$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer (raw, json) Hash identifier: DrjbznLa0uDvZaqMyLZATFjZ84BX/J9snC4qlRjq4kg= Subject key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 25FDC2D4459B59DE57F649C6DE30DDD128FADE9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft caRepository: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 07:20:27 +0000 Certificate not after: Mon 29 Jul 2024 07:25:27 +0000 Subordinate resources: IP: 103.155.116.0/23 IP: 2406:6d40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:fd:c2:d4:45:9b:59:de:57:f6:49:c6:de:30:dd:d1:28:fa:de:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 07:20:27 2023 GMT Not After : Jul 29 07:25:27 2024 GMT Subject: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8b:1b:14:f9:a0:dc:f1:eb:1e:96:d9:76:70: b4:4b:cb:13:15:69:27:37:88:2b:c7:57:90:09:45: 90:72:0d:cd:7d:9a:f4:4b:51:7a:96:d7:63:62:ca: 37:1e:cb:45:eb:a5:01:9e:cd:59:85:cf:05:40:fa: 6d:66:b5:ee:84:21:21:ab:e3:64:65:d4:ea:2a:35: 3f:1a:b4:a1:c6:2e:52:73:ba:73:f6:a0:2f:5e:cc: 0d:bb:34:17:15:8d:23:e2:e4:26:ab:ea:55:b2:1f: 80:a6:c5:40:1d:92:ef:5c:5d:df:71:c0:b5:f7:1e: 4e:f2:11:0b:35:d9:41:df:ae:bb:0e:85:28:a9:db: f6:e7:40:7b:21:ca:77:8d:35:53:d0:76:48:9d:29: 2f:a9:74:95:82:8f:b0:fb:e3:5d:0e:c8:e3:99:a3: a4:0d:0a:73:c5:19:35:90:26:1b:dd:54:b8:b8:50: 05:aa:ac:c9:2a:f9:8e:fe:0b:ae:fa:b6:25:8c:86: 12:45:c7:68:2b:04:ac:48:68:63:76:ab:be:f8:c4: a1:16:87:71:5c:cc:c4:13:da:db:76:47:1f:75:e2: 40:53:68:66:be:d4:53:ff:cf:65:6c:ee:1b:62:2d: 03:dd:b3:87:8a:37:e7:41:63:1a:e1:ee:ab:ed:6a: 5e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.116.0/23 IPv6: 2406:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 5c:82:27:20:15:be:c2:65:a6:6e:36:8c:35:bd:2a:ed:5a:72: e0:09:66:98:4d:ab:c7:ad:c3:a6:12:bc:24:74:c7:17:00:e4: 3d:85:d2:1b:a1:9b:ad:61:3f:5e:65:4b:8d:d5:d2:81:ff:8c: 2d:ed:32:5d:32:55:6a:55:43:23:79:d4:5a:43:28:97:c7:78: 86:57:e0:9d:75:44:ad:ff:ff:cd:e1:38:c9:54:dd:f3:f3:14: ea:e4:75:1c:86:1f:a7:7b:f5:b9:33:2e:6a:e5:a2:e9:2f:c0: e8:b6:4a:87:c1:a1:10:d6:11:f8:b4:fd:b8:d9:3a:de:79:8d: c7:7b:9b:b6:76:15:43:86:de:ee:a4:72:e7:dd:b2:f4:bc:53: a2:59:b9:ba:11:5a:22:78:a6:64:02:3e:36:0d:a0:2b:36:33: 31:f9:ed:c4:eb:84:00:6b:d5:c6:3b:36:9f:88:cc:f1:d6:8b: 09:61:f5:61:71:84:a2:28:b7:a2:23:19:a3:a5:03:a4:ee:96: 3c:f3:f0:bb:af:92:a9:77:73:78:07:e2:1e:b6:e4:3b:f1:57: 7b:b5:69:ce:9b:e8:18:ee:d9:53:03:5a:10:ff:ec:2b:f8:0c: e6:cf:44:c6:83:8b:fd:c8:18:67:fd:b4:02:18:fb:15:6f:70: f9:07:2c:a0 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUJf3C1EWbWd5X9knG3jDd0Sj63p0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA3MjAyN1oX DTI0MDcyOTA3MjUyN1owMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURB ODdCOTBDQkQ5OEUyMDdGQTMzNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGLGxT5oNzx6x6W2XZwtEvLExVpJzeIK8dXkAlFkHINzX2a9EtRepbXY2LK Nx7LReulAZ7NWYXPBUD6bWa17oQhIavjZGXU6io1Pxq0ocYuUnO6c/agL17MDbs0 FxWNI+LkJqvqVbIfgKbFQB2S71xd33HAtfceTvIRCzXZQd+uuw6FKKnb9udAeyHK d401U9B2SJ0pL6l0lYKPsPvjXQ7I45mjpA0Kc8UZNZAmG91UuLhQBaqsySr5jv4L rvq2JYyGEkXHaCsErEhoY3arvvjEoRaHcVzMxBPa23ZHH3XiQFNoZr7UU//PZWzu G2ItA92zh4o350FjGuHuq+1qXnMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLyjGVO5LF/EUu2oe5DL2Y4gf6M3MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMmM0ODE1 LWIyZGEtNGMyMC1iYzMxLTUwM2FkZjQ5YjQ5MC8wL0JDQTMxOTUzQjkyQzVGQzQ1 MkVEQTg3QjkwQ0JEOThFMjA3RkEzMzcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnm3QwDQQCAAIwBwMFACQGbUAwDQYJKoZIhvcNAQELBQADggEBAFyCJyAVvsJl pm42jDW9Ku1acuAJZphNq8etw6YSvCR0xxcA5D2F0huhm61hP15lS43V0oH/jC3t Ml0yVWpVQyN51FpDKJfHeIZX4J11RK3//83hOMlU3fPzFOrkdRyGH6d79bkzLmrl oukvwOi2SofBoRDWEfi0/bjZOt55jcd7m7Z2FUOG3u6kcufdsvS8U6JZuboRWiJ4 pmQCPjYNoCs2MzH57cTrhABr1cY7Np+IzPHWiwlh9WFxhKIot6IjGaOlA6Tuljzz 8Luvkql3c3gH4h625DvxV3u1ac6b6Bju2VMDWhD/7Cv4DObPRMaDi/3IGGf9tAIY +xVvcPkHLKA= -----END CERTIFICATE-----Generated at Wed May 8 04:38:00 2024 by rpki-client on console-fra.rpki-client.org