$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B126A372835801BBB738696C56DCF255D032D42F.cer File: B126A372835801BBB738696C56DCF255D032D42F.cer (raw, json) Hash identifier: kclwIBBTeN+YNRVCLhB5EGbK6PyXL0OiEPXuSZYed8c= Subject key identifier: B1:26:A3:72:83:58:01:BB:B7:38:69:6C:56:DC:F2:55:D0:32:D4:2F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0E8DE68B279836369875FAE0066C1DF1EC2F2A4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0/B126A372835801BBB738696C56DCF255D032D42F.mft caRepository: rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Apr 2024 13:06:05 +0000 Certificate not after: Fri 25 Apr 2025 13:11:05 +0000 Subordinate resources: IP: 103.166.34.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:8d:e6:8b:27:98:36:36:98:75:fa:e0:06:6c:1d:f1:ec:2f:2a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 13:06:05 2024 GMT Not After : Apr 25 13:11:05 2025 GMT Subject: CN=B126A372835801BBB738696C56DCF255D032D42F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:65:66:f7:8b:c3:b0:d0:1a:c8:39:ac:5b:ff: f1:86:33:fc:3a:11:19:43:cd:e6:c3:e2:fd:51:bd: 6e:f5:47:a6:d5:d1:c7:b2:d6:72:da:9e:3e:ce:5b: e4:4b:4e:03:47:af:46:31:c4:19:14:12:20:dd:43: 9e:ec:d9:fe:ed:eb:24:21:66:5a:e5:92:9b:31:9c: ba:0b:51:ae:9f:7f:e3:f5:c5:49:cc:db:97:0a:cc: d9:6f:d8:1d:da:f0:7f:43:85:10:db:4d:cd:10:04: e5:e5:45:70:e4:d7:fb:a3:a5:bd:46:19:3e:78:74: 7e:2a:cd:ce:26:b3:ed:4f:d2:dd:9b:81:e0:60:1d: 8b:65:84:53:b3:8f:0b:ca:22:04:4d:92:ac:70:44: da:ef:75:c0:40:e1:a3:8b:a9:0d:44:42:e5:d0:e7: 25:e9:8b:bd:68:3f:26:66:2f:b3:bc:2e:fc:5b:f0: bb:0c:f0:c4:35:21:8b:ba:35:a8:2c:7e:62:34:cf: e8:a4:d4:13:b5:04:fa:0d:23:9a:e0:a7:fc:a2:9a: 85:8a:4f:20:1e:ee:04:52:da:61:52:6e:bb:b2:4f: d5:94:3c:83:18:ae:45:fb:59:8a:5f:c3:b4:63:aa: 41:15:39:7d:25:02:e4:44:47:52:9c:fd:7f:c8:da: 62:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:26:A3:72:83:58:01:BB:B7:38:69:6C:56:DC:F2:55:D0:32:D4:2F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d044f918-9332-4257-b510-381c8590ff54/0/B126A372835801BBB738696C56DCF255D032D42F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.34.0/23 Signature Algorithm: sha256WithRSAEncryption 27:c7:8b:79:37:57:8e:50:5e:2e:db:2f:c1:3d:98:e9:81:e6: 21:95:96:c7:f9:d5:74:72:69:df:84:5c:29:f6:c4:fd:87:0d: e4:0f:0a:40:96:c3:99:96:73:03:46:c3:aa:47:d8:f7:50:e0: d0:c1:97:7e:45:88:e9:dd:46:36:0c:e7:64:e2:ef:41:4d:23: 6e:1c:31:a1:45:ea:fb:40:1a:b5:e1:fc:f1:e5:9b:da:f0:c9: 01:a8:36:3a:47:b4:5e:c5:62:50:4a:41:67:13:e5:d4:a4:70: 4e:fa:b3:12:9c:9c:26:e4:99:9c:f1:56:24:a3:7b:ee:ea:c6: 4d:a2:a6:b2:c7:33:a1:85:5b:da:1f:39:d7:d3:6a:6c:88:f8: 42:17:96:4a:22:54:12:83:2e:dc:91:f3:e3:90:e7:e7:67:57: 11:25:0b:dd:15:a5:ba:45:4f:3e:e7:6f:44:3b:bb:1e:f8:db: 33:a7:6c:47:1d:c0:f1:a6:f7:e7:63:53:af:75:e9:d3:32:ea: 0b:5b:08:a7:7e:b8:d0:b8:3f:6c:de:ae:29:5c:8f:d6:b7:dc: 48:d2:90:ec:4a:29:98:02:80:c8:1d:7c:fa:1d:8e:ae:c1:4f: 3a:60:bc:aa:35:92:05:a9:48:10:c1:ca:d2:03:19:8c:7b:12: 79:ab:87:1f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDo3miyeYNjaYdfrgBmwd8ewvKk8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNjEzMDYwNVoX DTI1MDQyNTEzMTEwNVowMzExMC8GA1UEAxMoQjEyNkEzNzI4MzU4MDFCQkI3Mzg2 OTZDNTZEQ0YyNTVEMDMyRDQyRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFlZveLw7DQGsg5rFv/8YYz/DoRGUPN5sPi/VG9bvVHptXRx7LWctqePs5b 5EtOA0evRjHEGRQSIN1DnuzZ/u3rJCFmWuWSmzGcugtRrp9/4/XFSczblwrM2W/Y Hdrwf0OFENtNzRAE5eVFcOTX+6OlvUYZPnh0firNziaz7U/S3ZuB4GAdi2WEU7OP C8oiBE2SrHBE2u91wEDho4upDURC5dDnJemLvWg/JmYvs7wu/FvwuwzwxDUhi7o1 qCx+YjTP6KTUE7UE+g0jmuCn/KKahYpPIB7uBFLaYVJuu7JP1ZQ8gxiuRftZil/D tGOqQRU5fSUC5ERHUpz9f8jaYoECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLEmo3KDWAG7tzhpbFbc8lXQMtQvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kMDQ0ZjkxOC05MzMyLTQyNTctYjUxMC0zODFjODU5MGZmNTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QwNDRmOTE4 LTkzMzItNDI1Ny1iNTEwLTM4MWM4NTkwZmY1NC8wL0IxMjZBMzcyODM1ODAxQkJC NzM4Njk2QzU2RENGMjU1RDAzMkQ0MkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpiIwDQYJKoZIhvcNAQELBQADggEBACfHi3k3V45QXi7bL8E9mOmB5iGVlsf5 1XRyad+EXCn2xP2HDeQPCkCWw5mWcwNGw6pH2PdQ4NDBl35FiOndRjYM52Ti70FN I24cMaFF6vtAGrXh/PHlm9rwyQGoNjpHtF7FYlBKQWcT5dSkcE76sxKcnCbkmZzx ViSje+7qxk2iprLHM6GFW9ofOdfTamyI+EIXlkoiVBKDLtyR8+OQ5+dnVxElC90V pbpFTz7nb0Q7ux742zOnbEcdwPGm9+djU6916dMy6gtbCKd+uNC4P2zerilcj9a3 3EjSkOxKKZgCgMgdfPodjq7BTzpgvKo1kgWpSBDBytIDGYx7Enmrhx8= -----END CERTIFICATE-----Generated at Wed May 8 18:12:19 2024 by rpki-client on console-fra.rpki-client.org