$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer File: BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer (raw, json) Hash identifier: lHJWVSUmsjucz4Lhl2FSXJSjmtZ8UgMOOgE3onegAO0= Subject key identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 16A2D8631F5D4FCD354243C7667A8F726205607B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft caRepository: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 03 Jan 2024 06:57:40 +0000 Certificate not after: Wed 01 Jan 2025 07:02:40 +0000 Subordinate resources: IP: 103.121.108.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a2:d8:63:1f:5d:4f:cd:35:42:43:c7:66:7a:8f:72:62:05:60:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 3 06:57:40 2024 GMT Not After : Jan 1 07:02:40 2025 GMT Subject: CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:a0:13:db:e5:76:7e:f9:eb:d4:47:c4:57: 7a:5f:07:13:17:12:07:c7:78:02:32:69:67:52:62: 30:a1:e6:f9:1a:37:a7:12:ef:e5:eb:3c:d8:ed:d0: a7:be:c1:fe:42:d3:f6:ad:f7:06:3f:23:7f:35:23: b1:5d:80:22:0c:06:b6:7c:e5:c6:09:9a:ad:eb:ed: 8d:39:21:d5:27:7e:cb:7a:b8:29:c8:9b:a5:7b:91: d5:b4:23:77:f2:67:35:2a:c6:88:00:de:60:d5:73: b2:e0:a7:bf:7c:d1:36:9b:19:00:23:01:cc:ce:b5: f0:a1:3f:08:04:0d:2a:1e:1a:2e:8f:7f:df:72:23: 74:04:a5:df:bc:da:c3:be:e9:86:e2:20:4d:86:66: 48:f9:88:8f:94:51:dc:f5:82:ca:28:01:62:d1:dd: ca:90:f4:4d:85:6a:28:50:c2:6f:24:ff:68:9b:2b: 64:7b:2a:f6:b0:46:c1:6b:f9:6a:b5:4d:25:e3:e4: b8:5f:b0:92:c0:00:bc:19:2d:87:86:3c:c8:bd:45: d5:41:0a:b5:46:6c:f5:b5:fc:aa:83:c9:0c:64:a2: 4b:d1:0b:2a:fa:bd:92:6e:89:ac:42:72:b4:23:f3: e8:8d:0d:2b:a0:bb:d8:86:c2:aa:75:30:5f:57:2c: 29:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.108.0/22 Signature Algorithm: sha256WithRSAEncryption 11:38:9c:a1:2c:ab:e5:39:31:b7:1a:c2:39:77:86:d0:22:5f: 66:99:cc:40:43:4e:fc:f4:e8:93:1b:4a:39:76:ab:79:30:21: 45:17:7f:5b:da:b2:f4:c4:2a:bb:ac:5a:86:f2:e9:07:50:8d: d2:89:c7:b9:8b:38:8e:97:36:14:28:4a:b0:5b:88:39:24:93: 9f:f9:fd:ef:bf:98:93:62:bd:58:32:7d:05:da:b5:30:9c:dc: a5:af:d5:58:c8:e2:02:fb:80:55:35:93:51:59:d1:2e:21:51: d3:c6:7f:fb:63:de:36:b8:78:cb:e0:2c:ea:29:d2:c3:8c:16: 8f:5d:bd:d1:16:6e:ba:9b:b3:0d:8c:a7:3f:40:53:b1:f7:c8: 9f:7a:55:67:1c:41:0e:97:da:0a:ef:ee:b9:3a:60:6c:f7:f2: 1e:5c:93:b5:9a:e5:5c:72:71:98:c2:b4:e3:e9:6b:89:ff:82: 80:69:ae:a5:0c:37:b7:24:a5:a9:8e:cd:1d:46:44:60:ae:9a: 31:4a:49:fb:74:7e:3b:11:ec:8c:b7:f3:18:15:99:5e:dc:20: 1c:7f:d7:e2:51:9b:f5:f4:d6:6b:1b:84:6c:2c:5c:d5:80:bf: bf:2f:9d:9e:95:9b:11:ac:00:f9:a5:25:ba:73:0a:cc:c1:dd: 9e:8e:c6:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFqLYYx9dT801QkPHZnqPcmIFYHswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMzA2NTc0MFoX DTI1MDEwMTA3MDI0MFowMzExMC8GA1UEAxMoQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4 RDVBQzk4RjI2MzU5MTlCNEIzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwooBPb5XZ++evUR8RXel8HExcSB8d4AjJpZ1JiMKHm+Ro3pxLv5es82O3Q p77B/kLT9q33Bj8jfzUjsV2AIgwGtnzlxgmarevtjTkh1Sd+y3q4KcibpXuR1bQj d/JnNSrGiADeYNVzsuCnv3zRNpsZACMBzM618KE/CAQNKh4aLo9/33IjdASl37za w77phuIgTYZmSPmIj5RR3PWCyigBYtHdypD0TYVqKFDCbyT/aJsrZHsq9rBGwWv5 arVNJePkuF+wksAAvBkth4Y8yL1F1UEKtUZs9bX8qoPJDGSiS9ELKvq9km6JrEJy tCPz6I0NK6C72IbCqnUwX1csKdcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL53Zj9/NZGg5k2NWsmPJjWRm0s7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NGI0ZmU5My03Mjk2LTQ4YjQtYWEwZC1jOGE1YTNkZmQ1OWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjRmZTkz LTcyOTYtNDhiNC1hYTBkLWM4YTVhM2RmZDU5YS8wL0JFNzc2NjNGN0YzNTkxQTBF NjREOEQ1QUM5OEYyNjM1OTE5QjRCM0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJneWwwDQYJKoZIhvcNAQELBQADggEBABE4nKEsq+U5Mbcawjl3htAiX2aZzEBD Tvz06JMbSjl2q3kwIUUXf1vasvTEKrusWoby6QdQjdKJx7mLOI6XNhQoSrBbiDkk k5/5/e+/mJNivVgyfQXatTCc3KWv1VjI4gL7gFU1k1FZ0S4hUdPGf/tj3ja4eMvg LOop0sOMFo9dvdEWbrqbsw2Mpz9AU7H3yJ96VWccQQ6X2grv7rk6YGz38h5ck7Wa 5VxycZjCtOPpa4n/goBprqUMN7ckpamOzR1GRGCumjFKSft0fjsR7Iy38xgVmV7c IBx/1+JRm/X01msbhGwsXNWAv78vnZ6VmxGsAPmlJbpzCszB3Z6OxpY= -----END CERTIFICATE-----Generated at Wed May 8 04:38:00 2024 by rpki-client on console-fra.rpki-client.org