$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer File: B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer (raw, json) Hash identifier: qyVFx9bf+nn5xRx9vTacpui/zzFkYRWYg/0JR+8PH3s= Subject key identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A7D832BDC6DDB4A79191A0ABD519236EEAB1139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft caRepository: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 04 May 2024 23:19:02 +0000 Certificate not after: Sat 03 May 2025 23:24:02 +0000 Subordinate resources: IP: 103.155.156.0/23 IP: 2406:70c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:7d:83:2b:dc:6d:db:4a:79:19:1a:0a:bd:51:92:36:ee:ab:11:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 4 23:19:02 2024 GMT Not After : May 3 23:24:02 2025 GMT Subject: CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dd:4f:9e:af:26:01:2d:9d:39:74:de:88:20: be:e8:d8:95:ca:1c:64:fb:0c:a3:84:4f:74:bd:25: 8d:9c:04:db:2a:7d:0a:1f:df:ca:5f:7c:cb:82:62: 39:18:e3:9f:49:20:5a:e1:c3:f6:b6:35:73:19:0b: 2c:78:d6:59:2e:d9:35:82:68:28:bb:ef:c0:d6:e9: 53:13:85:6d:bb:5e:db:ec:16:1e:c4:6d:2b:6e:4a: c3:6f:c5:ba:37:17:0c:52:d4:c5:57:72:75:b4:7a: c9:88:e0:70:db:29:59:84:b1:62:5d:15:91:0f:26: f4:8a:2d:98:4a:df:b3:8f:5a:0b:d0:71:57:aa:c2: e7:e5:44:05:41:9b:34:54:03:6a:cf:6e:46:1b:af: 64:a8:ef:fd:75:4d:a2:ba:2d:86:4f:bd:70:eb:65: a5:e8:46:63:fe:6c:46:8c:ce:bb:54:1b:e8:81:9e: f2:35:ea:3d:06:8e:d5:bd:9c:ea:a0:f7:0a:07:41: 2e:4c:4a:87:ce:5b:d6:98:4f:5a:87:35:4d:a9:69: 51:ff:13:50:86:f2:40:5e:6f:37:f9:b1:f8:c0:bb: c7:57:0b:97:ef:69:1c:06:f4:a6:a5:df:65:66:5f: 9b:e4:dd:50:e9:ae:b1:cd:4e:01:4f:bf:24:9c:56: 8e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.156.0/23 IPv6: 2406:70c0::/32 Signature Algorithm: sha256WithRSAEncryption 03:ad:67:d0:12:ad:b4:3e:91:85:a1:0c:e5:be:07:e8:93:91: e0:fa:6e:15:33:f9:07:4c:54:c5:2c:56:27:ee:9c:00:7d:c5: 23:4d:f1:13:95:f2:03:33:49:11:c8:56:ed:b1:1b:75:1a:00: e6:d6:c7:69:59:eb:f2:19:65:f8:d1:76:fb:e4:75:a9:87:95: 55:7f:21:62:80:6e:13:10:e1:58:60:c5:4d:bb:a3:77:d3:82: 57:3c:1e:2b:a9:5f:c7:1d:aa:14:a4:ee:5b:28:a0:15:0c:72: 42:86:46:b6:83:9c:73:be:55:bf:96:0c:24:b5:29:61:08:77: a2:95:f9:80:96:46:3f:68:fb:38:b2:c3:f5:cd:47:6a:d2:09: 4a:6e:63:85:85:37:9f:10:05:58:ae:51:cd:43:a4:19:c3:05: 77:aa:f2:c0:e6:ab:7f:ab:1e:b1:eb:61:39:1f:49:a4:da:12: 53:f0:24:66:22:ea:cb:b1:76:25:67:58:8f:05:27:b4:95:41: 85:0d:f7:6f:a3:47:c1:53:11:3d:ff:33:6c:ac:94:29:31:a5: 2e:0d:8d:28:d5:71:f4:20:c9:93:a9:77:8b:e2:fc:20:e5:e4: 89:dc:5a:ed:0c:8f:dd:d5:ce:cd:08:29:2e:fb:bd:9d:c6:8f: 26:c5:3f:2e -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUGn2DK9xt20p5GRoKvVGSNu6rETkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwNDIzMTkwMloX DTI1MDUwMzIzMjQwMlowMzExMC8GA1UEAxMoQjk3MkYwNzNCOEFGMjZCODUzM0U5 N0FBRkJBRUMxN0ZDRUZENkY4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfdT56vJgEtnTl03oggvujYlcocZPsMo4RPdL0ljZwE2yp9Ch/fyl98y4Ji ORjjn0kgWuHD9rY1cxkLLHjWWS7ZNYJoKLvvwNbpUxOFbbte2+wWHsRtK25Kw2/F ujcXDFLUxVdydbR6yYjgcNspWYSxYl0VkQ8m9IotmErfs49aC9BxV6rC5+VEBUGb NFQDas9uRhuvZKjv/XVNorothk+9cOtlpehGY/5sRozOu1Qb6IGe8jXqPQaO1b2c 6qD3CgdBLkxKh85b1phPWoc1TalpUf8TUIbyQF5vN/mx+MC7x1cLl+9pHAb0pqXf ZWZfm+TdUOmusc1OAU+/JJxWjmUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLly8HO4rya4Uz6XqvuuwX/O/W+MMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZDE2MTljYi1jMDFjLTQ2MTQtODYzZS1jZTI4OGQ3YmE3NjUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkMTYxOWNi LWMwMWMtNDYxNC04NjNlLWNlMjg4ZDdiYTc2NS8wL0I5NzJGMDczQjhBRjI2Qjg1 MzNFOTdBQUZCQUVDMTdGQ0VGRDZGOEMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnm5wwDQQCAAIwBwMFACQGcMAwDQYJKoZIhvcNAQELBQADggEBAAOtZ9ASrbQ+ kYWhDOW+B+iTkeD6bhUz+QdMVMUsVifunAB9xSNN8ROV8gMzSRHIVu2xG3UaAObW x2lZ6/IZZfjRdvvkdamHlVV/IWKAbhMQ4VhgxU27o3fTglc8HiupX8cdqhSk7lso oBUMckKGRraDnHO+Vb+WDCS1KWEId6KV+YCWRj9o+ziyw/XNR2rSCUpuY4WFN58Q BViuUc1DpBnDBXeq8sDmq3+rHrHrYTkfSaTaElPwJGYi6suxdiVnWI8FJ7SVQYUN 92+jR8FTET3/M2yslCkxpS4NjSjVcfQgyZOpd4vi/CDl5IncWu0Mj93Vzs0IKS77 vZ3GjybFPy4= -----END CERTIFICATE-----Generated at Tue May 7 18:07:21 2024 by rpki-client on console-fra.rpki-client.org