$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B0AAB728B88975526C1741CCA8673CBC88F7697C.cer File: B0AAB728B88975526C1741CCA8673CBC88F7697C.cer (raw, json) Hash identifier: hQgDNMc3d55+VP/IAr6rDRr8cUmkK9NS9YcWX6fNh2k= Subject key identifier: B0:AA:B7:28:B8:89:75:52:6C:17:41:CC:A8:67:3C:BC:88:F7:69:7C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 69C98D91A9DAC478C644083D76F382FBE2B7C604 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0/B0AAB728B88975526C1741CCA8673CBC88F7697C.mft caRepository: rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 02 May 2024 09:09:46 +0000 Certificate not after: Thu 01 May 2025 09:14:46 +0000 Subordinate resources: IP: 103.170.100.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c9:8d:91:a9:da:c4:78:c6:44:08:3d:76:f3:82:fb:e2:b7:c6:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 2 09:09:46 2024 GMT Not After : May 1 09:14:46 2025 GMT Subject: CN=B0AAB728B88975526C1741CCA8673CBC88F7697C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:61:e0:04:0d:f7:92:a9:7f:aa:0e:d5:4e: 8c:e9:e4:04:a7:76:f5:69:e7:35:21:ad:2f:ad:a1: 6c:20:a2:22:83:9e:c5:4f:e5:b3:e8:e5:57:8a:92: d5:08:c5:99:dc:ee:b3:5c:68:f1:6c:8c:bc:04:5d: dd:a5:f9:ac:37:5f:10:c2:8d:91:c3:72:f5:cc:bc: c6:57:ee:91:31:17:b0:47:a0:b6:8d:ff:5c:fe:6d: aa:f1:50:b5:ce:d0:60:48:25:67:cc:e3:a4:d6:f9: 8b:ea:67:e3:57:94:8b:1b:79:57:c4:83:38:7a:78: 60:4a:a9:ad:aa:ef:cc:1a:8f:09:f8:b4:36:79:34: f9:40:97:bf:1d:07:b9:4a:54:ae:c6:fb:d9:35:1c: 1d:52:f9:48:45:69:50:96:4b:36:85:f2:e2:a8:b6: a4:79:d1:fe:0b:e4:91:2a:a5:85:af:79:2b:1f:78: 91:e9:93:8e:7e:71:e5:64:38:33:b8:4c:b8:bc:9a: ba:5f:6b:43:32:c8:70:fa:49:be:83:c5:9c:1e:f2: 6d:9c:5c:fc:fc:9a:31:9b:c2:f4:90:f5:01:15:25: 53:89:53:c8:80:d9:55:d5:43:f9:3d:d4:1b:75:89: ad:ee:78:6b:01:da:2b:83:06:67:7a:e0:9d:e6:27: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B0:AA:B7:28:B8:89:75:52:6C:17:41:CC:A8:67:3C:BC:88:F7:69:7C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0/B0AAB728B88975526C1741CCA8673CBC88F7697C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.100.0/23 Signature Algorithm: sha256WithRSAEncryption 58:64:a1:c8:06:ca:86:0a:5c:4b:4e:06:e8:fb:78:58:1c:49: 81:b9:bd:fa:d4:48:a8:6f:24:b8:10:64:08:58:6d:13:44:96: d7:76:47:b2:6e:d6:f0:83:b7:ea:9a:08:88:39:f1:2f:67:9a: 93:d8:44:63:12:38:80:b4:ef:e8:10:f9:4c:f0:0d:40:0a:24: 20:68:93:e4:df:f3:cd:a2:0f:e9:aa:80:77:d0:02:3d:5e:90: 7b:dc:8c:cb:27:9a:96:f3:28:4f:a9:b3:2e:aa:80:f8:e1:bf: 7f:2b:99:45:d1:bc:dc:9c:4c:94:d9:fd:ed:db:45:bf:0d:78: 00:35:66:db:d8:96:7e:30:36:2e:a5:8d:49:7d:ec:81:ef:91: e4:1c:bd:57:a9:3f:e3:ec:df:24:66:13:5b:5c:03:ab:fc:7b: 2b:f9:85:e0:67:8b:51:81:66:f1:f0:e4:ff:d6:99:67:0c:99: 55:92:d0:80:0b:25:f1:cb:45:6d:fe:31:91:42:3f:c2:6a:7b: ee:a5:f4:d4:b6:a0:d5:3a:36:64:9e:f1:5f:76:31:f4:dd:c5: 2b:a9:60:c4:20:00:4d:1c:8c:76:29:c7:68:2b:6b:5c:32:fc: c8:c7:cc:b6:38:f8:64:a4:77:99:ec:3d:3b:13:18:d6:36:1a: 34:ef:e3:a3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUacmNkanaxHjGRAg9dvOC++K3xgQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMjA5MDk0NloX DTI1MDUwMTA5MTQ0NlowMzExMC8GA1UEAxMoQjBBQUI3MjhCODg5NzU1MjZDMTc0 MUNDQTg2NzNDQkM4OEY3Njk3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKNYeAEDfeSqX+qDtVOjOnkBKd29WnnNSGtL62hbCCiIoOexU/ls+jlV4qS 1QjFmdzus1xo8WyMvARd3aX5rDdfEMKNkcNy9cy8xlfukTEXsEegto3/XP5tqvFQ tc7QYEglZ8zjpNb5i+pn41eUixt5V8SDOHp4YEqprarvzBqPCfi0Nnk0+UCXvx0H uUpUrsb72TUcHVL5SEVpUJZLNoXy4qi2pHnR/gvkkSqlha95Kx94kemTjn5x5WQ4 M7hMuLyaul9rQzLIcPpJvoPFnB7ybZxc/PyaMZvC9JD1ARUlU4lTyIDZVdVD+T3U G3WJre54awHaK4MGZ3rgneYnn0sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLCqtyi4iXVSbBdBzKhnPLyI92l8MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZTA1YTFjZS04NDlmLTQxN2MtYjY3My1mZGQzM2YwZDc0NDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlMDVhMWNl LTg0OWYtNDE3Yy1iNjczLWZkZDMzZjBkNzQ0Ny8wL0IwQUFCNzI4Qjg4OTc1NTI2 QzE3NDFDQ0E4NjczQ0JDODhGNzY5N0MubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqmQwDQYJKoZIhvcNAQELBQADggEBAFhkocgGyoYKXEtOBuj7eFgcSYG5vfrU SKhvJLgQZAhYbRNEltd2R7Ju1vCDt+qaCIg58S9nmpPYRGMSOIC07+gQ+UzwDUAK JCBok+Tf882iD+mqgHfQAj1ekHvcjMsnmpbzKE+psy6qgPjhv38rmUXRvNycTJTZ /e3bRb8NeAA1ZtvYln4wNi6ljUl97IHvkeQcvVepP+Ps3yRmE1tcA6v8eyv5heBn i1GBZvHw5P/WmWcMmVWS0IALJfHLRW3+MZFCP8Jqe+6l9NS2oNU6NmSe8V92MfTd xSupYMQgAE0cjHYpx2gra1wy/MjHzLY4+GSkd5nsPTsTGNY2GjTv46M= -----END CERTIFICATE-----Generated at Wed May 8 21:02:26 2024 by rpki-client on console-fra.rpki-client.org