$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer (raw, json) Hash identifier: j40SGRcPomyj0bSo9k5VqBi9sWq9AYuZHb70z8eJLc8= Subject key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 750B8425407B7E055CCD40FE7638F506FBF79373 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft caRepository: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 10 Jul 2024 11:48:32 +0000 Certificate not after: Wed 09 Jul 2025 11:53:32 +0000 Subordinate resources: IP: 103.193.166.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:0b:84:25:40:7b:7e:05:5c:cd:40:fe:76:38:f5:06:fb:f7:93:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 10 11:48:32 2024 GMT Not After : Jul 9 11:53:32 2025 GMT Subject: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c8:65:15:d8:63:de:39:56:e4:a6:c1:11:c6: 39:4e:7a:f7:94:34:4f:d4:aa:84:f2:20:be:31:7e: ff:da:03:78:de:a7:c8:7e:73:f7:f3:39:f6:93:d9: a2:b7:c1:43:39:7c:aa:c9:99:c6:3d:c2:cc:b4:41: 71:4e:d4:e4:0d:5c:b1:5b:53:dd:dc:20:6d:55:0c: 25:78:a1:47:d1:bb:11:ba:db:1f:e5:69:bc:01:d6: f9:51:24:a6:1e:d8:2f:8e:39:96:e3:96:ce:92:75: 60:16:35:ed:32:9a:08:f4:b4:e8:f3:e0:2b:ee:87: 07:5c:00:f3:7b:c3:1c:6c:47:94:1a:b8:b0:47:fe: bc:ef:65:61:98:b5:2b:04:23:75:fc:90:cf:96:8e: e0:e7:8a:5a:be:b3:b9:8d:d0:d7:2c:1d:de:d5:14: a0:af:59:91:06:3f:72:b6:50:97:69:14:37:23:5f: 77:3d:5f:36:80:cb:06:79:54:de:e2:14:2e:c8:48: 7f:ba:04:ac:9a:5e:cd:82:b3:80:8c:b5:7a:9e:1f: 36:da:36:47:04:31:ed:60:c0:d7:7b:35:b8:f0:3a: 3c:4e:50:06:6c:99:b7:bc:24:b0:5d:29:03:20:fb: d5:ad:39:88:a3:dd:5d:78:c6:3a:e7:d1:85:64:ff: af:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.193.166.0/23 Signature Algorithm: sha256WithRSAEncryption 01:6e:d4:c3:ae:0b:8b:77:eb:89:81:05:24:74:e7:2b:72:c3: 16:3e:ee:a3:11:bb:1a:e2:88:7b:a0:b1:a5:f3:cb:a8:e5:21: 46:c8:c8:1f:f0:4e:c2:42:ef:3e:bd:a7:59:e8:8d:7f:d4:af: 11:06:fe:75:05:82:28:2f:61:77:21:8a:c9:c8:b1:51:7c:40: bb:69:e1:42:fd:1b:22:e5:1e:39:4d:67:d0:8b:64:52:7a:78: cb:f4:1b:4b:00:c9:a0:b4:f3:b0:43:0b:c7:64:fe:99:84:4c: 1f:5d:2a:2f:63:d4:69:81:39:1a:3f:10:91:00:f8:64:6f:2d: d6:ff:59:a2:ca:3c:a8:ba:32:0e:e5:d7:12:57:2d:da:13:8a: 76:8f:ee:ec:e1:6a:76:b1:7b:88:f2:77:fb:9b:24:80:b0:b8: 8a:67:9b:0b:eb:c5:91:6b:71:38:37:dd:13:83:82:78:05:4e: ab:02:9f:d3:16:06:f4:0a:aa:9c:97:b4:51:bd:9c:ad:88:51: 7c:73:57:a1:0c:bc:58:9c:5a:53:23:5c:22:c2:60:a1:c5:39: fb:41:23:3f:1c:72:e2:70:56:8a:b0:c3:da:22:1b:6b:9c:d5: c2:87:72:f7:1f:80:1a:ab:ad:c2:c6:67:97:b6:d5:5a:40:77: aa:a5:11:b8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdQuEJUB7fgVczUD+djj1Bvv3k3MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxMDExNDgzMloX DTI1MDcwOTExNTMzMlowMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZF OTA1N0E3RjE1MjJEQzlCODFBNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALvIZRXYY945VuSmwRHGOU5695Q0T9SqhPIgvjF+/9oDeN6nyH5z9/M59pPZ orfBQzl8qsmZxj3CzLRBcU7U5A1csVtT3dwgbVUMJXihR9G7EbrbH+VpvAHW+VEk ph7YL445luOWzpJ1YBY17TKaCPS06PPgK+6HB1wA83vDHGxHlBq4sEf+vO9lYZi1 KwQjdfyQz5aO4OeKWr6zuY3Q1ywd3tUUoK9ZkQY/crZQl2kUNyNfdz1fNoDLBnlU 3uIULshIf7oErJpezYKzgIy1ep4fNto2RwQx7WDA13s1uPA6PE5QBmyZt7wksF0p AyD71a05iKPdXXjGOufRhWT/r9UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCEL571RLxIv1j/pBXp/FSLcm4GnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I3MDM2OTc0 LTgxMzEtNDVhZi05NGNlLWY0OWI0ODExYzE3My8wLzIxMEJFN0JENTEyRjEyMkZE NjNGRTkwNTdBN0YxNTIyREM5QjgxQTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnwaYwDQYJKoZIhvcNAQELBQADggEBAAFu1MOuC4t364mBBSR05ytywxY+7qMR uxriiHugsaXzy6jlIUbIyB/wTsJC7z69p1nojX/UrxEG/nUFgigvYXchisnIsVF8 QLtp4UL9GyLlHjlNZ9CLZFJ6eMv0G0sAyaC087BDC8dk/pmETB9dKi9j1GmBORo/ EJEA+GRvLdb/WaLKPKi6Mg7l1xJXLdoTinaP7uzhanaxe4jyd/ubJICwuIpnmwvr xZFrcTg33RODgngFTqsCn9MWBvQKqpyXtFG9nK2IUXxzV6EMvFicWlMjXCLCYKHF OftBIz8ccuJwVoqww9oiG2uc1cKHcvcfgBqrrcLGZ5e21VpAd6qlEbg= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org