$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer File: B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.cer (raw, json) Hash identifier: rm4YVfFOHm8v9BO7xuJQMUO48U7sKMsAKYJC6jdu1m8= Subject key identifier: B3:2E:9E:AB:D0:55:A1:2F:D3:AA:7A:30:7C:1D:F6:83:2A:48:1A:F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D8448A7C415C63BF541675D47611229ACD679EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.mft caRepository: rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 28 Oct 2024 09:29:24 +0000 Certificate not after: Mon 27 Oct 2025 09:34:24 +0000 Subordinate resources: IP: 27.124.76.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:84:48:a7:c4:15:c6:3b:f5:41:67:5d:47:61:12:29:ac:d6:79:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 09:29:24 2024 GMT Not After : Oct 27 09:34:24 2025 GMT Subject: CN=B32E9EABD055A12FD3AA7A307C1DF6832A481AF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:62:3a:28:c7:f3:70:74:4d:84:2d:4e:77:3c: a9:19:52:07:37:66:87:d0:41:4b:d8:57:a9:de:a2: 90:6c:ca:11:89:a3:51:03:51:8b:83:7a:9a:c9:59: 28:24:a2:c0:4a:3b:d2:36:b9:f7:74:a6:e5:45:0b: 0c:5f:c9:55:42:91:92:0b:b1:fc:36:8b:31:00:c3: 27:24:c4:02:bd:76:57:7b:42:da:c1:5b:b3:68:2b: 56:dd:d3:60:4a:5a:d7:25:54:7d:d0:51:22:72:7a: ca:a8:45:79:d5:89:fc:0f:d9:ae:5d:9f:d1:8b:3d: fd:91:74:4b:b3:c0:68:58:93:5d:dc:ac:ef:a8:cf: ad:83:3f:78:32:51:c8:72:cb:d6:b6:a5:09:4e:bc: f8:9f:f7:51:5a:5b:46:c1:99:36:56:8a:52:0e:27: 73:b4:c0:3c:3c:2d:cb:82:f9:11:6e:84:18:be:d1: 8c:57:86:e3:0b:62:00:68:92:e8:d9:ea:4b:df:63: 48:cb:88:4b:bf:ab:ef:fe:22:c0:c0:85:19:8a:e6: 28:07:d8:aa:cd:08:0e:be:35:38:76:1c:0a:d2:ad: 34:f9:fd:9f:7e:8c:cf:63:06:40:f6:3a:cc:bf:fd: 98:46:eb:23:5d:a3:c2:3c:a2:df:90:a1:4a:d9:ec: f7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B3:2E:9E:AB:D0:55:A1:2F:D3:AA:7A:30:7C:1D:F6:83:2A:48:1A:F8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6f2a8011-4c66-43d1-bbc5-fb11e89f91e0/0/B32E9EABD055A12FD3AA7A307C1DF6832A481AF8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.76.0/23 Signature Algorithm: sha256WithRSAEncryption 73:17:8f:64:b8:99:66:d3:f4:39:70:17:aa:32:2c:d4:59:06: 5e:22:06:6e:60:94:0b:4d:05:70:74:e8:4d:29:9c:d6:58:16: 59:66:ce:91:0c:61:49:42:08:27:6c:ac:f1:a7:e2:0b:55:ff: 6d:3f:88:69:cd:0a:21:05:b9:63:2d:22:29:9c:3a:44:83:36: ae:aa:ef:8d:f1:ae:ee:2b:a8:06:f6:70:90:b0:05:58:ea:3f: 39:ef:3f:28:1c:40:8c:28:9c:84:db:2a:ff:9d:64:de:d5:73: f6:d0:6c:7b:22:01:e3:c7:12:fe:38:77:e0:90:25:de:13:4b: 96:7b:40:8c:e9:c9:13:e6:0a:63:2b:a1:26:e4:0c:57:30:22: ff:f6:f0:06:53:4c:4b:b1:ff:c0:51:f1:48:3f:47:65:29:72: e3:2a:4c:54:b0:75:b0:9a:8c:14:0e:d9:bc:6c:65:b9:ae:ba: 9b:ab:7b:6f:ec:5f:87:f5:dc:19:c2:be:08:60:32:73:e9:75: b7:b8:ea:1c:98:f7:87:e2:da:ed:15:33:46:d8:31:a6:45:ec: 52:20:6e:38:d0:28:8e:29:ac:79:5d:8f:f9:79:31:5c:b4:cc: d2:88:fc:9f:3a:a9:76:92:dc:0c:26:6c:14:97:8b:c3:db:60: 0b:fe:37:69 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDYRIp8QVxjv1QWddR2ESKazWeeowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyODA5MjkyNFoX DTI1MTAyNzA5MzQyNFowMzExMC8GA1UEAxMoQjMyRTlFQUJEMDU1QTEyRkQzQUE3 QTMwN0MxREY2ODMyQTQ4MUFGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZiOijH83B0TYQtTnc8qRlSBzdmh9BBS9hXqd6ikGzKEYmjUQNRi4N6mslZ KCSiwEo70ja593Sm5UULDF/JVUKRkgux/DaLMQDDJyTEAr12V3tC2sFbs2grVt3T YEpa1yVUfdBRInJ6yqhFedWJ/A/Zrl2f0Ys9/ZF0S7PAaFiTXdys76jPrYM/eDJR yHLL1ralCU68+J/3UVpbRsGZNlaKUg4nc7TAPDwty4L5EW6EGL7RjFeG4wtiAGiS 6NnqS99jSMuIS7+r7/4iwMCFGYrmKAfYqs0IDr41OHYcCtKtNPn9n36Mz2MGQPY6 zL/9mEbrI12jwjyi35ChStns92UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLMunqvQVaEv06p6MHwd9oMqSBr4MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZjJhODAxMS00YzY2LTQzZDEtYmJjNS1mYjExZTg5ZjkxZTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmMmE4MDEx LTRjNjYtNDNkMS1iYmM1LWZiMTFlODlmOTFlMC8wL0IzMkU5RUFCRDA1NUExMkZE M0FBN0EzMDdDMURGNjgzMkE0ODFBRjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEbfEwwDQYJKoZIhvcNAQELBQADggEBAHMXj2S4mWbT9DlwF6oyLNRZBl4iBm5g lAtNBXB06E0pnNZYFllmzpEMYUlCCCdsrPGn4gtV/20/iGnNCiEFuWMtIimcOkSD Nq6q743xru4rqAb2cJCwBVjqPznvPygcQIwonITbKv+dZN7Vc/bQbHsiAePHEv44 d+CQJd4TS5Z7QIzpyRPmCmMroSbkDFcwIv/28AZTTEux/8BR8Ug/R2UpcuMqTFSw dbCajBQO2bxsZbmuupure2/sX4f13BnCvghgMnPpdbe46hyY94fi2u0VM0bYMaZF 7FIgbjjQKI4prHldj/l5MVy0zNKI/J86qXaS3AwmbBSXi8PbYAv+N2k= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:31 2024 by rpki-client on console-ams.rpki-client.org