$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC180E3FF326678277BE269EEBEC1DE3827226F.cer File: BAC180E3FF326678277BE269EEBEC1DE3827226F.cer (raw, json) Hash identifier: XRLQ3muavKzHybDUrhWwKnOXG6UTjP7kVEK8qVAYVKM= Subject key identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 46151E76EBE73EF50C76D81FC0F9236AAD698BBE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft caRepository: rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 06 Oct 2024 14:58:48 +0000 Certificate not after: Sun 05 Oct 2025 15:03:48 +0000 Subordinate resources: IP: 103.161.162.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:15:1e:76:eb:e7:3e:f5:0c:76:d8:1f:c0:f9:23:6a:ad:69:8b:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Oct 6 14:58:48 2024 GMT Not After : Oct 5 15:03:48 2025 GMT Subject: CN=BAC180E3FF326678277BE269EEBEC1DE3827226F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:8b:ab:ac:e7:0e:75:04:18:0a:6d:1e:c2:e1: 93:da:69:07:5b:34:9e:e8:3b:23:67:84:d3:28:64: e0:e9:65:98:28:8c:f5:31:5f:b8:b6:f8:74:a3:b6: 60:2e:cc:3e:b5:90:8c:c5:f2:37:5c:bf:85:99:0d: 61:cc:36:7d:59:f3:e8:de:89:78:3a:14:02:19:33: 36:38:55:e2:97:da:24:4b:e0:d3:fe:26:89:d9:c2: 7b:71:f2:10:b7:a2:99:ad:90:85:06:70:62:28:63: 87:65:a0:64:cf:26:d3:2e:42:63:c1:2a:33:9f:6b: bc:8f:3c:63:00:0f:bb:43:37:b0:6a:02:d9:ed:81: 0f:1c:e0:ec:f1:22:d0:cc:09:c9:95:38:e8:89:39: cd:9f:c5:2d:8f:99:a0:ce:bf:20:47:0d:db:34:f7: d3:04:98:78:58:7c:b8:7c:18:94:cf:fb:21:a3:9a: 29:32:6f:3e:2e:f2:fc:45:40:20:f7:27:e1:9d:bb: 89:37:b1:e6:82:98:6f:0d:75:8a:58:f0:7e:fc:70: be:1d:9c:41:2d:b7:33:ef:d2:e3:64:b0:87:d6:c0: e7:b1:d6:56:cd:2f:69:c8:71:0f:c1:ff:01:00:e9: 0a:56:c1:a4:d0:04:8f:96:ad:d2:18:05:82:1d:92: 49:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:C1:80:E3:FF:32:66:78:27:7B:E2:69:EE:BE:C1:DE:38:27:22:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5d094d3e-089c-4c68-80a2-56b5cbfc103d/0/BAC180E3FF326678277BE269EEBEC1DE3827226F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.162.0/23 Signature Algorithm: sha256WithRSAEncryption 85:5f:45:28:ed:3d:95:52:41:f4:81:ab:e1:3d:34:6b:4c:15: 42:09:46:e0:45:93:ac:e4:77:50:a6:57:81:69:c4:4f:ee:dc: e0:a2:16:cd:c9:59:81:fe:a1:47:90:6c:ce:f4:c5:2d:56:b6: 79:ba:cb:6a:a6:af:f9:23:ef:29:ee:d4:1a:cf:8e:79:18:34: ef:7c:eb:98:64:d3:ab:8a:08:40:a9:01:6b:8b:e8:8b:3b:e3: 11:da:50:9a:70:4d:87:71:0c:f5:e7:d3:60:56:0e:bd:0d:6d: 4c:f1:93:b9:8a:2a:c6:12:d9:0a:18:d2:78:3c:b5:77:d2:73: 46:12:4e:ff:da:5a:45:42:99:b1:1c:af:73:5d:2a:de:ab:e4: d5:c2:3f:c3:4a:4e:00:2b:bb:c7:45:6d:e6:05:b3:fb:1d:bc: 95:6e:b0:26:ba:fe:cd:60:ef:2c:3d:1c:29:18:c5:d9:47:cc: cc:b2:2c:44:9e:93:8c:3d:f3:6b:bb:5f:ff:bb:7e:dc:ee:6c: 4f:01:e2:dd:3e:5e:bc:28:00:21:af:6f:49:e0:01:1e:47:37: 24:91:89:1f:eb:03:56:32:1d:27:3c:b1:63:99:cf:ab:e5:ed: ee:c6:99:ba:fd:d3:33:c8:af:1c:15:7a:6a:17:9e:3c:9d:e3: d2:ab:38:6b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURhUeduvnPvUMdtgfwPkjaq1pi74wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwNjE0NTg0OFoX DTI1MTAwNTE1MDM0OFowMzExMC8GA1UEAxMoQkFDMTgwRTNGRjMyNjY3ODI3N0JF MjY5RUVCRUMxREUzODI3MjI2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJSLq6znDnUEGAptHsLhk9ppB1s0nug7I2eE0yhk4OllmCiM9TFfuLb4dKO2 YC7MPrWQjMXyN1y/hZkNYcw2fVnz6N6JeDoUAhkzNjhV4pfaJEvg0/4midnCe3Hy ELeima2QhQZwYihjh2WgZM8m0y5CY8EqM59rvI88YwAPu0M3sGoC2e2BDxzg7PEi 0MwJyZU46Ik5zZ/FLY+ZoM6/IEcN2zT30wSYeFh8uHwYlM/7IaOaKTJvPi7y/EVA IPcn4Z27iTex5oKYbw11iljwfvxwvh2cQS23M+/S42Swh9bA57HWVs0vachxD8H/ AQDpClbBpNAEj5at0hgFgh2SSYECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLrBgOP/MmZ4J3viae6+wd44JyJvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZDA5NGQzZS0wODljLTRjNjgtODBhMi01NmI1Y2JmYzEwM2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMDk0ZDNl LTA4OWMtNGM2OC04MGEyLTU2YjVjYmZjMTAzZC8wL0JBQzE4MEUzRkYzMjY2Nzgy NzdCRTI2OUVFQkVDMURFMzgyNzIyNkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoaIwDQYJKoZIhvcNAQELBQADggEBAIVfRSjtPZVSQfSBq+E9NGtMFUIJRuBF k6zkd1CmV4FpxE/u3OCiFs3JWYH+oUeQbM70xS1Wtnm6y2qmr/kj7ynu1BrPjnkY NO9865hk06uKCECpAWuL6Is74xHaUJpwTYdxDPXn02BWDr0NbUzxk7mKKsYS2QoY 0ng8tXfSc0YSTv/aWkVCmbEcr3NdKt6r5NXCP8NKTgAru8dFbeYFs/sdvJVusCa6 /s1g7yw9HCkYxdlHzMyyLESek4w982u7X/+7ftzubE8B4t0+XrwoACGvb0ngAR5H NySRiR/rA1YyHSc8sWOZz6vl7e7Gmbr90zPIrxwVemoXnjyd49KrOGs= -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:43 2025 by rpki-client