$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer File: BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.cer (raw, json) Hash identifier: JVPiXkKH2oo2bUs0H5NRsarZG0YCk38KmetKfnK9n2o= Subject key identifier: BE:69:E9:E2:99:CE:2D:FF:17:6C:7E:FA:B1:45:44:2D:3C:79:0D:C8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 29C4AF39F138743100BA32412874C2B1A04174FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.mft caRepository: rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 09 Nov 2023 11:49:43 +0000 Certificate not after: Thu 07 Nov 2024 11:54:43 +0000 Subordinate resources: IP: 202.80.112.0/20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c4:af:39:f1:38:74:31:00:ba:32:41:28:74:c2:b1:a0:41:74:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 9 11:49:43 2023 GMT Not After : Nov 7 11:54:43 2024 GMT Subject: CN=BE69E9E299CE2DFF176C7EFAB145442D3C790DC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6f:66:16:f5:77:8e:df:42:b5:f8:07:1d:ca: ff:75:9b:c5:57:0c:4a:ec:3a:12:d2:9f:fa:50:5f: 8e:80:59:8e:dc:f4:b1:2e:a9:a3:dc:b1:7d:8a:bb: 74:b1:dc:86:c0:20:af:a8:0f:fa:6e:87:73:78:eb: 4b:20:fb:fe:13:b4:ca:08:90:ad:28:fe:63:94:88: d1:ae:2e:b5:86:6b:f1:5a:a7:96:b0:aa:3e:b1:1e: 2b:df:04:b5:8b:9b:4f:68:b4:07:e5:da:4d:de:b5: ce:98:68:60:0e:57:78:70:cb:8b:56:b8:50:2c:94: 46:bd:e3:94:e5:b9:7b:08:24:3b:0e:7f:2d:51:3a: a7:f4:df:32:81:38:4e:76:59:91:cb:9b:82:da:c1: 62:57:c8:51:f3:7f:88:8f:8b:3b:43:6b:6e:7e:01: b0:7f:bd:22:2a:6e:aa:4c:0e:f0:c7:33:eb:04:fd: 3d:43:19:ba:e7:ea:ab:5f:3d:18:c4:2d:16:ca:3b: 79:3b:c8:a7:a5:80:ce:73:58:ee:ac:8b:c1:2f:ed: 2f:5c:6b:fd:f1:66:b6:b7:3b:c1:dc:7c:26:e4:86: ad:20:e8:60:b3:3b:61:9a:12:c3:a5:74:c9:b5:1c: df:21:46:3d:25:91:1e:8a:77:f5:43:d9:0c:7b:62: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BE:69:E9:E2:99:CE:2D:FF:17:6C:7E:FA:B1:45:44:2D:3C:79:0D:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f38a2319-b4ff-4973-8da9-c41ad2f731f3/0/BE69E9E299CE2DFF176C7EFAB145442D3C790DC8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.80.112.0/20 Signature Algorithm: sha256WithRSAEncryption 75:ff:d3:ed:05:c6:51:41:b7:01:9d:a1:22:3d:87:de:fa:48: 20:1a:24:09:6b:74:c7:b8:5e:dc:13:3e:5b:d0:fe:11:fd:90: 0f:de:67:da:84:a2:81:f4:e3:af:bc:5d:69:62:88:72:fc:89: 1e:e6:36:d1:bd:a5:57:d0:bf:ba:65:53:fc:6b:eb:a3:73:27: 32:85:4e:a7:bb:12:05:c0:37:e7:0b:31:d5:6a:be:1c:d3:ec: 9a:e6:6a:c8:73:84:7b:fb:02:71:d9:f3:6a:59:41:01:ab:b9: bf:30:12:8f:08:07:15:81:e4:f1:35:20:b5:04:a8:d4:ff:26: ca:6e:9a:19:2f:66:d5:25:3b:66:da:c5:47:50:69:70:35:3a: a9:da:df:46:10:60:af:15:06:c8:c4:19:39:d0:ca:8b:24:64: ee:60:56:e2:43:f1:40:01:98:ea:25:4e:bf:85:9c:95:59:2c: ea:ce:4c:7d:73:d4:a3:52:3c:4b:24:cc:86:4a:ef:f9:2c:4a: 80:ac:50:1b:de:3d:f2:32:4c:12:ff:52:e6:92:b1:bc:a9:55: 33:3d:ad:f4:91:97:14:41:ea:e5:44:06:f7:34:c9:52:6e:6c: 08:72:f8:96:d5:32:23:38:4a:bc:b8:8c:94:23:25:51:5c:4d: ef:a0:0f:81 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKcSvOfE4dDEAujJBKHTCsaBBdP4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwOTExNDk0M1oX DTI0MTEwNzExNTQ0M1owMzExMC8GA1UEAxMoQkU2OUU5RTI5OUNFMkRGRjE3NkM3 RUZBQjE0NTQ0MkQzQzc5MERDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNvZhb1d47fQrX4Bx3K/3WbxVcMSuw6EtKf+lBfjoBZjtz0sS6po9yxfYq7 dLHchsAgr6gP+m6Hc3jrSyD7/hO0ygiQrSj+Y5SI0a4utYZr8VqnlrCqPrEeK98E tYubT2i0B+XaTd61zphoYA5XeHDLi1a4UCyURr3jlOW5ewgkOw5/LVE6p/TfMoE4 TnZZkcubgtrBYlfIUfN/iI+LO0Nrbn4BsH+9IipuqkwO8Mcz6wT9PUMZuufqq189 GMQtFso7eTvIp6WAznNY7qyLwS/tL1xr/fFmtrc7wdx8JuSGrSDoYLM7YZoSw6V0 ybUc3yFGPSWRHop39UPZDHti8zcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL5p6eKZzi3/F2x++rFFRC08eQ3IMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMzhhMjMxOS1iNGZmLTQ5NzMtOGRhOS1jNDFhZDJmNzMxZjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzOGEyMzE5 LWI0ZmYtNDk3My04ZGE5LWM0MWFkMmY3MzFmMy8wL0JFNjlFOUUyOTlDRTJERkYx NzZDN0VGQUIxNDU0NDJEM0M3OTBEQzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATKUHAwDQYJKoZIhvcNAQELBQADggEBAHX/0+0FxlFBtwGdoSI9h976SCAaJAlr dMe4XtwTPlvQ/hH9kA/eZ9qEooH046+8XWliiHL8iR7mNtG9pVfQv7plU/xr66Nz JzKFTqe7EgXAN+cLMdVqvhzT7JrmashzhHv7AnHZ82pZQQGrub8wEo8IBxWB5PE1 ILUEqNT/JspumhkvZtUlO2baxUdQaXA1Oqna30YQYK8VBsjEGTnQyoskZO5gVuJD 8UABmOolTr+FnJVZLOrOTH1z1KNSPEskzIZK7/ksSoCsUBvePfIyTBL/UuaSsbyp VTM9rfSRlxRB6uVEBvc0yVJubAhy+JbVMiM4Sry4jJQjJVFcTe+gD4E= -----END CERTIFICATE-----Generated at Wed May 8 04:38:00 2024 by rpki-client on console-fra.rpki-client.org