$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer File: B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer (raw, json) Hash identifier: Yhbw4U0bOeVvxul6hiJdgTyJ9ow4xF5ubPiC1X/a2MU= Subject key identifier: B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 52783C24835B6B48A58C8CBA7347F12F585CB5B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.mft caRepository: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jul 2024 03:38:51 +0000 Certificate not after: Tue 01 Jul 2025 03:43:51 +0000 Subordinate resources: IP: 27.0.196.0/22 IP: 103.229.160.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:78:3c:24:83:5b:6b:48:a5:8c:8c:ba:73:47:f1:2f:58:5c:b5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 03:38:51 2024 GMT Not After : Jul 1 03:43:51 2025 GMT Subject: CN=B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0d:f7:1f:e6:54:c1:f3:07:b0:5a:61:71:c6: 0d:b7:e4:d0:7b:2a:b4:f5:98:64:c2:3f:85:fb:34: af:a9:af:16:e0:46:b7:f2:39:5e:9f:6f:b9:af:eb: a4:9a:02:7b:90:74:c8:09:74:25:9c:14:a2:e5:3f: b5:a4:e9:9e:84:19:06:ab:5e:09:40:f4:d9:37:84: f7:69:0a:67:e2:23:e2:e7:7c:f9:52:83:f8:28:0d: c9:62:45:44:52:73:c4:6e:d0:0f:1b:a5:17:87:6f: 26:06:a3:0e:59:9f:bf:95:d5:c4:b3:b9:48:cf:9e: 82:62:a3:03:8e:8b:83:48:04:a1:db:14:87:12:20: 7a:ad:60:75:01:a5:87:1b:c2:45:33:16:29:cd:01: 24:8f:5a:e9:04:0d:51:8d:56:56:19:96:c2:0d:6d: a9:9c:17:ba:32:8b:72:26:bc:17:93:e4:7d:0f:f6: 08:b5:0a:fa:9a:ab:f3:03:d0:9c:8b:e3:ea:2c:bb: cd:8f:b6:51:03:88:b2:74:87:0f:14:77:e9:c0:c9: 29:b6:bb:28:57:fb:15:5a:5c:cb:11:cb:13:d3:e2: 53:6e:2d:c1:d8:b1:b0:91:5b:79:77:ac:94:2a:91: 3d:4a:a2:81:76:b4:75:e6:34:01:8c:af:33:da:ce: f0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.196.0/22 103.229.160.0/22 Signature Algorithm: sha256WithRSAEncryption 15:2d:cf:c9:a0:c0:b5:bb:ac:82:40:71:5d:ca:e5:95:99:2a: 02:f8:95:1b:6f:e4:19:ee:54:ae:a3:57:e6:af:27:2b:19:8e: 89:5c:32:aa:b3:1c:5a:06:5b:6a:f9:0b:5c:8d:2d:ed:f1:11: 8c:90:20:15:78:98:82:f3:0e:1a:c8:3e:cb:2e:b2:69:43:e9: cf:28:fd:a6:cc:de:ec:94:1e:2c:4e:49:2e:99:0b:03:48:27: ec:f3:b8:bd:08:fe:42:9e:f7:06:fb:22:ba:59:69:65:8e:fb: 58:c6:58:04:91:82:96:d3:68:98:37:6a:2f:be:4f:cf:30:df: 3e:32:25:ba:ca:30:30:3b:59:3d:81:30:0f:04:3b:20:4e:db: aa:e2:46:48:b8:af:94:a7:5f:ff:42:1c:e3:16:33:9a:9e:1c: 0c:6f:81:6c:08:71:a7:3b:e2:26:ab:f3:6b:d6:b3:10:ac:cc: d3:c4:98:bc:c7:6e:d8:1e:50:52:92:01:1f:cd:86:8a:d2:ab: 6b:96:d9:d8:4a:bd:41:c8:09:c7:aa:f7:6a:0b:4d:8b:2c:4c: 7c:47:24:e2:21:52:de:d7:6e:1c:59:c7:58:9b:76:14:62:72: 45:c6:ab:af:99:24:29:89:b1:af:79:94:ff:e9:d6:10:74:5c: 2a:e9:ff:d5 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUUng8JINba0iljIy6c0fxL1hctbQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjAzMzg1MVoX DTI1MDcwMTAzNDM1MVowMzExMC8GA1UEAxMoQjExQTZFQkE3QzBGMDIwOTMwNDcz RkI3RkFGQzJEOUM5N0U0OTgyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMN9x/mVMHzB7BaYXHGDbfk0HsqtPWYZMI/hfs0r6mvFuBGt/I5Xp9vua/r pJoCe5B0yAl0JZwUouU/taTpnoQZBqteCUD02TeE92kKZ+Ij4ud8+VKD+CgNyWJF RFJzxG7QDxulF4dvJgajDlmfv5XVxLO5SM+egmKjA46Lg0gEodsUhxIgeq1gdQGl hxvCRTMWKc0BJI9a6QQNUY1WVhmWwg1tqZwXujKLcia8F5PkfQ/2CLUK+pqr8wPQ nIvj6iy7zY+2UQOIsnSHDxR36cDJKba7KFf7FVpcyxHLE9PiU24twdixsJFbeXes lCqRPUqigXa0deY0AYyvM9rO8CUCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLEabrp8DwIJMEc/t/r8LZyX5JgtMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kOTNlYjhmNi1iYjZjLTRlYTctODZkZi1iMjQzYzUxNjRkMjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5M2ViOGY2 LWJiNmMtNGVhNy04NmRmLWIyNDNjNTE2NGQyMi8wL0IxMUE2RUJBN0MwRjAyMDkz MDQ3M0ZCN0ZBRkMyRDlDOTdFNDk4MkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAIbAMQDBAJn5aAwDQYJKoZIhvcNAQELBQADggEBABUtz8mgwLW7rIJAcV3K5ZWZ KgL4lRtv5BnuVK6jV+avJysZjolcMqqzHFoGW2r5C1yNLe3xEYyQIBV4mILzDhrI PssusmlD6c8o/abM3uyUHixOSS6ZCwNIJ+zzuL0I/kKe9wb7IrpZaWWO+1jGWASR gpbTaJg3ai++T88w3z4yJbrKMDA7WT2BMA8EOyBO26riRki4r5SnX/9CHOMWM5qe HAxvgWwIcac74iar82vWsxCszNPEmLzHbtgeUFKSAR/NhorSq2uW2dhKvUHICceq 92oLTYssTHxHJOIhUt7XbhxZx1ibdhRickXGq6+ZJCmJsa95lP/p1hB0XCrp/9U= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:50 2024 by rpki-client on console-ams.rpki-client.org