$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B4771724B89252E420CF8D2504309C8B69AC30CB.cer File: B4771724B89252E420CF8D2504309C8B69AC30CB.cer (raw, json) Hash identifier: iWWZyNWq054cO0Co3uARgxXoaFwhooi0kj/J3Kv06VE= Subject key identifier: B4:77:17:24:B8:92:52:E4:20:CF:8D:25:04:30:9C:8B:69:AC:30:CB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 12C65B8AB618E36964D9CC5F2CCB4FBC319D7E0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.mft caRepository: rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Sep 2024 19:00:45 +0000 Certificate not after: Thu 04 Sep 2025 19:05:45 +0000 Subordinate resources: IP: 103.13.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c6:5b:8a:b6:18:e3:69:64:d9:cc:5f:2c:cb:4f:bc:31:9d:7e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 5 19:00:45 2024 GMT Not After : Sep 4 19:05:45 2025 GMT Subject: CN=B4771724B89252E420CF8D2504309C8B69AC30CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:41:4a:79:16:fd:f6:9f:cd:e2:c4:a4:40: f3:f5:7d:30:83:b2:ba:d0:30:5c:81:41:f5:37:30: 14:d5:49:8c:9a:73:08:cd:d0:c5:f6:86:b9:8e:16: 41:58:81:c5:65:4b:a6:ba:a5:d1:2b:5e:95:64:af: 0b:0a:25:b0:b0:0f:51:dd:a0:3f:7f:e9:6d:24:f5: 47:f4:23:58:8e:e5:2a:84:52:a0:31:56:f1:fa:20: 37:c2:13:d8:d1:a3:4f:30:70:71:95:f3:3e:71:20: 9a:7c:9b:03:a7:96:84:c0:c8:78:e3:cd:5c:8c:02: 38:22:26:6f:bf:cd:e3:f8:96:3c:1a:35:0c:0e:5d: 99:70:5e:d3:b8:d1:1b:26:33:e4:23:6a:11:41:04: f3:f8:de:07:7b:99:c9:3d:73:54:6b:ff:8b:92:b8: d3:96:08:15:c0:68:90:e5:a7:24:33:f8:19:a5:de: 35:40:47:49:b7:f9:4f:ee:0a:4d:99:3d:e9:e1:fd: 7e:a6:17:10:88:60:f6:ed:67:46:3d:49:af:5a:7d: d7:0c:c1:5c:89:ec:c8:ad:5c:c2:ad:9d:ee:63:bc: 1a:f2:d0:61:49:f7:cc:b2:d0:64:af:cb:b5:c7:d8: 34:3b:fa:b1:20:b8:ea:c3:53:75:62:7f:e8:47:bf: 66:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B4:77:17:24:B8:92:52:E4:20:CF:8D:25:04:30:9C:8B:69:AC:30:CB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.136.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:ff:3f:b9:8d:ee:7c:0d:4a:51:f8:24:23:94:75:23:d5:43: 1a:46:5b:2a:40:52:f6:e4:d3:da:ff:51:1c:88:1b:5c:3d:c7: 25:f4:9f:c2:93:4a:aa:30:0f:3e:4d:23:7f:ba:f0:57:d8:05: 29:b9:44:c7:66:c0:f4:a1:0a:48:f6:81:99:3f:e4:1a:bf:3a: 2d:6a:02:c1:2b:56:cb:1f:68:78:0e:19:bf:a0:c7:50:3a:3d: c9:3e:b4:2a:af:af:66:a3:aa:86:fa:4b:13:5f:ed:fc:02:ac: 4b:b8:92:dc:90:18:b1:c0:6b:fe:51:c4:e7:62:b3:17:61:63: 11:5d:69:53:7f:d8:a3:3a:2b:7e:7a:95:72:44:bc:85:6c:db: 40:b5:b0:6b:bf:f5:1b:34:42:9c:ce:78:44:9e:d3:ad:61:8d: 37:2f:61:ac:d9:a5:ba:b4:c8:0f:ce:6a:7b:e0:52:55:e2:6d: de:96:b9:39:79:20:63:a3:03:33:bb:29:92:ce:0f:81:36:ce: bc:25:e2:af:a1:99:95:17:ff:6a:d2:12:c5:d9:cd:7f:a2:af: e6:8e:fd:be:55:8b:f8:15:38:85:78:18:0c:23:0a:64:2a:e7: cf:ff:7c:f0:80:79:d1:1a:63:49:00:a9:fb:f0:9f:62:b6:85: 91:15:59:bc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEsZbirYY42lk2cxfLMtPvDGdfgwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwNTE5MDA0NVoX DTI1MDkwNDE5MDU0NVowMzExMC8GA1UEAxMoQjQ3NzE3MjRCODkyNTJFNDIwQ0Y4 RDI1MDQzMDlDOEI2OUFDMzBDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYTQUp5Fv32n83ixKRA8/V9MIOyutAwXIFB9TcwFNVJjJpzCM3QxfaGuY4W QViBxWVLprql0StelWSvCwolsLAPUd2gP3/pbST1R/QjWI7lKoRSoDFW8fogN8IT 2NGjTzBwcZXzPnEgmnybA6eWhMDIeOPNXIwCOCImb7/N4/iWPBo1DA5dmXBe07jR GyYz5CNqEUEE8/jeB3uZyT1zVGv/i5K405YIFcBokOWnJDP4GaXeNUBHSbf5T+4K TZk96eH9fqYXEIhg9u1nRj1Jr1p91wzBXInsyK1cwq2d7mO8GvLQYUn3zLLQZK/L tcfYNDv6sSC46sNTdWJ/6Ee/ZjkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLR3FyS4klLkIM+NJQQwnItprDDLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNTVhZjhhZi1hNDBmLTQyYzctOWY0Yy0xOGUwY2E1Y2Q0N2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NWFmOGFm LWE0MGYtNDJjNy05ZjRjLTE4ZTBjYTVjZDQ3ZS8wL0I0NzcxNzI0Qjg5MjUyRTQy MENGOEQyNTA0MzA5QzhCNjlBQzMwQ0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnDYgwDQYJKoZIhvcNAQELBQADggEBAFz/P7mN7nwNSlH4JCOUdSPVQxpGWypA Uvbk09r/URyIG1w9xyX0n8KTSqowDz5NI3+68FfYBSm5RMdmwPShCkj2gZk/5Bq/ Oi1qAsErVssfaHgOGb+gx1A6Pck+tCqvr2ajqob6SxNf7fwCrEu4ktyQGLHAa/5R xOdisxdhYxFdaVN/2KM6K356lXJEvIVs20C1sGu/9Rs0QpzOeESe061hjTcvYazZ pbq0yA/OanvgUlXibd6WuTl5IGOjAzO7KZLOD4E2zrwl4q+hmZUX/2rSEsXZzX+i r+aO/b5Vi/gVOIV4GAwjCmQq58//fPCAedEaY0kAqfvwn2K2hZEVWbw= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:31 2024 by rpki-client on console-ams.rpki-client.org