$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer File: 3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.cer (raw, json) Hash identifier: H+kRlreFaE6vcBeU3FUgJXNCB6DdOqoXhaQ2fnHaWdw= Subject key identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3540AAE275754342F811659A20ABCD975E58424C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft caRepository: rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 12 Jul 2024 08:17:10 +0000 Certificate not after: Fri 11 Jul 2025 08:22:10 +0000 Subordinate resources: IP: 103.254.168.0/22 IP: 2400:f580::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:40:aa:e2:75:75:43:42:f8:11:65:9a:20:ab:cd:97:5e:58:42:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 12 08:17:10 2024 GMT Not After : Jul 11 08:22:10 2025 GMT Subject: CN=3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6a:c6:8b:69:33:d8:13:53:2e:93:6a:fa:90: c2:a2:1b:b3:e7:dd:64:13:11:0d:60:b4:72:97:98: 3f:c3:a0:40:f2:82:41:ad:4f:8c:10:c3:e6:65:f5: 51:00:2c:53:c1:6a:f1:2a:18:01:fa:55:ea:75:08: 04:4a:a7:39:e3:13:78:e1:7c:42:42:de:e4:ef:a2: c9:00:94:33:b4:39:0a:3c:ec:74:f4:b5:57:80:07: d0:95:44:d8:2e:99:43:5f:21:c9:c5:56:fa:31:f5: 90:b1:da:8b:10:7a:fe:50:85:5e:47:89:27:19:06: 54:11:a6:df:76:32:20:0d:e6:43:f8:12:70:f4:c9: 08:4c:36:39:2e:d7:f7:2b:b6:c5:7a:c6:16:61:84: e4:b4:37:df:88:eb:17:f0:48:04:67:b9:32:3f:c9: 16:f5:14:fb:6c:2b:2a:70:a2:db:a4:2e:de:e3:96: 3a:bf:cf:e4:09:9c:10:2c:27:65:cc:aa:6c:8a:5e: 4c:9e:2c:8c:97:07:84:91:61:0b:cb:02:cf:92:7f: b7:59:8a:1e:98:bb:70:c2:75:0e:04:1a:ec:98:50: 6c:5c:02:02:08:e6:91:fc:e0:a1:a2:9d:4b:eb:d4: f7:57:58:46:75:a8:26:6f:3a:3a:92:4f:5b:46:e8: 0b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3B:2B:A9:E8:D5:35:7A:BD:77:6B:6E:C4:CA:F7:C1:C5:9E:18:20:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2ae7d461-0e32-4e65-bb88-d72405b24451/0/3B2BA9E8D5357ABD776B6EC4CAF7C1C59E182074.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.168.0/22 IPv6: 2400:f580::/32 Signature Algorithm: sha256WithRSAEncryption 0c:17:3f:a3:d0:19:bc:1a:48:10:9e:26:2c:ed:01:bd:70:41: bb:b8:2a:a0:3e:29:d0:9f:a4:d4:c6:3f:28:5b:20:9b:69:c3: 2d:a5:35:c7:99:aa:74:55:9e:3a:9f:d3:32:db:62:81:f9:14: 5a:8d:7f:6c:04:29:82:f5:8e:f1:bc:c5:e7:8d:97:3d:eb:5f: 61:01:85:e6:7f:a4:0d:5e:0e:3d:30:a8:26:17:74:c3:96:0e: 50:06:03:51:e8:ad:42:e2:53:8d:19:d6:25:2c:ad:e2:07:9c: 9b:3f:95:79:b2:1f:51:c5:e3:35:20:40:da:52:30:fd:ec:08: cc:5f:25:9a:bd:22:7e:f6:b0:cd:5d:80:86:32:dc:7e:cb:f6: 5c:9c:70:d4:e4:22:b7:01:9a:72:09:d5:20:b4:a6:bf:99:b8: 32:fd:af:9c:5d:c4:0c:73:b1:7c:f9:db:91:b1:4b:d5:91:dd: 67:7b:d4:37:d5:54:f1:6b:f8:e9:b1:f0:20:d2:99:25:2b:4a: 89:ff:c3:c9:81:47:2c:20:1d:f0:47:6e:76:01:2a:54:d2:7e: da:fa:1b:97:d4:cb:65:96:f2:a7:7a:38:d5:d8:45:cc:40:4c: 41:a7:40:88:45:a0:1a:84:fc:02:57:c1:d8:82:99:17:82:3e: c5:16:d7:10 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUNUCq4nV1Q0L4EWWaIKvNl15YQkwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxMjA4MTcxMFoX DTI1MDcxMTA4MjIxMFowMzExMC8GA1UEAxMoM0IyQkE5RThENTM1N0FCRDc3NkI2 RUM0Q0FGN0MxQzU5RTE4MjA3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANVqxotpM9gTUy6TavqQwqIbs+fdZBMRDWC0cpeYP8OgQPKCQa1PjBDD5mX1 UQAsU8Fq8SoYAfpV6nUIBEqnOeMTeOF8QkLe5O+iyQCUM7Q5CjzsdPS1V4AH0JVE 2C6ZQ18hycVW+jH1kLHaixB6/lCFXkeJJxkGVBGm33YyIA3mQ/gScPTJCEw2OS7X 9yu2xXrGFmGE5LQ334jrF/BIBGe5Mj/JFvUU+2wrKnCi26Qu3uOWOr/P5AmcECwn ZcyqbIpeTJ4sjJcHhJFhC8sCz5J/t1mKHpi7cMJ1DgQa7JhQbFwCAgjmkfzgoaKd S+vU91dYRnWoJm86OpJPW0boC4sCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDsrqejVNXq9d2tuxMr3wcWeGCB0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yYWU3ZDQ2MS0wZTMyLTRlNjUtYmI4OC1kNzI0MDViMjQ0NTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJhZTdkNDYx LTBlMzItNGU2NS1iYjg4LWQ3MjQwNWIyNDQ1MS8wLzNCMkJBOUU4RDUzNTdBQkQ3 NzZCNkVDNENBRjdDMUM1OUUxODIwNzQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJn/qgwDQQCAAIwBwMFACQA9YAwDQYJKoZIhvcNAQELBQADggEBAAwXP6PQGbwa SBCeJiztAb1wQbu4KqA+KdCfpNTGPyhbIJtpwy2lNceZqnRVnjqf0zLbYoH5FFqN f2wEKYL1jvG8xeeNlz3rX2EBheZ/pA1eDj0wqCYXdMOWDlAGA1HorULiU40Z1iUs reIHnJs/lXmyH1HF4zUgQNpSMP3sCMxfJZq9In72sM1dgIYy3H7L9lyccNTkIrcB mnIJ1SC0pr+ZuDL9r5xdxAxzsXz525GxS9WR3Wd71DfVVPFr+Omx8CDSmSUrSon/ w8mBRywgHfBHbnYBKlTSftr6G5fUy2WW8qd6ONXYRcxATEGnQIhFoBqE/AJXwdiC mReCPsUW1xA= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:15 2024 by rpki-client on console-fra.rpki-client.org