$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer File: B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer (raw, json) Hash identifier: pOXw0sMVrq0IGzebJ8/RAA7+mRqrceZprP5dwmZv6JA= Subject key identifier: B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 097DFAE6D01926E77AAFA9702E6C718CBAA942F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft caRepository: rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 19 Sep 2024 19:02:57 +0000 Certificate not after: Thu 18 Sep 2025 19:07:57 +0000 Subordinate resources: IP: 103.38.108.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:7d:fa:e6:d0:19:26:e7:7a:af:a9:70:2e:6c:71:8c:ba:a9:42:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 19 19:02:57 2024 GMT Not After : Sep 18 19:07:57 2025 GMT Subject: CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:44:3d:ce:8b:7f:5e:88:98:37:8b:6c:bc:35: d6:ef:c2:b1:4a:07:72:10:94:9a:b0:12:38:d9:c8: 61:a6:89:9b:8b:6d:25:00:9d:97:89:77:88:40:a8: 5f:7b:54:28:9f:9e:85:04:f0:6a:7a:67:42:37:b9: 3f:8e:a7:2e:a4:62:de:13:86:98:9e:16:d4:5f:de: e8:b4:aa:90:8a:d7:70:ab:4b:c4:a8:b8:05:c3:a8: 75:f5:7f:a6:00:5c:b6:69:fc:4d:e4:a1:ca:2c:45: df:b6:db:73:41:a6:54:e3:66:c7:2b:49:b3:76:b7: 9e:6a:9e:86:c4:16:11:dc:51:b5:d8:ca:c0:cd:b6: 31:72:53:2d:f5:d3:18:fa:f5:04:5c:e1:d4:44:f8: 2f:08:8e:ea:e4:7a:71:25:0c:30:16:d1:3c:a4:d9: 5f:1a:e0:4f:da:2c:15:5e:4e:9d:81:34:57:9c:1f: 2d:38:96:80:4c:d3:20:c4:0a:60:bf:95:e0:0b:a2: d5:1a:cf:ee:1b:08:b0:51:97:38:88:5c:b2:26:a3: 5c:bf:54:4a:8c:e4:d3:42:01:a3:5d:e2:90:2e:9e: fd:6a:6b:a2:e8:4d:9d:2d:d4:0f:3a:5e:9c:e9:09: a4:fb:82:48:61:4d:af:bc:c4:94:c8:b9:bb:2b:e8: 57:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.38.108.0/23 Signature Algorithm: sha256WithRSAEncryption 16:67:40:d8:18:be:87:23:f3:dc:f3:b7:2c:fc:e1:5a:e2:7b: cf:0c:dc:65:16:6a:7a:b7:27:00:3c:2e:3a:7b:02:d4:74:2e: 1a:e7:4d:87:0c:a8:d8:22:3a:dc:20:1f:9f:c5:d8:2d:c6:65: d2:a9:57:1f:a2:48:bd:0b:e9:7b:3b:5c:64:e9:88:20:ed:90: f1:d9:d9:5a:30:61:bf:65:af:68:9b:1e:ec:dd:e9:e3:ba:64: c4:c5:0a:d6:93:78:ec:22:d3:71:f2:3f:15:51:cc:f0:6d:36: 1f:06:20:13:4d:4d:44:77:41:7f:55:5b:4c:b5:db:c0:2d:c9: d5:0d:fb:1f:8a:8a:64:58:3f:4e:b2:c5:e2:d3:ef:79:00:bc: 64:56:02:10:c7:0e:cb:76:cb:8f:64:57:3b:ac:c2:78:e6:d6: 05:59:33:80:42:5a:db:cc:4d:25:e0:e1:6a:e5:3a:77:4c:2d: 07:cf:fb:ab:3a:ed:b8:65:21:4e:e0:fe:29:1c:f0:57:37:a9: ac:31:d3:e0:e9:87:bf:3d:c8:38:dd:32:bb:b6:b9:1c:f3:99: 85:9a:f9:59:0d:95:0a:2e:30:63:9c:a6:3b:26:0d:05:7d:bd: 72:8b:c6:ca:c7:a5:74:b0:0f:48:54:40:f2:0e:08:19:13:31: 08:1a:e9:60 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCX365tAZJud6r6lwLmxxjLqpQvcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxOTE5MDI1N1oX DTI1MDkxODE5MDc1N1owMzExMC8GA1UEAxMoQjVGOEU3NzEyQTgzQkUyQkQ3OENG QzQwNjU4QzgwMzJGMDNCNjY4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZEPc6Lf16ImDeLbLw11u/CsUoHchCUmrASONnIYaaJm4ttJQCdl4l3iECo X3tUKJ+ehQTwanpnQje5P46nLqRi3hOGmJ4W1F/e6LSqkIrXcKtLxKi4BcOodfV/ pgBctmn8TeShyixF37bbc0GmVONmxytJs3a3nmqehsQWEdxRtdjKwM22MXJTLfXT GPr1BFzh1ET4LwiO6uR6cSUMMBbRPKTZXxrgT9osFV5OnYE0V5wfLTiWgEzTIMQK YL+V4Aui1RrP7hsIsFGXOIhcsiajXL9USozk00IBo13ikC6e/WprouhNnS3UDzpe nOkJpPuCSGFNr7zElMi5uyvoV3UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLX453Eqg74r14z8QGWMgDLwO2aCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZGI1OWExMC01OGQwLTQ2MmUtYjA5Yi0xOTE5YjFjMzVkNzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkYjU5YTEw LTU4ZDAtNDYyZS1iMDliLTE5MTliMWMzNWQ3Mi8wL0I1RjhFNzcxMkE4M0JFMkJE NzhDRkM0MDY1OEM4MDMyRjAzQjY2ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnJmwwDQYJKoZIhvcNAQELBQADggEBABZnQNgYvocj89zztyz84Vrie88M3GUW anq3JwA8Ljp7AtR0LhrnTYcMqNgiOtwgH5/F2C3GZdKpVx+iSL0L6Xs7XGTpiCDt kPHZ2VowYb9lr2ibHuzd6eO6ZMTFCtaTeOwi03HyPxVRzPBtNh8GIBNNTUR3QX9V W0y128AtydUN+x+KimRYP06yxeLT73kAvGRWAhDHDst2y49kVzuswnjm1gVZM4BC WtvMTSXg4WrlOndMLQfP+6s67bhlIU7g/ikc8Fc3qawx0+Dph789yDjdMru2uRzz mYWa+VkNlQouMGOcpjsmDQV9vXKLxsrHpXSwD0hUQPIOCBkTMQga6WA= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:59 2024 by rpki-client on console-fra.rpki-client.org