$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.cer File: B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.cer (raw, json) Hash identifier: IOSpUZUa23dgAzILmo8sYUPOPc4M/arOqEf49GZGeLE= Subject key identifier: B1:0F:CC:E0:27:20:E9:64:D2:93:42:E0:F3:BD:FC:67:9A:4D:7B:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C334A9DA4AE23BEB00C2263543EA18EB440F53C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 31 Dec 2024 05:20:11 +0000 Certificate not after: Tue 30 Dec 2025 05:25:11 +0000 Subordinate resources: IP: 103.147.245.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:33:4a:9d:a4:ae:23:be:b0:0c:22:63:54:3e:a1:8e:b4:40:f5:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 31 05:20:11 2024 GMT Not After : Dec 30 05:25:11 2025 GMT Subject: CN=B10FCCE02720E964D29342E0F3BDFC679A4D7BD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6f:1c:67:82:f3:42:87:96:3d:65:f7:6c:04: 7f:31:1a:75:2c:d0:34:81:7d:bb:3c:98:7c:6f:6c: 8a:61:f0:c2:7a:b9:2b:d1:c2:11:35:23:ac:ae:52: bc:9e:26:ce:c6:92:2c:11:85:0d:20:a4:9b:8b:c4: 9b:b8:65:0c:01:94:2a:d2:22:2b:47:4e:fa:67:38: b4:41:89:8d:97:66:42:11:82:b7:b1:30:fe:a4:9d: 77:8c:98:d6:0e:1e:76:09:0a:4f:12:e5:96:2d:d3: 9b:13:db:d8:87:b4:33:c5:1e:c4:4b:fc:8a:a9:9e: 41:dd:f1:30:3b:7a:d1:8f:81:f5:73:fa:05:03:31: 7b:1a:d4:bf:ed:26:67:e7:f9:f8:46:58:ee:ac:b8: c7:c4:f7:03:10:78:aa:ce:49:23:91:8d:0e:a4:4d: 31:2f:df:7e:b2:13:6b:9d:0e:3e:84:80:6e:65:6b: 35:1e:68:df:a2:d0:6e:46:5a:a2:2c:88:9e:33:69: b5:3e:3b:ae:10:3c:15:3b:ab:1f:55:3d:aa:9d:4c: 4d:68:64:d6:51:b4:f3:7a:5f:dc:b0:7f:8a:73:59: 71:69:33:5f:dd:83:8e:88:b0:a4:94:04:6a:d8:d9: 56:40:7a:5f:e7:67:a1:33:e7:32:df:14:6a:48:17: 9e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:0F:CC:E0:27:20:E9:64:D2:93:42:E0:F3:BD:FC:67:9A:4D:7B:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.245.0/24 Signature Algorithm: sha256WithRSAEncryption 00:0b:0a:69:38:12:aa:c2:d4:9e:6d:29:dd:4a:ce:1e:2f:a0: 83:ac:d6:ed:0b:40:82:2c:96:cf:9d:0f:3c:a7:07:0d:71:db: 7c:d9:78:c4:b6:32:fd:cf:ae:2f:c0:81:14:43:97:ea:b5:30: 5f:ed:f7:f2:1c:22:fd:64:aa:dc:9b:97:e9:ba:3a:85:a3:92: ef:03:c7:16:24:e6:d4:2a:a6:a0:a7:0f:0e:ca:be:0e:f1:f5: 93:5b:d1:88:a6:f9:c9:71:f0:d1:de:a9:5c:bb:fc:c1:79:53: eb:cc:af:89:ae:dd:7a:32:ca:35:fc:45:3a:b9:44:d8:e7:8f: 5d:ee:01:4f:5b:04:39:f1:7c:78:a6:9e:53:09:d7:60:7d:4b: f4:95:53:34:7b:d3:1f:dd:de:08:9a:37:68:8e:05:90:ed:1f: fa:65:3d:67:87:02:79:8a:a3:4d:cd:f7:46:37:a5:ef:60:8c: 18:94:0f:44:17:18:45:4a:31:df:f7:a9:a3:91:bd:13:a4:16: 28:5d:bb:3e:1c:01:3b:61:e9:83:b7:f2:7d:dd:37:53:93:ef: 85:ca:79:a7:ab:16:a4:81:7d:b9:24:bb:63:91:66:ac:18:8e: 13:3e:7e:e0:5f:94:dc:b9:62:c6:73:c5:41:79:d1:1f:c6:c4: 1a:2d:86:38 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHDNKnaSuI76wDCJjVD6hjrRA9TwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIzMTA1MjAxMVoX DTI1MTIzMDA1MjUxMVowMzExMC8GA1UEAxMoQjEwRkNDRTAyNzIwRTk2NEQyOTM0 MkUwRjNCREZDNjc5QTREN0JENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOdvHGeC80KHlj1l92wEfzEadSzQNIF9uzyYfG9simHwwnq5K9HCETUjrK5S vJ4mzsaSLBGFDSCkm4vEm7hlDAGUKtIiK0dO+mc4tEGJjZdmQhGCt7Ew/qSdd4yY 1g4edgkKTxLlli3TmxPb2Ie0M8UexEv8iqmeQd3xMDt60Y+B9XP6BQMxexrUv+0m Z+f5+EZY7qy4x8T3AxB4qs5JI5GNDqRNMS/ffrITa50OPoSAbmVrNR5o36LQbkZa oiyInjNptT47rhA8FTurH1U9qp1MTWhk1lG083pf3LB/inNZcWkzX92DjoiwpJQE atjZVkB6X+dnoTPnMt8UakgXnoUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLEPzOAnIOlk0pNC4PO9/GeaTXvWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTU5MzQ0NS1hMjVkLTQ4ZTAtYWJjMi1hYjA1ZTA2NTA2NTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NTkzNDQ1 LWEyNWQtNDhlMC1hYmMyLWFiMDVlMDY1MDY1NS8wL0IxMEZDQ0UwMjcyMEU5NjRE MjkzNDJFMEYzQkRGQzY3OUE0RDdCRDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnk/UwDQYJKoZIhvcNAQELBQADggEBAAALCmk4EqrC1J5tKd1Kzh4voIOs1u0L QIIsls+dDzynBw1x23zZeMS2Mv3Pri/AgRRDl+q1MF/t9/IcIv1kqtybl+m6OoWj ku8DxxYk5tQqpqCnDw7Kvg7x9ZNb0Yim+clx8NHeqVy7/MF5U+vMr4mu3XoyyjX8 RTq5RNjnj13uAU9bBDnxfHimnlMJ12B9S/SVUzR70x/d3giaN2iOBZDtH/plPWeH AnmKo03N90Y3pe9gjBiUD0QXGEVKMd/3qaORvROkFihduz4cATth6YO38n3dN1OT 74XKeaerFqSBfbkku2ORZqwYjhM+fuBflNy5YsZzxUF50R/GxBothjg= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:30 2025 by rpki-client