e6:ac:46:eb:d5:06:c9:2b:4a:7e:f7:21: ba:33:94:ef:2d:ea:a9:ed:89:c1:c1:e5:c8:f4:d1: 74:3c:11:6b:c2:61:f8:f7:3a:b6:88:1b:f0:91:05: 84:73:16:91:2c:33:b1:15:4a:ca:d7:9d:aa:a7:5f: 37:9a:74:a4:eb:d4:bd:38:7c:75:b1:df:42:7b:6e: 98:49:bd:19:1f:4d:7a:5a:f2:c3:0c:05:ae:79:90: 1a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F3:99:A1:A0:C1:8F:E8:DB:DA:23:CE:21:75:E0:CB:23:D6:7D:65:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/635f7a2f-725e-4399-869a-4b1fcf2c6a0c/0/F399A1A0C18FE8DBDA23CE2175E0CB23D67D6511.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.92.0/22 110.35.80.0/21 119.110.112.0/20 202.59.160.0/20 IPv6: 2402:2fc0::/32 2404:c000::/32 Signature Algorithm: sha256WithRSAEncryption 12:31:d4:16:4e:f4:d2:06:04:3f:43:f8:b6:67:e2:60:59:ff: 1a:50:02:28:c1:c7:b1:ae:c6:18:26:73:18:7e:ef:c3:4a:25: 9a:f9:57:65:73:e1:e5:9c:06:ef:62:c2:42:bb:d0:fa:a8:14: b2:6d:a4:92:b3:34:38:7e:ee:e9:66:42:f6:34:0f:5b:6b:28: e1:21:b9:af:1e:3b:3e:47:f7:52:a1:cb:ce:89:b9:6e:d1:4b: ae:fc:d9:06:1f:9b:d0:2c:b4:ce:f2:b7:cb:10:c0:ab:1b:8a: 06:e2:31:1f:b1:57:08:94:63:87:dc:13:5c:e2:b4:b5:a3:8c: 63:8a:82:b1:93:d4:73:28:ae:d9:43:39:a3:ef:ce:89:1b:08: cd:3f:18:a8:63:91:9b:20:be:fc:a4:b8:fb:df:59:47:d7:d8: 3c:7e:ce:11:26:be:94:d1:33:59:24:62:f0:74:bc:4d:95:ea: e8:b3:2e:f6:92:84:ac:c8:2d:7b:e8:0d:74:97:ef:51:44:66: 93:41:b6:79:84:33:07:ea:7d:bd:47:5b:34:46:62:73:cd:9e: 4a:33:08:d3:88:a6:40:08:d3:c7:20:e7:4c:87:65:26:86:00: d0:a4:92:73:46:ac:a2:53:82:1c:2e:ba:b9:90:8b:63:b6:8a: cd:2b:bf:24 -----BEGIN CERTIFICATE----- MIIF7TCCBNWgAwIBAgIUQM3Ws9o11SppyqZ/z/oc9s2YMTYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyOTE1MDgzNVoX DTI0MTAyNzE1MTMzNVowMzExMC8GA1UEAxMoRjM5OUExQTBDMThGRThEQkRBMjND RTIxNzVFMENCMjNENjdENjUxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1XOwl31s5j0as4PrbJ4cNE+Hp/S9N59+euBGegTm323MKeYrrI+n+FjFuK 4rayg9SZQchdSkzWBFPV2MZAgkVBa0Y7yRUiHMeXQVFzmaofXyTd3LNvzJfRPa38 McE3dt+AFqi0rISIOJqPxnGFNSKvSUmHL3wSRj4i1W3hNAyg+/Q9utUT+PLEOgmO sTxe5lTIUU3ZJlGXNYTvSn5diFiq0inqwctU5qxG69UGyStKfvchujOU7y3qqe2J wcHlyPTRdDwRa8Jh+Pc6togb8JEFhHMWkSwzsRVKytedqqdfN5p0pOvUvTh8dbHf QntumEm9GR9NelrywwwFrnmQGtkCAwEAAaOCAuAwggLcMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPOZoaDBj+jb2iPOIXXgyyPWfWURMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MzVmN2EyZi03MjVlLTQzOTktODY5YS00YjFmY2YyYzZhMGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYzNWY3YTJm LTcyNWUtNDM5OS04NjlhLTRiMWZjZjJjNmEwYy8wL0YzOTlBMUEwQzE4RkU4REJE QTIzQ0UyMTc1RTBDQjIzRDY3RDY1MTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRwYIKwYBBQUHAQcBAf8EODA2MB4EAgABMBgD BAJnUFwDBANuI1ADBAR3bnADBATKO6AwFAQCAAIwDgMFACQCL8ADBQAkBMAAMA0G CSqGSIb3DQEBCwUAA4IBAQASMdQWTvTSBgQ/Q/i2Z+JgWf8aUAIowcexrsYYJnMY fu/DSiWa+Vdlc+HlnAbvYsJCu9D6qBSybaSSszQ4fu7pZkL2NA9bayjhIbmvHjs+ R/dSocvOiblu0Uuu/NkGH5vQLLTO8rfLEMCrG4oG4jEfsVcIlGOH3BNc4rS1o4xj ioKxk9RzKK7ZQzmj786JGwjNPxioY5GbIL78pLj731lH19g8fs4RJr6U0TNZJGLw dLxNlerosy72koSsyC176A10l+9RRGaTQbZ5hDMH6n29R1s0RmJzzZ5KMwjTiKZA CNPHIOdMh2UmhgDQpJJzRqyiU4IcLrq5kItjtorNK78k -----END CERTIFICATE-----Generated at Wed May 8 18:12:22 2024 by rpki-client on console-fra.rpki-client.org