$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.cer File: B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.cer (raw, json) Hash identifier: I249gfTzZpzJpNkqJYhJ5pH0ycc0J+xtkQ8upnVWlFI= Subject key identifier: B1:0F:CC:E0:27:20:E9:64:D2:93:42:E0:F3:BD:FC:67:9A:4D:7B:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A4279EBF67EEDC011176727D25C55F808D3E1C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 30 Jan 2024 00:18:01 +0000 Certificate not after: Tue 28 Jan 2025 00:23:01 +0000 Subordinate resources: IP: 103.147.245.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:42:79:eb:f6:7e:ed:c0:11:17:67:27:d2:5c:55:f8:08:d3:e1:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 30 00:18:01 2024 GMT Not After : Jan 28 00:23:01 2025 GMT Subject: CN=B10FCCE02720E964D29342E0F3BDFC679A4D7BD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6f:1c:67:82:f3:42:87:96:3d:65:f7:6c:04: 7f:31:1a:75:2c:d0:34:81:7d:bb:3c:98:7c:6f:6c: 8a:61:f0:c2:7a:b9:2b:d1:c2:11:35:23:ac:ae:52: bc:9e:26:ce:c6:92:2c:11:85:0d:20:a4:9b:8b:c4: 9b:b8:65:0c:01:94:2a:d2:22:2b:47:4e:fa:67:38: b4:41:89:8d:97:66:42:11:82:b7:b1:30:fe:a4:9d: 77:8c:98:d6:0e:1e:76:09:0a:4f:12:e5:96:2d:d3: 9b:13:db:d8:87:b4:33:c5:1e:c4:4b:fc:8a:a9:9e: 41:dd:f1:30:3b:7a:d1:8f:81:f5:73:fa:05:03:31: 7b:1a:d4:bf:ed:26:67:e7:f9:f8:46:58:ee:ac:b8: c7:c4:f7:03:10:78:aa:ce:49:23:91:8d:0e:a4:4d: 31:2f:df:7e:b2:13:6b:9d:0e:3e:84:80:6e:65:6b: 35:1e:68:df:a2:d0:6e:46:5a:a2:2c:88:9e:33:69: b5:3e:3b:ae:10:3c:15:3b:ab:1f:55:3d:aa:9d:4c: 4d:68:64:d6:51:b4:f3:7a:5f:dc:b0:7f:8a:73:59: 71:69:33:5f:dd:83:8e:88:b0:a4:94:04:6a:d8:d9: 56:40:7a:5f:e7:67:a1:33:e7:32:df:14:6a:48:17: 9e:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:0F:CC:E0:27:20:E9:64:D2:93:42:E0:F3:BD:FC:67:9A:4D:7B:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05593445-a25d-48e0-abc2-ab05e0650655/0/B10FCCE02720E964D29342E0F3BDFC679A4D7BD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.245.0/24 Signature Algorithm: sha256WithRSAEncryption 15:6c:89:87:fa:57:77:b5:d2:07:0d:1f:2d:01:e2:c2:f7:e5: 4a:87:13:6a:ed:98:0b:87:2a:89:79:56:e3:fc:06:24:df:76: 7a:3e:8f:19:8b:d5:2e:b5:d2:f6:65:d7:87:fc:ed:59:a3:e0: 5b:1e:dc:92:60:8d:9c:e4:2d:45:0d:17:d1:60:7d:2a:c1:5b: 58:c9:9a:ba:7c:84:43:4d:aa:08:fe:55:5d:66:21:23:c5:be: ee:72:70:82:3a:b8:65:85:ff:f9:4c:75:a3:c4:b3:17:f8:18: 91:ad:11:a1:37:81:a5:9f:04:63:0d:ac:b9:2f:e1:ba:17:b1: 51:3b:d3:05:59:20:99:b6:b1:58:db:ad:b1:d7:68:f1:c6:f5: 08:eb:5f:56:cc:b1:37:9a:03:76:c4:8f:17:74:02:0a:16:bc: 1f:a2:bc:8f:0f:bc:b5:f5:51:aa:6d:64:04:40:6c:0d:cc:5b: fe:96:d9:7d:ab:1b:80:8b:fd:8e:09:6b:21:32:74:ad:0a:44: 62:be:21:8c:c8:5e:f6:9e:45:42:5b:8f:1c:4c:7e:59:fe:06: 16:2b:33:6c:f4:89:79:d4:a4:a4:d6:c9:aa:5c:49:6b:6c:85: 3f:f8:fc:7d:4a:09:50:39:8f:21:aa:eb:ad:cd:fb:3f:a3:e8: 5f:c0:36:95 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGkJ56/Z+7cARF2cn0lxV+AjT4cMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEzMDAwMTgwMVoX DTI1MDEyODAwMjMwMVowMzExMC8GA1UEAxMoQjEwRkNDRTAyNzIwRTk2NEQyOTM0 MkUwRjNCREZDNjc5QTREN0JENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOdvHGeC80KHlj1l92wEfzEadSzQNIF9uzyYfG9simHwwnq5K9HCETUjrK5S vJ4mzsaSLBGFDSCkm4vEm7hlDAGUKtIiK0dO+mc4tEGJjZdmQhGCt7Ew/qSdd4yY 1g4edgkKTxLlli3TmxPb2Ie0M8UexEv8iqmeQd3xMDt60Y+B9XP6BQMxexrUv+0m Z+f5+EZY7qy4x8T3AxB4qs5JI5GNDqRNMS/ffrITa50OPoSAbmVrNR5o36LQbkZa oiyInjNptT47rhA8FTurH1U9qp1MTWhk1lG083pf3LB/inNZcWkzX92DjoiwpJQE atjZVkB6X+dnoTPnMt8UakgXnoUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLEPzOAnIOlk0pNC4PO9/GeaTXvWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTU5MzQ0NS1hMjVkLTQ4ZTAtYWJjMi1hYjA1ZTA2NTA2NTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NTkzNDQ1 LWEyNWQtNDhlMC1hYmMyLWFiMDVlMDY1MDY1NS8wL0IxMEZDQ0UwMjcyMEU5NjRE MjkzNDJFMEYzQkRGQzY3OUE0RDdCRDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnk/UwDQYJKoZIhvcNAQELBQADggEBABVsiYf6V3e10gcNHy0B4sL35UqHE2rt mAuHKol5VuP8BiTfdno+jxmL1S610vZl14f87Vmj4Fse3JJgjZzkLUUNF9FgfSrB W1jJmrp8hENNqgj+VV1mISPFvu5ycII6uGWF//lMdaPEsxf4GJGtEaE3gaWfBGMN rLkv4boXsVE70wVZIJm2sVjbrbHXaPHG9QjrX1bMsTeaA3bEjxd0AgoWvB+ivI8P vLX1UaptZARAbA3MW/6W2X2rG4CL/Y4JayEydK0KRGK+IYzIXvaeRUJbjxxMfln+ BhYrM2z0iXnUpKTWyapcSWtshT/4/H1KCVA5jyGq663N+z+j6F/ANpU= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org