$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.cer File: B3032084B1211BBB522E01AB56EC94BFBD1C91BB.cer (raw, json) Hash identifier: 3s9PO3HtqGUtk56pYJUt8ZWtChf7kEf76CUG+a9ZKRo= Subject key identifier: B3:03:20:84:B1:21:1B:BB:52:2E:01:AB:56:EC:94:BF:BD:1C:91:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5B1A1440A50832AB167075FB0554EDA92102E2B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.mft caRepository: rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 27 Feb 2024 20:19:37 +0000 Certificate not after: Tue 25 Feb 2025 20:24:37 +0000 Subordinate resources: IP: 103.10.170.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1a:14:40:a5:08:32:ab:16:70:75:fb:05:54:ed:a9:21:02:e2:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 27 20:19:37 2024 GMT Not After : Feb 25 20:24:37 2025 GMT Subject: CN=B3032084B1211BBB522E01AB56EC94BFBD1C91BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2f:88:3e:d8:95:d7:fc:07:82:33:6d:7b:fa: 1e:79:a4:ae:03:e7:55:a6:3b:6f:12:d6:bc:a9:73: 41:b4:94:74:d1:6f:04:23:e6:24:c2:4b:ff:b9:30: 58:92:c4:f9:05:cb:0f:34:b1:83:09:9e:98:4e:eb: d6:72:90:df:22:26:e8:42:5c:b5:3c:0f:b4:5d:85: 1a:1c:80:fe:eb:84:bc:78:67:4b:94:7a:60:34:2e: f9:5f:c1:65:5f:f7:31:8f:24:80:c6:a2:d6:0d:82: ee:9b:7b:70:be:ca:90:71:60:3e:02:99:40:b1:9d: b0:72:0a:d7:a2:a0:78:52:eb:44:72:29:04:a2:92: 85:81:a0:d9:df:cc:a4:26:5e:b9:f1:18:f5:e5:95: f6:93:82:57:65:04:96:ab:6f:27:36:ae:2f:c0:cc: c9:5c:80:ed:8c:c1:5c:0d:fe:e3:0a:92:65:6a:c2: 89:00:53:9d:be:2e:28:5d:f0:4f:ca:92:5a:f9:b2: 8c:08:35:62:f5:f2:52:3b:a6:0d:23:72:b3:29:76: db:ae:51:1a:9f:2e:b3:8c:44:30:41:88:9f:6c:d0: 06:68:e0:a4:80:9c:6e:9e:90:bb:11:bb:b3:64:ef: ed:a9:5e:0b:0d:2b:ba:a1:d3:58:15:c0:b5:76:a5: f2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B3:03:20:84:B1:21:1B:BB:52:2E:01:AB:56:EC:94:BF:BD:1C:91:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ca631d77-f805-439c-98f4-b0da60fe8dd1/0/B3032084B1211BBB522E01AB56EC94BFBD1C91BB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.170.0/23 Signature Algorithm: sha256WithRSAEncryption 20:48:d1:06:74:0c:82:c5:46:7c:21:6d:90:e5:cc:b2:ed:10: 8f:4b:17:00:e6:e3:ae:60:f0:bd:66:f8:09:88:3e:d6:ca:98: ff:af:4f:5b:46:32:64:b1:06:d8:1c:0d:29:f9:e5:f1:8f:b0: 8c:7e:ba:f2:b5:9b:de:06:be:d4:83:ca:73:c8:7b:91:bc:4f: 25:cc:9a:ca:bd:68:69:be:ed:b5:3a:83:e5:5e:3d:f6:64:03: 79:e4:c5:b1:95:ed:2b:71:50:97:ab:2f:7e:82:f6:23:a3:22: 52:20:2d:6b:c8:14:16:29:57:d0:cf:55:83:f8:64:1e:8f:60: b8:13:ea:1c:25:11:96:1f:61:14:85:c8:80:68:7e:65:33:c8: d6:dd:b0:d3:f0:34:8f:d2:3d:9f:e1:89:bc:6d:ed:40:ab:f5: f2:f3:30:b0:e0:de:ba:4b:a8:a3:49:a0:1b:ec:54:3c:1f:ce: 5d:7e:f4:46:d1:f1:c0:1a:aa:b8:19:e4:b1:e8:c2:7e:8f:66: f2:48:39:cc:09:ce:46:ab:4b:b0:3f:9a:f1:5f:ea:45:1e:dd: 92:8c:08:6d:88:17:ef:24:6e:d7:83:d4:de:37:f4:d7:1e:d8: 11:41:f7:09:f2:f7:0d:c9:c7:6f:7f:bd:7e:86:2c:d7:97:f6: 8a:8a:2d:79 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWxoUQKUIMqsWcHX7BVTtqSEC4rQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyNzIwMTkzN1oX DTI1MDIyNTIwMjQzN1owMzExMC8GA1UEAxMoQjMwMzIwODRCMTIxMUJCQjUyMkUw MUFCNTZFQzk0QkZCRDFDOTFCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQviD7Yldf8B4IzbXv6HnmkrgPnVaY7bxLWvKlzQbSUdNFvBCPmJMJL/7kw WJLE+QXLDzSxgwmemE7r1nKQ3yIm6EJctTwPtF2FGhyA/uuEvHhnS5R6YDQu+V/B ZV/3MY8kgMai1g2C7pt7cL7KkHFgPgKZQLGdsHIK16KgeFLrRHIpBKKShYGg2d/M pCZeufEY9eWV9pOCV2UElqtvJzauL8DMyVyA7YzBXA3+4wqSZWrCiQBTnb4uKF3w T8qSWvmyjAg1YvXyUjumDSNysyl2265RGp8us4xEMEGIn2zQBmjgpICcbp6QuxG7 s2Tv7aleCw0ruqHTWBXAtXal8lMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLMDIISxIRu7Ui4Bq1bslL+9HJG7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jYTYzMWQ3Ny1mODA1LTQzOWMtOThmNC1iMGRhNjBmZThkZDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhNjMxZDc3 LWY4MDUtNDM5Yy05OGY0LWIwZGE2MGZlOGRkMS8wL0IzMDMyMDg0QjEyMTFCQkI1 MjJFMDFBQjU2RUM5NEJGQkQxQzkxQkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnCqowDQYJKoZIhvcNAQELBQADggEBACBI0QZ0DILFRnwhbZDlzLLtEI9LFwDm 465g8L1m+AmIPtbKmP+vT1tGMmSxBtgcDSn55fGPsIx+uvK1m94GvtSDynPIe5G8 TyXMmsq9aGm+7bU6g+VePfZkA3nkxbGV7StxUJerL36C9iOjIlIgLWvIFBYpV9DP VYP4ZB6PYLgT6hwlEZYfYRSFyIBofmUzyNbdsNPwNI/SPZ/hibxt7UCr9fLzMLDg 3rpLqKNJoBvsVDwfzl1+9EbR8cAaqrgZ5LHown6PZvJIOcwJzkarS7A/mvFf6kUe 3ZKMCG2IF+8kbteD1N439Nce2BFB9wny9w3Jx29/vX6GLNeX9oqKLXk= -----END CERTIFICATE-----Generated at Wed May 8 17:45:24 2024 by rpki-client on console-ams.rpki-client.org