$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B0B4D0A5FD4E58D80534977B027C8BC68222070F.cer File: B0B4D0A5FD4E58D80534977B027C8BC68222070F.cer (raw, json) Hash identifier: lr6M7f7/c5ExDrmyGsQPyh0hqHxK0bTSFGj7Fo4aWKg= Subject key identifier: B0:B4:D0:A5:FD:4E:58:D8:05:34:97:7B:02:7C:8B:C6:82:22:07:0F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D1BCA836F047D3FF681045902BCBC79449841F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/B0B4D0A5FD4E58D80534977B027C8BC68222070F.mft caRepository: rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Apr 2024 20:12:37 +0000 Certificate not after: Fri 25 Apr 2025 20:17:37 +0000 Subordinate resources: IP: 103.164.56.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:1b:ca:83:6f:04:7d:3f:f6:81:04:59:02:bc:bc:79:44:98:41:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 20:12:37 2024 GMT Not After : Apr 25 20:17:37 2025 GMT Subject: CN=B0B4D0A5FD4E58D80534977B027C8BC68222070F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:48:c7:5c:d6:c7:43:10:4e:e2:fd:27:ce: ba:73:00:08:7c:70:d6:0e:a5:06:3a:68:91:b2:4b: ce:8d:1f:59:83:e1:e9:77:e1:b9:5a:af:bf:67:07: 3c:33:37:f2:27:17:b9:34:4c:0c:67:5c:ba:52:bc: a5:b3:0b:86:6e:e7:97:55:50:bb:07:b3:bf:0f:dc: a5:0e:8a:5e:e6:ff:63:dd:55:6a:a9:46:ee:21:6d: 3b:ce:c6:95:bd:62:4a:61:1d:59:cd:49:d8:fd:ed: 0a:59:0d:7b:a4:2e:a7:2b:3f:23:1f:11:55:38:e4: fc:61:ba:d6:4e:3f:87:23:72:34:38:0b:53:1b:c1: 13:79:b6:04:0a:89:61:57:42:0d:c6:92:4f:12:14: 3a:83:fc:12:bb:ed:d2:b9:bc:38:ae:47:c0:46:28: cd:35:de:b1:a1:ce:d4:cd:ef:f2:d1:15:15:e7:b2: 45:96:1b:85:1a:d4:99:96:36:72:6f:54:3e:a2:0b: fb:57:cf:b9:dd:f3:ee:51:18:e3:ba:40:69:ac:f6: 51:51:79:37:72:99:3b:53:bd:99:96:68:86:bc:c6: d0:06:7d:38:c9:b2:2e:c5:24:c9:e9:a0:73:8f:d0: 83:11:6e:e9:2a:78:1b:cb:4f:a1:7c:73:b5:f8:83: b7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B0:B4:D0:A5:FD:4E:58:D8:05:34:97:7B:02:7C:8B:C6:82:22:07:0F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/57cd511f-afff-4fec-8724-d4119f891df2/0/B0B4D0A5FD4E58D80534977B027C8BC68222070F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.56.0/23 Signature Algorithm: sha256WithRSAEncryption 00:b1:41:7e:a5:47:b4:04:8c:55:f4:a7:52:12:bb:91:ca:49: 96:aa:3a:d8:15:1c:2c:ba:0a:8c:2c:a3:5c:ee:68:b6:30:6d: fa:b4:20:ac:28:7e:33:a5:ad:d0:23:c6:c3:bb:03:cd:6e:8f: 8f:39:1b:47:b8:23:56:c2:3e:3a:6d:a2:c3:ad:4e:e7:99:10: 1e:f9:55:a5:a7:f2:bd:01:1f:48:5d:0b:21:61:11:8d:25:c5: e2:b0:f6:b6:38:e3:e3:b7:32:8e:54:03:fd:84:b1:dc:3f:86: 5c:63:92:5b:b0:ab:fb:ce:2e:8e:5a:99:0c:d6:b9:d1:50:76: 4b:39:fe:18:1e:33:15:98:cc:17:b9:50:de:92:80:b8:cc:e3: 0c:2f:2c:21:c2:03:07:0b:fc:e6:cd:da:44:b0:63:a5:83:ef: cb:06:2d:fe:98:79:80:9a:6c:84:ab:1b:7e:10:e3:c1:fd:c4: 49:f6:33:95:76:db:bf:1a:db:8c:65:e9:33:1d:8a:42:c4:60: 2a:ab:f7:a7:c4:d3:19:aa:60:2f:86:4e:a1:16:ac:8c:3c:5e: 67:8f:db:7a:92:3d:18:55:cc:c9:82:76:38:d7:20:c3:cf:73: 4a:88:5c:d9:16:c6:01:88:09:e7:be:cb:eb:3c:11:56:aa:91: 8b:a3:4a:65 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPRvKg28EfT/2gQRZAry8eUSYQfYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNjIwMTIzN1oX DTI1MDQyNTIwMTczN1owMzExMC8GA1UEAxMoQjBCNEQwQTVGRDRFNThEODA1MzQ5 NzdCMDI3QzhCQzY4MjIyMDcwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMU/SMdc1sdDEE7i/SfOunMACHxw1g6lBjpokbJLzo0fWYPh6XfhuVqvv2cH PDM38icXuTRMDGdculK8pbMLhm7nl1VQuwezvw/cpQ6KXub/Y91VaqlG7iFtO87G lb1iSmEdWc1J2P3tClkNe6Qupys/Ix8RVTjk/GG61k4/hyNyNDgLUxvBE3m2BAqJ YVdCDcaSTxIUOoP8Ervt0rm8OK5HwEYozTXesaHO1M3v8tEVFeeyRZYbhRrUmZY2 cm9UPqIL+1fPud3z7lEY47pAaaz2UVF5N3KZO1O9mZZohrzG0AZ9OMmyLsUkyemg c4/QgxFu6Sp4G8tPoXxztfiDt8kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLC00KX9TljYBTSXewJ8i8aCIgcPMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81N2NkNTExZi1hZmZmLTRmZWMtODcyNC1kNDExOWY4OTFkZjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3Y2Q1MTFm LWFmZmYtNGZlYy04NzI0LWQ0MTE5Zjg5MWRmMi8wL0IwQjREMEE1RkQ0RTU4RDgw NTM0OTc3QjAyN0M4QkM2ODIyMjA3MEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpDgwDQYJKoZIhvcNAQELBQADggEBAACxQX6lR7QEjFX0p1ISu5HKSZaqOtgV HCy6Cowso1zuaLYwbfq0IKwofjOlrdAjxsO7A81uj485G0e4I1bCPjptosOtTueZ EB75VaWn8r0BH0hdCyFhEY0lxeKw9rY44+O3Mo5UA/2Esdw/hlxjkluwq/vOLo5a mQzWudFQdks5/hgeMxWYzBe5UN6SgLjM4wwvLCHCAwcL/ObN2kSwY6WD78sGLf6Y eYCabISrG34Q48H9xEn2M5V2278a24xl6TMdikLEYCqr96fE0xmqYC+GTqEWrIw8 XmeP23qSPRhVzMmCdjjXIMPPc0qIXNkWxgGICee+y+s8EVaqkYujSmU= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org