$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B5A68ADE81322F194320BE4302C6897D29D13BDD.cer File: B5A68ADE81322F194320BE4302C6897D29D13BDD.cer (raw, json) Hash identifier: PPWLbeHDpsIHEiyB9eK/NtTQiA9J/Qb+oWN31pliE1E= Subject key identifier: B5:A6:8A:DE:81:32:2F:19:43:20:BE:43:02:C6:89:7D:29:D1:3B:DD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 24EDCB6DBD3E47016C68968189FF62C02B7DB861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/B5A68ADE81322F194320BE4302C6897D29D13BDD.mft caRepository: rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 13 Aug 2024 03:48:31 +0000 Certificate not after: Tue 12 Aug 2025 03:53:31 +0000 Subordinate resources: IP: 103.38.106.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ed:cb:6d:bd:3e:47:01:6c:68:96:81:89:ff:62:c0:2b:7d:b8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 13 03:48:31 2024 GMT Not After : Aug 12 03:53:31 2025 GMT Subject: CN=B5A68ADE81322F194320BE4302C6897D29D13BDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e6:4a:b7:eb:6b:0a:24:31:03:55:f6:be:2f: 39:12:0f:db:47:00:01:36:d2:33:3c:ab:47:b4:f2: ae:6f:1a:d8:aa:53:a0:76:3e:3a:43:cd:a2:90:8b: bd:2d:71:52:d8:25:12:c7:09:66:30:ff:8f:e4:3d: 61:84:4c:d0:7b:7c:52:e6:37:40:95:08:47:74:6b: 6c:92:1e:ab:77:bf:83:11:3d:79:aa:94:86:36:2e: 50:5f:07:75:86:92:ff:77:93:5d:5b:51:3c:de:14: 3f:20:80:7b:36:bc:fc:78:99:16:ab:d4:82:5a:89: b3:0e:6f:67:07:14:19:41:4c:84:2b:00:cc:85:08: 20:19:d6:92:08:fe:6c:be:38:0f:1b:48:2a:c8:3d: fc:00:86:9d:a5:6b:89:7c:fe:25:4f:6c:bf:56:b0: e8:db:0e:d1:58:26:7c:70:05:e8:7a:b8:f8:f7:12: 9d:71:5a:cf:fc:fc:3c:48:cd:22:20:93:7e:63:f8: cc:2d:7e:ba:a5:00:ec:05:40:2c:85:b2:e0:8d:9f: 34:91:43:21:85:d1:eb:bd:b1:07:40:e5:de:d5:56: d4:ce:cc:c0:c8:da:c4:1b:09:23:85:c4:b6:37:71: 24:92:6e:c4:ce:f5:39:2a:46:25:4b:bd:09:57:43: 1b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B5:A6:8A:DE:81:32:2F:19:43:20:BE:43:02:C6:89:7D:29:D1:3B:DD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/db016085-2f94-40ff-80ce-ce23d39e65a1/0/B5A68ADE81322F194320BE4302C6897D29D13BDD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.106.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:68:58:9b:9d:e9:10:a1:4e:6c:18:89:55:9b:ff:f2:af:26: c0:e4:21:40:29:55:a0:f3:da:ea:b0:54:f0:bf:9f:f0:ba:a3: f1:5e:d2:a0:03:0f:20:48:6c:a7:bd:47:b1:9f:d6:46:51:4b: 3f:ef:4c:e0:ad:a7:fe:46:72:53:fc:38:0c:24:83:7b:ef:88: 2c:6c:79:b1:26:d7:ea:f3:97:6f:0a:e8:93:52:4d:2b:db:b3: 61:c5:8b:f0:37:b7:89:8a:5a:d5:0a:1b:82:75:75:0c:32:0b: b6:3c:c5:11:d6:9d:83:6f:ea:b2:fd:55:56:08:1d:81:67:c8: f0:49:b8:2d:f9:87:57:a6:2f:f4:eb:48:31:bc:37:c3:9f:a6: 53:45:ed:65:5c:c1:c9:77:1f:35:a3:5a:2b:56:b0:9c:46:7b: 20:4a:9e:79:3c:81:d6:88:d6:24:dc:da:b6:b2:e7:8d:0f:65: b5:be:f8:eb:e6:65:07:01:d3:26:c2:40:0f:13:a6:95:04:9f: 23:e6:8c:27:9a:aa:34:dd:4e:74:10:08:93:c0:a1:92:19:bf: b2:f9:73:a6:40:9b:0a:1b:7b:5f:96:58:cc:74:b0:6b:71:3f: 21:8a:44:aa:9c:3d:e4:0a:7d:4b:57:37:7c:4a:79:06:5b:2e: b3:ab:2a:b0 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJO3Lbb0+RwFsaJaBif9iwCt9uGEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMzAzNDgzMVoX DTI1MDgxMjAzNTMzMVowMzExMC8GA1UEAxMoQjVBNjhBREU4MTMyMkYxOTQzMjBC RTQzMDJDNjg5N0QyOUQxM0JERDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKPmSrfrawokMQNV9r4vORIP20cAATbSMzyrR7Tyrm8a2KpToHY+OkPNopCL vS1xUtglEscJZjD/j+Q9YYRM0Ht8UuY3QJUIR3RrbJIeq3e/gxE9eaqUhjYuUF8H dYaS/3eTXVtRPN4UPyCAeza8/HiZFqvUglqJsw5vZwcUGUFMhCsAzIUIIBnWkgj+ bL44DxtIKsg9/ACGnaVriXz+JU9sv1aw6NsO0VgmfHAF6Hq4+PcSnXFaz/z8PEjN IiCTfmP4zC1+uqUA7AVALIWy4I2fNJFDIYXR672xB0Dl3tVW1M7MwMjaxBsJI4XE tjdxJJJuxM71OSpGJUu9CVdDG/cCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLWmit6BMi8ZQyC+QwLGiX0p0TvdMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYjAxNjA4NS0yZjk0LTQwZmYtODBjZS1jZTIzZDM5ZTY1YTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiMDE2MDg1 LTJmOTQtNDBmZi04MGNlLWNlMjNkMzllNjVhMS8wL0I1QTY4QURFODEzMjJGMTk0 MzIwQkU0MzAyQzY4OTdEMjlEMTNCREQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnJmowDQYJKoZIhvcNAQELBQADggEBAFpoWJud6RChTmwYiVWb//KvJsDkIUAp VaDz2uqwVPC/n/C6o/Fe0qADDyBIbKe9R7Gf1kZRSz/vTOCtp/5GclP8OAwkg3vv iCxsebEm1+rzl28K6JNSTSvbs2HFi/A3t4mKWtUKG4J1dQwyC7Y8xRHWnYNv6rL9 VVYIHYFnyPBJuC35h1emL/TrSDG8N8OfplNF7WVcwcl3HzWjWitWsJxGeyBKnnk8 gdaI1iTc2ray540PZbW++OvmZQcB0ybCQA8TppUEnyPmjCeaqjTdTnQQCJPAoZIZ v7L5c6ZAmwobe1+WWMx0sGtxPyGKRKqcPeQKfUtXN3xKeQZbLrOrKrA= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:59 2024 by rpki-client on console-fra.rpki-client.org