$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer File: B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.cer (raw, json) Hash identifier: NV3AU00hmD1Qys29Ow/Adaibr1jKgZdiQ2C2b/PSfKI= Subject key identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 339AD5CD9AA27E98F9F4ED057890C97505B636D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft caRepository: rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 15 Dec 2023 13:03:55 +0000 Certificate not after: Fri 13 Dec 2024 13:08:55 +0000 Subordinate resources: IP: 103.125.16.0/22 IP: 2403:ea40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:9a:d5:cd:9a:a2:7e:98:f9:f4:ed:05:78:90:c9:75:05:b6:36:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 15 13:03:55 2023 GMT Not After : Dec 13 13:08:55 2024 GMT Subject: CN=B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ab:29:d6:bb:4a:4c:0d:39:b2:44:fa:63:15: e7:74:c6:16:5b:52:ca:29:e2:1b:67:a6:c6:33:99: 50:be:2e:53:11:86:00:80:82:07:65:7b:84:97:01: e0:4e:29:4c:f3:8a:3c:b1:24:ba:61:45:d3:96:2d: 1d:be:c6:17:70:4c:f1:68:66:28:b0:b4:3d:9b:7c: 30:05:ac:da:4b:4c:80:39:50:f8:9a:00:04:48:45: 70:8a:bb:10:a6:b1:f8:5f:ea:f3:3e:d2:2a:e4:95: 6e:a2:91:41:24:a1:d0:9c:36:aa:17:77:e3:2d:e4: 5f:ad:ea:a4:6f:e7:ed:37:14:be:fa:2b:70:4b:29: b9:1d:ca:24:6c:6b:c2:68:04:07:d3:b9:01:93:1f: fb:8d:7d:b4:fe:31:46:05:48:b7:5d:c7:cb:cc:22: e9:27:67:4c:e7:4b:c0:14:e1:14:5d:3b:14:57:38: 07:c3:7a:6b:f8:cc:d6:17:54:ff:13:46:88:ee:4f: 55:b2:64:93:7e:e7:60:a0:73:48:41:f7:f9:d0:33: 27:84:db:da:c6:aa:2d:8f:a9:9c:0b:cd:60:7b:df: 60:5c:b2:02:31:1f:b0:ff:77:1f:f0:03:5a:58:35: b3:31:ac:d6:09:a1:8a:3b:36:cc:02:20:f2:a6:a3: 6d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B3:A9:68:6B:1E:95:DC:B6:87:72:AD:A5:5B:B1:38:AE:4D:0E:14:DB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e58d6dca-6d7b-4811-862b-0dc5d57fa2d9/0/B3A9686B1E95DCB68772ADA55BB138AE4D0E14DB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.125.16.0/22 IPv6: 2403:ea40::/32 Signature Algorithm: sha256WithRSAEncryption 6a:8a:ad:ae:5b:56:39:38:79:95:c3:09:b0:5c:1f:1f:0a:aa: d5:ca:08:b0:0e:0c:34:6d:f5:78:a3:1d:8b:c7:10:f6:97:ff: 5c:f9:45:4f:0a:90:78:02:a1:f8:4d:77:80:0e:3d:85:6e:81: 8f:59:e8:b2:96:17:ca:34:02:0a:1a:cc:43:1a:86:e7:1f:4e: b0:7b:50:f1:32:69:7c:8d:61:dc:90:61:e2:30:0a:3e:4c:ed: 85:5b:d4:cb:31:c4:e6:71:3f:4f:19:c9:f8:ae:7b:b7:9e:ed: a1:36:a8:46:d1:ba:64:9b:64:d2:c3:7f:96:97:96:0f:17:5b: 12:c9:65:04:c5:c9:44:01:1b:86:47:e4:b2:d7:98:59:e8:aa: 75:51:4c:19:b8:69:d7:b5:9a:58:b0:dc:79:df:af:99:24:12: 0e:ac:bd:47:99:7f:37:d0:51:e1:20:98:5f:73:1e:f5:f5:98: c4:b7:51:ed:1d:c8:be:91:a1:72:3b:53:dd:1e:75:79:ac:a0: ea:3d:c5:db:e4:81:3a:e9:38:b3:02:19:89:2f:94:87:a1:94: 42:7f:c8:51:c4:cd:38:f5:e3:57:4a:94:19:dc:bf:ec:96:dc: 4d:e2:40:68:69:39:65:16:bb:a1:ea:c7:ed:75:e1:41:98:76: 7f:44:bf:9a -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUM5rVzZqifpj59O0FeJDJdQW2NtAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxNTEzMDM1NVoX DTI0MTIxMzEzMDg1NVowMzExMC8GA1UEAxMoQjNBOTY4NkIxRTk1RENCNjg3NzJB REE1NUJCMTM4QUU0RDBFMTREQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOarKda7SkwNObJE+mMV53TGFltSyiniG2emxjOZUL4uUxGGAICCB2V7hJcB 4E4pTPOKPLEkumFF05YtHb7GF3BM8WhmKLC0PZt8MAWs2ktMgDlQ+JoABEhFcIq7 EKax+F/q8z7SKuSVbqKRQSSh0Jw2qhd34y3kX63qpG/n7TcUvvorcEspuR3KJGxr wmgEB9O5AZMf+419tP4xRgVIt13Hy8wi6SdnTOdLwBThFF07FFc4B8N6a/jM1hdU /xNGiO5PVbJkk37nYKBzSEH3+dAzJ4Tb2saqLY+pnAvNYHvfYFyyAjEfsP93H/AD Wlg1szGs1gmhijs2zAIg8qajbecCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLOpaGseldy2h3KtpVuxOK5NDhTbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNThkNmRjYS02ZDdiLTQ4MTEtODYyYi0wZGM1ZDU3ZmEyZDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1OGQ2ZGNh LTZkN2ItNDgxMS04NjJiLTBkYzVkNTdmYTJkOS8wL0IzQTk2ODZCMUU5NURDQjY4 NzcyQURBNTVCQjEzOEFFNEQwRTE0REIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnfRAwDQQCAAIwBwMFACQD6kAwDQYJKoZIhvcNAQELBQADggEBAGqKra5bVjk4 eZXDCbBcHx8KqtXKCLAODDRt9XijHYvHEPaX/1z5RU8KkHgCofhNd4AOPYVugY9Z 6LKWF8o0AgoazEMahucfTrB7UPEyaXyNYdyQYeIwCj5M7YVb1MsxxOZxP08Zyfiu e7ee7aE2qEbRumSbZNLDf5aXlg8XWxLJZQTFyUQBG4ZH5LLXmFnoqnVRTBm4ade1 mliw3Hnfr5kkEg6svUeZfzfQUeEgmF9zHvX1mMS3Ue0dyL6RoXI7U90edXmsoOo9 xdvkgTrpOLMCGYkvlIehlEJ/yFHEzTj141dKlBncv+yW3E3iQGhpOWUWu6Hqx+11 4UGYdn9Ev5o= -----END CERTIFICATE-----Generated at Tue May 7 18:07:21 2024 by rpki-client on console-fra.rpki-client.org