$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BA0937086D03009DB3422C9809596F09C430C76E.cer File: BA0937086D03009DB3422C9809596F09C430C76E.cer (raw, json) Hash identifier: NeR4fhEodk3Ui+tfLPHkYyrnBkWx1WTc1A+VQrDKeTE= Subject key identifier: BA:09:37:08:6D:03:00:9D:B3:42:2C:98:09:59:6F:09:C4:30:C7:6E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E6C27374B0421CF1848D7D35162A869433415F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/BA0937086D03009DB3422C9809596F09C430C76E.mft caRepository: rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 09 May 2024 09:43:25 +0000 Certificate not after: Thu 08 May 2025 09:48:25 +0000 Subordinate resources: IP: 103.169.222.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:6c:27:37:4b:04:21:cf:18:48:d7:d3:51:62:a8:69:43:34:15:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 9 09:43:25 2024 GMT Not After : May 8 09:48:25 2025 GMT Subject: CN=BA0937086D03009DB3422C9809596F09C430C76E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f9:06:51:67:70:7c:25:73:84:e1:cf:84:e1: 72:b9:29:46:93:99:23:37:f4:da:d2:9c:fe:a5:66: e1:0a:9d:2c:86:19:87:15:0c:53:68:2b:78:6c:7c: 6b:ca:76:bc:99:48:94:c0:e0:df:0f:c4:e1:e2:33: ca:b2:cd:bd:85:a9:51:a0:a4:d2:2c:a0:a1:5d:12: fa:f7:88:51:2e:4a:0b:de:b0:f3:7d:3e:1b:ba:81: 25:27:3e:10:70:24:cc:1a:37:fd:6c:4f:8f:0c:8f: 54:68:9a:c4:2b:3c:88:4d:e8:f9:0f:53:c8:77:95: 04:17:c6:4e:bd:ce:0e:2e:8c:aa:75:f8:93:31:ac: 69:19:30:dd:41:a7:57:9b:12:ca:b0:2f:c6:0c:74: 54:6b:17:4f:5b:7c:92:ca:f3:55:e8:7c:c5:5a:9b: 50:ee:de:f2:79:fc:c9:2c:cd:e7:34:05:14:36:d6: dd:e9:05:60:c0:5d:8c:a0:2b:71:ec:9f:0d:94:a7: 85:54:3b:a7:21:fd:6d:55:e3:c0:53:68:97:82:a0: 41:d3:c2:2c:56:59:2c:18:9b:43:91:8a:49:9b:51: 2b:ed:40:00:a2:56:c9:38:39:3e:c3:76:cd:24:80: e3:04:5e:4b:6f:2f:a2:89:94:fd:ae:e0:8e:a0:dc: 88:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:09:37:08:6D:03:00:9D:B3:42:2C:98:09:59:6F:09:C4:30:C7:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/BA0937086D03009DB3422C9809596F09C430C76E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.222.0/23 Signature Algorithm: sha256WithRSAEncryption 74:5e:7c:96:9c:56:3e:81:37:62:cb:30:9e:81:29:75:80:70: de:5f:2b:d6:68:e6:ae:c8:85:21:33:0d:4c:ef:91:70:83:16: 37:26:b6:d1:da:e3:91:25:6f:ad:a6:12:df:6b:f5:35:07:23: f2:4d:e1:9a:b7:10:5f:8b:c6:86:08:dd:c2:58:f5:d8:a5:ab: dd:48:97:79:1b:f6:e2:df:05:57:08:4a:dc:d8:b6:d3:38:c1: 6e:d8:dc:d1:2d:17:73:87:53:c6:cf:6d:8b:00:1c:13:02:70: 51:59:40:44:3e:c8:35:f0:ff:ae:4c:d5:6e:ec:fb:6a:65:2b: 86:84:96:a1:b4:05:e1:6c:30:c2:d9:61:4d:9d:a0:55:49:b4: 15:56:fc:78:a5:7a:ec:f5:86:99:93:bf:c0:12:8b:a7:cb:35: ac:5d:be:5d:b2:0e:9b:59:95:d0:46:17:f2:41:ab:04:0e:d7: cf:15:e7:5b:8a:bb:db:c2:84:a6:95:ed:f3:b0:7c:30:a9:06: 87:a5:79:1d:e6:12:1c:1c:fc:9d:f6:3a:24:f1:61:f1:a7:87: 83:b1:f8:28:af:7e:72:f8:d2:1a:09:84:c9:ec:58:a5:c7:c9: 6d:c3:b8:93:2e:3f:70:47:3c:e4:f1:69:b4:a6:8d:32:78:63: cd:d9:3a:76 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfmwnN0sEIc8YSNfTUWKoaUM0FfgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwOTA5NDMyNVoX DTI1MDUwODA5NDgyNVowMzExMC8GA1UEAxMoQkEwOTM3MDg2RDAzMDA5REIzNDIy Qzk4MDk1OTZGMDlDNDMwQzc2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/5BlFncHwlc4Thz4ThcrkpRpOZIzf02tKc/qVm4QqdLIYZhxUMU2greGx8 a8p2vJlIlMDg3w/E4eIzyrLNvYWpUaCk0iygoV0S+veIUS5KC96w830+G7qBJSc+ EHAkzBo3/WxPjwyPVGiaxCs8iE3o+Q9TyHeVBBfGTr3ODi6MqnX4kzGsaRkw3UGn V5sSyrAvxgx0VGsXT1t8ksrzVeh8xVqbUO7e8nn8ySzN5zQFFDbW3ekFYMBdjKAr ceyfDZSnhVQ7pyH9bVXjwFNol4KgQdPCLFZZLBibQ5GKSZtRK+1AAKJWyTg5PsN2 zSSA4wReS28voomU/a7gjqDciE8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLoJNwhtAwCds0IsmAlZbwnEMMduMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82OWZlYWQ5ZC1kN2E3LTQ4M2ItOGYxNy0zMWIzMjNkOTdkOGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZmVhZDlk LWQ3YTctNDgzYi04ZjE3LTMxYjMyM2Q5N2Q4Zi8wL0JBMDkzNzA4NkQwMzAwOURC MzQyMkM5ODA5NTk2RjA5QzQzMEM3NkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqd4wDQYJKoZIhvcNAQELBQADggEBAHRefJacVj6BN2LLMJ6BKXWAcN5fK9Zo 5q7IhSEzDUzvkXCDFjcmttHa45Elb62mEt9r9TUHI/JN4Zq3EF+LxoYI3cJY9dil q91Il3kb9uLfBVcIStzYttM4wW7Y3NEtF3OHU8bPbYsAHBMCcFFZQEQ+yDXw/65M 1W7s+2plK4aElqG0BeFsMMLZYU2doFVJtBVW/Hileuz1hpmTv8ASi6fLNaxdvl2y DptZldBGF/JBqwQO188V51uKu9vChKaV7fOwfDCpBoeleR3mEhwc/J32OiTxYfGn h4Ox+CivfnL40hoJhMnsWKXHyW3DuJMuP3BHPOTxabSmjTJ4Y83ZOnY= -----END CERTIFICATE-----Generated at Fri May 10 14:17:40 2024 by rpki-client on console-fra.rpki-client.org