$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.cer File: B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.cer (raw, json) Hash identifier: skR2e0ZWTOOMuyV4NLJUr5XL3JsCY041TlJmNp7a9mI= Subject key identifier: B2:07:7B:9B:AF:0B:F3:E5:FC:B8:45:13:B1:D7:44:5E:30:CE:65:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 245123CB1A176AFC3111367382DEF924697D7C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.mft caRepository: rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 02 Nov 2023 16:07:31 +0000 Certificate not after: Thu 31 Oct 2024 16:12:31 +0000 Subordinate resources: IP: 103.157.6.0/24 IP: 2001:df5:780::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:51:23:cb:1a:17:6a:fc:31:11:36:73:82:de:f9:24:69:7d:7c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 2 16:07:31 2023 GMT Not After : Oct 31 16:12:31 2024 GMT Subject: CN=B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d2:ca:20:37:ef:c6:78:c1:57:27:22:15:a5: 60:0f:e5:6c:22:1d:94:36:f5:5e:88:33:c1:7d:ec: 82:07:f6:9c:06:9d:ce:9d:4a:8d:ac:56:af:71:d5: 84:f3:74:c1:59:c3:cb:a2:91:79:b4:31:35:28:5d: a8:dc:8a:4d:3d:93:e3:b2:41:ae:64:33:f5:13:06: 5b:43:ff:0f:d3:e2:b5:8c:e3:65:45:b1:af:b8:7c: 78:c0:29:f1:9d:55:53:3b:58:08:10:80:5f:d3:9d: ed:4e:e8:64:6c:e6:54:7e:85:97:75:4d:ed:43:c7: 93:73:c6:69:78:a5:32:f5:88:a9:e9:58:b0:1b:56: dc:dc:5c:a7:4b:40:6c:de:6d:d9:3a:1d:a7:ef:3f: 91:fe:fc:8d:e6:6c:28:a3:38:d3:33:95:52:d6:a3: e1:7a:c9:7b:38:05:25:ec:89:cb:ed:c1:7d:1b:04: 17:35:33:b7:f8:ab:5a:43:02:b6:f6:46:ab:15:b5: c7:36:e5:98:53:bf:76:b4:df:3b:33:f8:5c:af:08: 50:b9:f6:4e:33:20:40:23:d9:3f:46:d5:68:e5:1c: 90:ab:91:04:ed:22:0b:e5:5d:93:aa:a9:af:44:9b: d2:e3:1f:58:8b:d9:fb:1e:2f:db:26:ed:55:46:83: f7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B2:07:7B:9B:AF:0B:F3:E5:FC:B8:45:13:B1:D7:44:5E:30:CE:65:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.6.0/24 IPv6: 2001:df5:780::/48 Signature Algorithm: sha256WithRSAEncryption 40:e4:e9:37:1a:43:93:d4:91:de:33:e9:5b:5f:bc:a0:3c:c6: e3:d1:fe:11:04:3d:08:53:ba:04:53:d4:8c:35:16:1b:48:63: 9f:2c:22:53:31:65:2c:e5:70:ea:f4:55:3c:f4:90:43:e8:a3: 49:8e:b5:94:0b:78:2c:54:f4:17:18:9a:75:bb:f6:bd:b8:fd: 0f:8c:12:51:d3:1b:65:57:f8:83:32:5a:a5:86:c1:d4:09:bd: 41:e0:43:9d:77:b2:b7:12:a2:e0:de:97:9d:27:b1:06:06:a2: 15:b9:9f:b1:df:50:53:83:bd:13:dc:ec:11:d9:17:45:c5:8a: 23:55:e7:e6:2c:86:cb:7d:42:26:b5:7e:da:47:96:2a:85:90: 81:78:39:8a:49:7f:2a:34:13:66:b4:0d:ff:4d:4f:a6:a0:e7: 30:2f:eb:6e:a3:e9:1b:0b:7b:9b:5a:64:bb:1b:b9:be:f4:a7: a0:9d:ff:6d:11:3c:6e:a5:25:a9:c4:4b:90:2b:aa:81:d3:c7: 67:b0:32:23:06:20:9e:86:d8:23:1b:50:69:4d:d9:ad:27:46: b3:0b:05:b8:82:c5:de:18:26:52:f9:97:c9:69:f0:ae:e0:1c: 0d:41:b2:4f:63:08:df:aa:f5:ea:33:6f:db:f6:15:6c:45:04: 14:c7:d0:b4 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUJFEjyxoXavwxETZzgt75JGl9fCIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwMjE2MDczMVoX DTI0MTAzMTE2MTIzMVowMzExMC8GA1UEAxMoQjIwNzdCOUJBRjBCRjNFNUZDQjg0 NTEzQjFENzQ0NUUzMENFNjU4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPXSyiA378Z4wVcnIhWlYA/lbCIdlDb1XogzwX3sggf2nAadzp1KjaxWr3HV hPN0wVnDy6KRebQxNShdqNyKTT2T47JBrmQz9RMGW0P/D9PitYzjZUWxr7h8eMAp 8Z1VUztYCBCAX9Od7U7oZGzmVH6Fl3VN7UPHk3PGaXilMvWIqelYsBtW3Nxcp0tA bN5t2Todp+8/kf78jeZsKKM40zOVUtaj4XrJezgFJeyJy+3BfRsEFzUzt/irWkMC tvZGqxW1xzblmFO/drTfOzP4XK8IULn2TjMgQCPZP0bVaOUckKuRBO0iC+Vdk6qp r0Sb0uMfWIvZ+x4v2ybtVUaD90UCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLIHe5uvC/Pl/LhFE7HXRF4wzmWCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NWRkNGYxNi01NzBlLTRjOGMtYTk5Mi1kYjg5ZWEzYmFkMzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZGQ0ZjE2 LTU3MGUtNGM4Yy1hOTkyLWRiODllYTNiYWQzNi8wL0IyMDc3QjlCQUYwQkYzRTVG Q0I4NDUxM0IxRDc0NDVFMzBDRTY1ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnnQYwDwQCAAIwCQMHACABDfUHgDANBgkqhkiG9w0BAQsFAAOCAQEAQOTpNxpD k9SR3jPpW1+8oDzG49H+EQQ9CFO6BFPUjDUWG0hjnywiUzFlLOVw6vRVPPSQQ+ij SY61lAt4LFT0Fxiadbv2vbj9D4wSUdMbZVf4gzJapYbB1Am9QeBDnXeytxKi4N6X nSexBgaiFbmfsd9QU4O9E9zsEdkXRcWKI1Xn5iyGy31CJrV+2keWKoWQgXg5ikl/ KjQTZrQN/01PpqDnMC/rbqPpGwt7m1pkuxu5vvSnoJ3/bRE8bqUlqcRLkCuqgdPH Z7AyIwYgnobYIxtQaU3ZrSdGswsFuILF3hgmUvmXyWnwruAcDUGyT2MI36r16jNv 2/YVbEUEFMfQtA== -----END CERTIFICATE-----Generated at Wed May 8 17:45:24 2024 by rpki-client on console-ams.rpki-client.org