$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BB64FDB64281947C3567104C08735A011C6210F4.cer File: BB64FDB64281947C3567104C08735A011C6210F4.cer (raw, json) Hash identifier: pEtIaHY5iap/IvElRYABxYdVF1fBRKz4rw1tRF3dwSo= Subject key identifier: BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6506CFEFB63D1C4391190E032F888318C9FE91D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.mft caRepository: rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 18 Apr 2024 19:03:00 +0000 Certificate not after: Thu 17 Apr 2025 19:08:00 +0000 Subordinate resources: IP: 103.169.192.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:06:cf:ef:b6:3d:1c:43:91:19:0e:03:2f:88:83:18:c9:fe:91:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 18 19:03:00 2024 GMT Not After : Apr 17 19:08:00 2025 GMT Subject: CN=BB64FDB64281947C3567104C08735A011C6210F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7d:d5:1b:0a:61:17:4b:bd:f2:67:e0:a4:2e: 46:ac:53:db:92:89:55:1e:7c:f7:10:28:2d:d2:30: a3:61:9c:e2:b4:6f:f8:8b:a3:ca:e7:e6:17:91:f2: 1d:23:b4:8b:eb:be:69:0a:1a:7d:70:a1:cf:5c:f6: 5e:0b:e8:ad:a8:bd:9b:05:6d:fd:54:7e:35:66:b6: 0e:3e:ca:2d:24:98:0e:ff:ef:de:48:b6:2f:d9:07: 8e:2f:1f:5d:a9:09:1d:98:43:19:ed:87:53:48:4c: 8e:35:19:08:fe:86:d2:78:3d:08:22:03:77:95:af: ff:02:74:94:3a:ae:8a:60:02:22:88:79:bc:39:64: 8f:b0:80:a0:02:91:36:14:03:71:08:c0:2e:74:a1: 28:c3:41:db:6f:d0:f9:88:4c:94:fc:a8:11:fb:bf: ac:65:49:fd:71:26:cd:65:1f:e5:93:ce:c8:46:4d: 7b:29:2d:5e:ae:9d:04:b5:32:12:8b:18:29:e9:7b: 3d:86:e7:56:e5:bf:b4:d5:61:b0:f4:98:ff:81:85: 48:e7:5c:f1:75:96:d5:18:76:42:f1:3a:41:e4:ba: 19:60:00:df:c8:2c:8c:8f:20:bc:ca:5f:d8:82:3c: a3:df:03:60:fb:00:d4:fc:95:93:70:e7:50:f2:ff: a5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BB:64:FD:B6:42:81:94:7C:35:67:10:4C:08:73:5A:01:1C:62:10:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b4a02d37-3b9d-453a-8c81-328e540141fd/0/BB64FDB64281947C3567104C08735A011C6210F4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.192.0/23 Signature Algorithm: sha256WithRSAEncryption 91:c6:7c:98:56:d5:b4:86:41:63:f9:01:20:ef:b9:23:06:45: 04:8a:29:06:18:f6:0d:b1:7a:52:46:ee:1a:42:bf:69:e3:98: 6f:35:03:50:26:ae:2c:d7:01:f4:09:a2:01:55:e6:12:eb:50: 73:7a:f0:c5:53:27:a1:13:11:4e:b0:4e:55:d0:cc:43:cf:20: f8:fb:3a:3b:e1:a9:02:32:86:fd:3e:73:e7:6f:9a:01:78:44: 08:88:29:83:98:b0:ae:72:68:ed:21:c4:3d:52:e5:ae:d3:b1: 9d:45:69:fd:90:f1:38:f9:06:71:9d:a6:e0:3b:b1:32:dd:e3: 57:9a:aa:b2:75:cb:c8:57:ee:3f:10:a5:41:7f:d3:77:38:fb: 2c:0f:c6:2c:be:a3:29:09:b1:b5:3c:77:5a:71:59:48:24:ce: 18:3f:eb:74:2b:fd:6c:d9:79:7e:b4:2c:4c:c1:2c:03:8c:4c: c0:82:5a:21:2d:da:d5:26:d4:ca:ca:39:25:75:a8:dc:ef:87: 46:b4:2d:a9:a2:b4:68:2e:69:b3:fc:75:e1:74:f3:f8:cf:fd: 50:40:94:6e:aa:04:de:70:7a:e5:4b:77:70:36:e0:d8:db:5c: 64:e6:fc:9e:53:78:e8:93:62:33:83:43:95:3c:77:5f:d2:cb: 6f:b8:56:84 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZQbP77Y9HEORGQ4DL4iDGMn+kdAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxODE5MDMwMFoX DTI1MDQxNzE5MDgwMFowMzExMC8GA1UEAxMoQkI2NEZEQjY0MjgxOTQ3QzM1Njcx MDRDMDg3MzVBMDExQzYyMTBGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKh91RsKYRdLvfJn4KQuRqxT25KJVR589xAoLdIwo2Gc4rRv+IujyufmF5Hy HSO0i+u+aQoafXChz1z2Xgvorai9mwVt/VR+NWa2Dj7KLSSYDv/v3ki2L9kHji8f XakJHZhDGe2HU0hMjjUZCP6G0ng9CCIDd5Wv/wJ0lDquimACIoh5vDlkj7CAoAKR NhQDcQjALnShKMNB22/Q+YhMlPyoEfu/rGVJ/XEmzWUf5ZPOyEZNeyktXq6dBLUy EosYKel7PYbnVuW/tNVhsPSY/4GFSOdc8XWW1Rh2QvE6QeS6GWAA38gsjI8gvMpf 2II8o98DYPsA1PyVk3DnUPL/pfcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLtk/bZCgZR8NWcQTAhzWgEcYhD0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNGEwMmQzNy0zYjlkLTQ1M2EtOGM4MS0zMjhlNTQwMTQxZmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I0YTAyZDM3 LTNiOWQtNDUzYS04YzgxLTMyOGU1NDAxNDFmZC8wL0JCNjRGREI2NDI4MTk0N0Mz NTY3MTA0QzA4NzM1QTAxMUM2MjEwRjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqcAwDQYJKoZIhvcNAQELBQADggEBAJHGfJhW1bSGQWP5ASDvuSMGRQSKKQYY 9g2xelJG7hpCv2njmG81A1AmrizXAfQJogFV5hLrUHN68MVTJ6ETEU6wTlXQzEPP IPj7OjvhqQIyhv0+c+dvmgF4RAiIKYOYsK5yaO0hxD1S5a7TsZ1Faf2Q8Tj5BnGd puA7sTLd41eaqrJ1y8hX7j8QpUF/03c4+ywPxiy+oykJsbU8d1pxWUgkzhg/63Qr /WzZeX60LEzBLAOMTMCCWiEt2tUm1MrKOSV1qNzvh0a0LamitGguabP8deF08/jP /VBAlG6qBN5weuVLd3A24NjbXGTm/J5TeOiTYjODQ5U8d1/Sy2+4VoQ= -----END CERTIFICATE-----Generated at Thu May 9 00:29:17 2024 by rpki-client on console-ams.rpki-client.org