$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer File: B16C4772F3D77045BBA997F94CEACA9E0DCC2865.cer (raw, json) Hash identifier: M59MPYakXF5w6QaR0Ve4/adCHHXSnc9PJVWNdnNfeFk= Subject key identifier: B1:6C:47:72:F3:D7:70:45:BB:A9:97:F9:4C:EA:CA:9E:0D:CC:28:65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5BBB6C00EBFA04493F7C2D4EA3E077EFF3E8FC92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 30 Oct 2024 06:22:07 +0000 Certificate not after: Wed 29 Oct 2025 06:27:07 +0000 Subordinate resources: IP: 180.131.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bb:6c:00:eb:fa:04:49:3f:7c:2d:4e:a3:e0:77:ef:f3:e8:fc:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 06:22:07 2024 GMT Not After : Oct 29 06:27:07 2025 GMT Subject: CN=B16C4772F3D77045BBA997F94CEACA9E0DCC2865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:28:ea:d7:78:fe:38:7c:66:ee:31:61:80: d0:49:9d:fa:86:34:0e:75:fc:d3:f1:47:81:38:cd: f8:e5:70:7c:cc:2e:b0:26:67:5c:11:c5:bd:61:01: 5e:5e:b7:ee:2c:cd:e7:5f:75:07:eb:84:84:ba:7f: 3b:ef:c6:36:35:93:b5:19:15:85:a8:84:5f:e7:60: c0:2e:a8:87:42:d4:12:8e:8d:11:a1:d5:01:8d:36: 51:24:11:ad:fe:da:db:0d:f0:0b:43:01:5c:bd:68: 20:93:f6:55:1e:e1:20:7e:68:06:fc:64:3d:ce:be: 66:e2:f0:c6:d9:fd:46:96:2a:8c:c8:c5:5b:93:90: 4d:1c:21:62:1e:9e:aa:bf:f3:66:e3:6e:7c:1e:de: be:eb:98:0e:05:7c:0b:00:19:ae:7d:ec:43:11:b6: b6:89:0f:97:fd:25:01:e1:82:38:d3:37:71:7c:8c: 57:c2:13:40:b5:e6:f2:1e:14:64:56:25:69:93:0f: fc:10:1c:ec:79:24:37:2a:80:c9:5a:87:01:c3:96: 36:60:4c:43:5a:29:90:94:20:96:44:ff:d4:8d:ac: 07:a3:b0:5c:9d:9c:77:bb:de:a1:67:f9:50:b8:3a: cc:6f:ea:8d:52:87:f9:c4:2c:81:35:f7:ff:0e:ba: 6e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:6C:47:72:F3:D7:70:45:BB:A9:97:F9:4C:EA:CA:9E:0D:CC:28:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c9941a4-28d2-47d1-91e7-acab59084462/0/B16C4772F3D77045BBA997F94CEACA9E0DCC2865.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.129.0/24 Signature Algorithm: sha256WithRSAEncryption 87:f0:f2:45:29:10:86:5b:9a:4c:51:0f:66:11:03:10:33:83: a3:db:08:9b:a1:d3:76:0c:9e:2b:38:04:16:e2:19:20:54:1b: fa:7a:59:9d:42:01:36:95:a7:7d:92:e6:f7:e1:62:98:69:3c: 17:6e:53:4f:54:14:4f:36:d9:2d:6e:cb:fa:a1:b8:8b:e0:ab: 66:5b:4c:4a:4f:87:bf:c4:b6:2c:7f:73:62:d2:89:01:5b:5e: 70:e3:8f:33:49:fa:ea:1c:3d:4a:1e:e1:90:73:b2:0f:51:c4: 99:0b:8a:e6:b8:63:bb:68:7a:7f:2f:c4:d8:a1:3c:91:8b:70: 61:7f:50:50:47:cb:01:c1:40:19:21:1c:92:20:17:30:83:6c: 37:0f:e5:f1:d2:28:59:01:bb:eb:11:4d:b6:78:0a:b2:d7:97: 90:df:8d:eb:6a:7c:8a:3f:4b:cb:10:1f:df:8f:eb:9b:af:d9: eb:21:9f:ce:95:43:cd:9f:f8:6f:ae:1f:c3:c7:58:1f:7a:c7: 57:10:2b:d7:a5:c1:29:28:ae:25:7e:2a:39:61:d3:91:b8:51: 6c:82:63:41:d4:42:fd:ad:c0:b7:07:ab:99:dd:13:b1:00:36: aa:66:a6:d7:88:72:73:2d:70:fd:bc:99:af:72:2b:f1:42:f8: 1d:8b:03:49 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUW7tsAOv6BEk/fC1Oo+B37/Po/JIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMDA2MjIwN1oX DTI1MTAyOTA2MjcwN1owMzExMC8GA1UEAxMoQjE2QzQ3NzJGM0Q3NzA0NUJCQTk5 N0Y5NENFQUNBOUUwRENDMjg2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCZKOrXeP44fGbuMWGA0Emd+oY0DnX80/FHgTjN+OVwfMwusCZnXBHFvWEB Xl637izN5191B+uEhLp/O+/GNjWTtRkVhaiEX+dgwC6oh0LUEo6NEaHVAY02USQR rf7a2w3wC0MBXL1oIJP2VR7hIH5oBvxkPc6+ZuLwxtn9RpYqjMjFW5OQTRwhYh6e qr/zZuNufB7evuuYDgV8CwAZrn3sQxG2tokPl/0lAeGCONM3cXyMV8ITQLXm8h4U ZFYlaZMP/BAc7HkkNyqAyVqHAcOWNmBMQ1opkJQglkT/1I2sB6OwXJ2cd7veoWf5 ULg6zG/qjVKH+cQsgTX3/w66bv8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLFsR3Lz13BFu6mX+Uzqyp4NzChlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzk5NDFhNC0yOGQyLTQ3ZDEtOTFlNy1hY2FiNTkwODQ0NjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOTk0MWE0 LTI4ZDItNDdkMS05MWU3LWFjYWI1OTA4NDQ2Mi8wL0IxNkM0NzcyRjNENzcwNDVC QkE5OTdGOTRDRUFDQTlFMERDQzI4NjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC0g4EwDQYJKoZIhvcNAQELBQADggEBAIfw8kUpEIZbmkxRD2YRAxAzg6PbCJuh 03YMnis4BBbiGSBUG/p6WZ1CATaVp32S5vfhYphpPBduU09UFE822S1uy/qhuIvg q2ZbTEpPh7/Etix/c2LSiQFbXnDjjzNJ+uocPUoe4ZBzsg9RxJkLiua4Y7toen8v xNihPJGLcGF/UFBHywHBQBkhHJIgFzCDbDcP5fHSKFkBu+sRTbZ4CrLXl5Dfjetq fIo/S8sQH9+P65uv2eshn86VQ82f+G+uH8PHWB96x1cQK9elwSkoriV+Kjlh05G4 UWyCY0HUQv2twLcHq5ndE7EANqpmpteIcnMtcP28ma9yK/FC+B2LA0k= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:31 2024 by rpki-client on console-ams.rpki-client.org