$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.cer File: B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.cer (raw, json) Hash identifier: VIIk7R8eBLuHDjJiksBbgw4LgQqA+n7C1cRVc1dhcts= Subject key identifier: B2:07:7B:9B:AF:0B:F3:E5:FC:B8:45:13:B1:D7:44:5E:30:CE:65:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 263C19C91B6951F300827B5C4CC1D305C63BBD7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.mft caRepository: rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 04 Oct 2024 01:23:58 +0000 Certificate not after: Fri 03 Oct 2025 01:28:58 +0000 Subordinate resources: IP: 103.157.6.0/24 IP: 2001:df5:780::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:3c:19:c9:1b:69:51:f3:00:82:7b:5c:4c:c1:d3:05:c6:3b:bd:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 4 01:23:58 2024 GMT Not After : Oct 3 01:28:58 2025 GMT Subject: CN=B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d2:ca:20:37:ef:c6:78:c1:57:27:22:15:a5: 60:0f:e5:6c:22:1d:94:36:f5:5e:88:33:c1:7d:ec: 82:07:f6:9c:06:9d:ce:9d:4a:8d:ac:56:af:71:d5: 84:f3:74:c1:59:c3:cb:a2:91:79:b4:31:35:28:5d: a8:dc:8a:4d:3d:93:e3:b2:41:ae:64:33:f5:13:06: 5b:43:ff:0f:d3:e2:b5:8c:e3:65:45:b1:af:b8:7c: 78:c0:29:f1:9d:55:53:3b:58:08:10:80:5f:d3:9d: ed:4e:e8:64:6c:e6:54:7e:85:97:75:4d:ed:43:c7: 93:73:c6:69:78:a5:32:f5:88:a9:e9:58:b0:1b:56: dc:dc:5c:a7:4b:40:6c:de:6d:d9:3a:1d:a7:ef:3f: 91:fe:fc:8d:e6:6c:28:a3:38:d3:33:95:52:d6:a3: e1:7a:c9:7b:38:05:25:ec:89:cb:ed:c1:7d:1b:04: 17:35:33:b7:f8:ab:5a:43:02:b6:f6:46:ab:15:b5: c7:36:e5:98:53:bf:76:b4:df:3b:33:f8:5c:af:08: 50:b9:f6:4e:33:20:40:23:d9:3f:46:d5:68:e5:1c: 90:ab:91:04:ed:22:0b:e5:5d:93:aa:a9:af:44:9b: d2:e3:1f:58:8b:d9:fb:1e:2f:db:26:ed:55:46:83: f7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B2:07:7B:9B:AF:0B:F3:E5:FC:B8:45:13:B1:D7:44:5E:30:CE:65:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.6.0/24 IPv6: 2001:df5:780::/48 Signature Algorithm: sha256WithRSAEncryption 62:5f:32:75:c0:a2:53:a2:58:e1:46:fd:77:b7:03:4e:54:03: 0d:fe:bd:b1:f1:39:6d:8b:c4:82:44:60:29:1b:98:82:f4:69: bd:e1:c1:04:93:e5:58:5b:90:99:c6:51:2e:b1:ce:bf:28:f4: 79:b1:ca:9a:38:f1:ac:ee:d6:56:bd:37:0e:b2:37:67:a9:53: 47:b9:25:29:59:87:e7:1d:ee:54:92:7d:d3:89:4f:67:55:45: 62:16:ab:f9:a9:89:14:3f:20:e1:1a:84:b9:22:39:8f:d4:4a: d5:fc:7a:93:03:c5:fb:83:13:49:a1:3c:7b:c0:70:b1:bf:07: 19:d1:52:6d:c2:3b:cb:6a:64:27:1d:a5:db:72:ea:e1:11:b3: 67:b0:f2:1b:ae:f0:62:49:1e:ff:f4:98:11:22:bb:9c:64:71: 6d:f7:d1:e1:b9:c2:62:07:ac:37:ec:ac:03:9c:8b:5b:ba:2b: 69:88:16:60:4a:b4:5c:bb:e0:58:6b:31:07:35:78:70:4a:03: a6:90:15:53:27:f5:8c:de:e1:2f:ea:86:44:75:dc:3b:99:b2: ed:07:fd:2b:55:e4:ad:50:b9:cb:c4:12:04:89:b9:66:7f:47: 62:21:8f:19:b7:2c:fb:a5:08:ec:31:15:a2:6b:de:cc:29:d5: 3c:1b:7b:20 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUJjwZyRtpUfMAgntcTMHTBcY7vX4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwNDAxMjM1OFoX DTI1MTAwMzAxMjg1OFowMzExMC8GA1UEAxMoQjIwNzdCOUJBRjBCRjNFNUZDQjg0 NTEzQjFENzQ0NUUzMENFNjU4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPXSyiA378Z4wVcnIhWlYA/lbCIdlDb1XogzwX3sggf2nAadzp1KjaxWr3HV hPN0wVnDy6KRebQxNShdqNyKTT2T47JBrmQz9RMGW0P/D9PitYzjZUWxr7h8eMAp 8Z1VUztYCBCAX9Od7U7oZGzmVH6Fl3VN7UPHk3PGaXilMvWIqelYsBtW3Nxcp0tA bN5t2Todp+8/kf78jeZsKKM40zOVUtaj4XrJezgFJeyJy+3BfRsEFzUzt/irWkMC tvZGqxW1xzblmFO/drTfOzP4XK8IULn2TjMgQCPZP0bVaOUckKuRBO0iC+Vdk6qp r0Sb0uMfWIvZ+x4v2ybtVUaD90UCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLIHe5uvC/Pl/LhFE7HXRF4wzmWCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NWRkNGYxNi01NzBlLTRjOGMtYTk5Mi1kYjg5ZWEzYmFkMzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZGQ0ZjE2 LTU3MGUtNGM4Yy1hOTkyLWRiODllYTNiYWQzNi8wL0IyMDc3QjlCQUYwQkYzRTVG Q0I4NDUxM0IxRDc0NDVFMzBDRTY1ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnnQYwDwQCAAIwCQMHACABDfUHgDANBgkqhkiG9w0BAQsFAAOCAQEAYl8ydcCi U6JY4Ub9d7cDTlQDDf69sfE5bYvEgkRgKRuYgvRpveHBBJPlWFuQmcZRLrHOvyj0 ebHKmjjxrO7WVr03DrI3Z6lTR7klKVmH5x3uVJJ904lPZ1VFYhar+amJFD8g4RqE uSI5j9RK1fx6kwPF+4MTSaE8e8Bwsb8HGdFSbcI7y2pkJx2l23Lq4RGzZ7DyG67w Ykke//SYESK7nGRxbffR4bnCYgesN+ysA5yLW7oraYgWYEq0XLvgWGsxBzV4cEoD ppAVUyf1jN7hL+qGRHXcO5my7Qf9K1XkrVC5y8QSBIm5Zn9HYiGPGbcs+6UI7DEV omvezCnVPBt7IA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:28 2024 by rpki-client on console-fra.rpki-client.org