$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer (raw, json) Hash identifier: T28JiUZ5dbO4Fby/YK8vc05w4PQrMs4dCqPJcGktzTc= Subject key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EE5BF01AD20FB0B5232764EE8B2F243E35257EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft caRepository: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 01 May 2024 13:19:26 +0000 Certificate not after: Wed 30 Apr 2025 13:24:26 +0000 Subordinate resources: IP: 103.189.118.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e5:bf:01:ad:20:fb:0b:52:32:76:4e:e8:b2:f2:43:e3:52:57:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 1 13:19:26 2024 GMT Not After : Apr 30 13:24:26 2025 GMT Subject: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:74:b4:f5:af:4c:db:75:dc:aa:b1:b3:04:46: 69:2a:4a:98:c9:e3:ce:d7:82:3c:79:75:f7:25:54: 12:7b:9b:e2:f5:4c:61:ea:76:29:33:64:fb:66:86: 36:63:0c:1d:64:c7:76:bb:ad:77:31:96:b8:7c:08: a7:27:ad:d3:61:89:a7:fc:33:49:14:8d:c3:63:23: 43:3b:f7:18:7d:ea:65:12:d3:6d:ea:d4:f7:20:c1: 84:e5:d2:02:3b:10:27:83:f7:84:a1:c0:cd:ea:94: 06:f0:af:9a:b0:01:22:15:0c:ad:b2:01:ab:d6:01: 32:ef:34:c8:b2:a4:80:8b:53:a8:00:3b:c6:04:86: 70:2a:e1:de:09:87:15:cc:cc:16:4c:21:b4:11:5d: 9d:18:32:eb:ba:09:d2:ab:c1:45:7d:a6:a9:5b:4e: 5a:b2:26:47:73:11:2c:7a:4c:19:da:28:33:ff:36: 77:a7:0c:a3:e3:54:52:06:ff:9c:00:ad:bf:e0:05: d7:ef:2c:56:73:0e:32:1a:2d:82:c9:5d:f7:6c:e9: ee:a1:76:66:36:ff:90:e2:dc:ae:c9:58:48:5f:d8: 46:a7:7e:8a:88:3c:30:ee:98:ac:23:00:a2:7d:c1: 90:28:9f:26:0b:e8:ab:d3:f4:7d:48:3f:99:08:eb: 87:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.118.0/23 Signature Algorithm: sha256WithRSAEncryption 53:89:8f:ef:cb:76:84:ac:29:b7:78:5c:ea:57:6c:56:8f:38: 24:1e:b7:4a:2f:37:ed:e5:cb:b2:ea:90:fe:2c:87:49:f9:fe: 55:97:01:f6:56:14:0b:1d:2a:6e:d8:10:1a:f2:85:11:af:f8: 34:60:f5:ff:d4:b7:76:2b:34:cf:76:46:f0:ed:98:a6:45:c0: 7b:bd:fc:17:61:5e:8f:50:a2:72:6e:4f:8f:f7:86:b7:5d:45: 0c:26:c9:00:ce:2f:38:88:0d:cb:7e:af:51:2b:5c:a5:cd:87: 03:0d:39:ac:a5:0a:e0:25:be:75:74:6a:36:48:d4:03:10:d3: 0f:f6:c5:fd:c6:8e:6c:0a:e9:fe:c0:24:36:15:f6:ae:10:38: a9:f1:1b:c2:c4:5a:0e:b9:95:3b:41:fd:5a:f7:88:e9:7a:11: a3:bc:a9:f4:50:3c:0a:38:7f:a5:f7:23:f5:2b:3d:00:58:1f: 2c:09:74:4a:1f:d4:ab:29:7e:f0:4f:3d:af:05:4b:c9:fe:f1: d4:82:50:39:98:59:d1:44:a8:6a:29:2a:46:71:a0:22:87:e8: 98:97:9b:d0:d1:37:fe:88:43:c8:50:80:00:ab:10:d2:68:14: 97:fd:a0:bc:1c:c1:7d:b7:52:f2:a4:f3:a9:49:45:9b:36:66: 4a:5a:15:dd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPuW/Aa0g+wtSMnZO6LLyQ+NSV+4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMTEzMTkyNloX DTI1MDQzMDEzMjQyNlowMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBC RTA0NUUwRjRBODQxOEMzRUE3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL10tPWvTNt13KqxswRGaSpKmMnjzteCPHl19yVUEnub4vVMYep2KTNk+2aG NmMMHWTHdrutdzGWuHwIpyet02GJp/wzSRSNw2MjQzv3GH3qZRLTberU9yDBhOXS AjsQJ4P3hKHAzeqUBvCvmrABIhUMrbIBq9YBMu80yLKkgItTqAA7xgSGcCrh3gmH FczMFkwhtBFdnRgy67oJ0qvBRX2mqVtOWrImR3MRLHpMGdooM/82d6cMo+NUUgb/ nACtv+AF1+8sVnMOMhotgsld92zp7qF2Zjb/kOLcrslYSF/YRqd+iog8MO6YrCMA on3BkCifJgvoq9P0fUg/mQjrhwMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLrIKk1Vs2j0jYC+BF4PSoQYw+pzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2 LTY1NmQtNDYxZC05Y2ZmLWM4M2FjMDc0MmYyMC8wL0JBQzgyQTRENTVCMzY4RjQ4 RDgwQkUwNDVFMEY0QTg0MThDM0VBNzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvXYwDQYJKoZIhvcNAQELBQADggEBAFOJj+/LdoSsKbd4XOpXbFaPOCQet0ov N+3ly7LqkP4sh0n5/lWXAfZWFAsdKm7YEBryhRGv+DRg9f/Ut3YrNM92RvDtmKZF wHu9/BdhXo9QonJuT4/3hrddRQwmyQDOLziIDct+r1ErXKXNhwMNOaylCuAlvnV0 ajZI1AMQ0w/2xf3GjmwK6f7AJDYV9q4QOKnxG8LEWg65lTtB/Vr3iOl6EaO8qfRQ PAo4f6X3I/UrPQBYHywJdEof1KspfvBPPa8FS8n+8dSCUDmYWdFEqGopKkZxoCKH 6JiXm9DRN/6IQ8hQgACrENJoFJf9oLwcwX23UvKk86lJRZs2ZkpaFd0= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:32 2024 by rpki-client on console-ams.rpki-client.org