$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer File: FA86E23853549D2EF1D9F9C9222147A550E36A38.cer (raw, json) Hash identifier: BvyXQsLEe1ubFQqq2U6jtfkQP+lGIV6UOvDd3aTNuZ4= Subject key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5CF151B5176953986AB409121C96C4BB6BFBD66D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft caRepository: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 21 Nov 2023 11:47:25 +0000 Certificate not after: Tue 19 Nov 2024 11:52:25 +0000 Subordinate resources: IP: 103.55.28.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:f1:51:b5:17:69:53:98:6a:b4:09:12:1c:96:c4:bb:6b:fb:d6:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 21 11:47:25 2023 GMT Not After : Nov 19 11:52:25 2024 GMT Subject: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7a:91:34:8d:cd:6c:85:44:37:fc:d1:7a:f8: 8e:45:ac:56:1e:d4:26:49:47:cc:27:1c:de:06:95: b2:98:c1:b1:7e:80:5e:24:5c:1e:09:64:2b:4d:5b: 0b:ed:82:5a:16:1b:73:b3:59:e7:34:c2:a4:aa:0e: 3e:4c:b5:24:42:5d:11:3b:c0:24:1b:51:a5:ca:c2: 66:23:a8:ca:80:f6:ef:2a:57:c3:5f:2e:6c:73:ea: 49:6a:f4:a2:5d:ca:cd:08:21:bc:b3:e8:72:34:bc: 25:f2:3f:aa:f7:77:ac:20:1f:79:75:3d:8f:88:4a: 5a:a5:1a:bf:51:91:66:b3:82:a3:0e:4a:5e:0d:01: dc:4c:aa:f9:d9:e0:cf:4d:10:4d:19:ec:37:df:13: 8a:fa:ea:5f:d4:3c:44:94:70:13:1d:f6:16:d9:ee: 5b:36:f4:ee:61:65:95:51:f8:0a:a5:8b:da:62:9c: d4:61:b3:75:bd:3e:9d:5a:55:96:7f:f2:15:4a:57: 19:1f:e5:a6:91:85:94:9e:24:c4:cd:fd:1d:ff:a8: 51:b9:70:ba:05:a0:e5:52:cd:91:63:8d:05:84:60: 70:ba:ef:b1:b6:37:80:ab:51:7a:b2:85:46:fc:34: 09:36:0b:de:c5:93:63:aa:24:34:9d:0c:c3:6f:d3: cb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.28.0/23 Signature Algorithm: sha256WithRSAEncryption 75:05:a6:29:b9:16:b3:c8:89:93:9c:1d:cd:6b:11:4a:4d:be: ed:6f:2a:e2:46:f4:43:78:df:6a:d8:16:28:ce:a5:44:f6:31: 45:5d:3d:39:32:e7:c2:39:a8:0d:a8:bb:ba:fc:40:12:d9:26: d7:c7:9d:85:3a:d8:15:ee:62:eb:dd:d7:b2:7e:26:79:51:01: 56:ee:82:9b:4d:26:34:d6:f4:81:04:6a:82:c8:bc:09:47:48: 4d:36:d2:aa:90:cb:34:62:a2:00:a2:1d:7b:46:c2:4d:1d:8b: b8:7f:07:db:87:c6:8d:9b:96:96:74:cc:73:b6:ac:8b:8a:31: 7c:42:e8:74:30:f4:5a:04:63:1d:c4:97:3e:3d:55:d8:60:c5: b9:ef:3f:33:38:62:53:1b:94:3d:1f:cb:03:67:0b:07:14:bb: 15:eb:7d:ae:09:70:bd:5b:81:2e:92:fc:e1:ee:5a:36:8b:ed: 0c:46:83:22:bf:65:72:b8:08:65:03:50:ac:25:f9:03:65:30: 69:55:ef:7e:8e:1d:25:da:e2:23:0c:bb:43:e6:5e:b8:b4:26: a9:4a:c9:28:7e:f9:f7:8f:7d:70:35:da:6b:83:3a:4c:54:d9: 88:84:2d:16:d9:ca:4f:7a:9a:33:69:0a:09:d3:05:40:d2:78: c4:cb:89:59 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXPFRtRdpU5hqtAkSHJbEu2v71m0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMTExNDcyNVoX DTI0MTExOTExNTIyNVowMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlG OUM5MjIyMTQ3QTU1MEUzNkEzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALh6kTSNzWyFRDf80Xr4jkWsVh7UJklHzCcc3gaVspjBsX6AXiRcHglkK01b C+2CWhYbc7NZ5zTCpKoOPky1JEJdETvAJBtRpcrCZiOoyoD27ypXw18ubHPqSWr0 ol3KzQghvLPocjS8JfI/qvd3rCAfeXU9j4hKWqUav1GRZrOCow5KXg0B3Eyq+dng z00QTRnsN98TivrqX9Q8RJRwEx32FtnuWzb07mFllVH4CqWL2mKc1GGzdb0+nVpV ln/yFUpXGR/lppGFlJ4kxM39Hf+oUblwugWg5VLNkWONBYRgcLrvsbY3gKtRerKF Rvw0CTYL3sWTY6okNJ0Mw2/Ty1MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPqG4jhTVJ0u8dn5ySIhR6VQ42o4MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MDQ3OTNj LWMyMDktNDY5YS04ZTNjLWViM2Y1YTgzODYzZi8wL0ZBODZFMjM4NTM1NDlEMkVG MUQ5RjlDOTIyMjE0N0E1NTBFMzZBMzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnNxwwDQYJKoZIhvcNAQELBQADggEBAHUFpim5FrPIiZOcHc1rEUpNvu1vKuJG 9EN432rYFijOpUT2MUVdPTky58I5qA2ou7r8QBLZJtfHnYU62BXuYuvd17J+JnlR AVbugptNJjTW9IEEaoLIvAlHSE020qqQyzRiogCiHXtGwk0di7h/B9uHxo2blpZ0 zHO2rIuKMXxC6HQw9FoEYx3Elz49VdhgxbnvPzM4YlMblD0fywNnCwcUuxXrfa4J cL1bgS6S/OHuWjaL7QxGgyK/ZXK4CGUDUKwl+QNlMGlV736OHSXa4iMMu0PmXri0 JqlKySh++fePfXA12muDOkxU2YiELRbZyk96mjNpCgnTBUDSeMTLiVk= -----END CERTIFICATE-----Generated at Wed May 8 18:12:23 2024 by rpki-client on console-fra.rpki-client.org