$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer File: BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.cer (raw, json) Hash identifier: y8pYtAQ3VurTHpQKrvHJ3JzSUDyrxtb/0rFHTcf25hk= Subject key identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 410C5CB890904EABB16FEF4137F5D1E98C1C62C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft caRepository: rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 04 Dec 2024 11:09:06 +0000 Certificate not after: Wed 03 Dec 2025 11:14:06 +0000 Subordinate resources: IP: 103.121.108.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:0c:5c:b8:90:90:4e:ab:b1:6f:ef:41:37:f5:d1:e9:8c:1c:62:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 4 11:09:06 2024 GMT Not After : Dec 3 11:14:06 2025 GMT Subject: CN=BE77663F7F3591A0E64D8D5AC98F2635919B4B3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:a0:13:db:e5:76:7e:f9:eb:d4:47:c4:57: 7a:5f:07:13:17:12:07:c7:78:02:32:69:67:52:62: 30:a1:e6:f9:1a:37:a7:12:ef:e5:eb:3c:d8:ed:d0: a7:be:c1:fe:42:d3:f6:ad:f7:06:3f:23:7f:35:23: b1:5d:80:22:0c:06:b6:7c:e5:c6:09:9a:ad:eb:ed: 8d:39:21:d5:27:7e:cb:7a:b8:29:c8:9b:a5:7b:91: d5:b4:23:77:f2:67:35:2a:c6:88:00:de:60:d5:73: b2:e0:a7:bf:7c:d1:36:9b:19:00:23:01:cc:ce:b5: f0:a1:3f:08:04:0d:2a:1e:1a:2e:8f:7f:df:72:23: 74:04:a5:df:bc:da:c3:be:e9:86:e2:20:4d:86:66: 48:f9:88:8f:94:51:dc:f5:82:ca:28:01:62:d1:dd: ca:90:f4:4d:85:6a:28:50:c2:6f:24:ff:68:9b:2b: 64:7b:2a:f6:b0:46:c1:6b:f9:6a:b5:4d:25:e3:e4: b8:5f:b0:92:c0:00:bc:19:2d:87:86:3c:c8:bd:45: d5:41:0a:b5:46:6c:f5:b5:fc:aa:83:c9:0c:64:a2: 4b:d1:0b:2a:fa:bd:92:6e:89:ac:42:72:b4:23:f3: e8:8d:0d:2b:a0:bb:d8:86:c2:aa:75:30:5f:57:2c: 29:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BE:77:66:3F:7F:35:91:A0:E6:4D:8D:5A:C9:8F:26:35:91:9B:4B:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/44b4fe93-7296-48b4-aa0d-c8a5a3dfd59a/0/BE77663F7F3591A0E64D8D5AC98F2635919B4B3B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.121.108.0/22 Signature Algorithm: sha256WithRSAEncryption 20:86:f1:22:fa:2e:34:f6:d7:15:f6:0f:48:20:db:3c:be:f6: de:58:fd:dd:1d:a4:1e:10:e1:86:60:04:44:78:8c:06:66:56: fd:6d:02:ab:9b:fb:a7:9e:1d:0e:7b:8e:53:0c:b3:c9:a7:3c: 88:1f:c1:db:22:23:e2:ac:69:26:75:f3:b0:7e:4a:e3:3c:1d: 7a:a8:23:6c:fa:b0:ad:d8:e1:41:9c:3c:7b:cc:2a:6f:83:ad: a9:96:86:da:d5:30:5d:cc:a1:d0:e0:14:57:c1:76:8e:cd:dd: 7f:c3:19:7c:8f:f1:40:d7:1c:06:b3:bc:ce:d6:11:0e:82:15: 75:65:f7:e7:61:6e:5a:66:ed:92:8a:fd:f0:72:79:4e:6c:cd: 35:65:7e:fc:d9:db:85:68:65:a8:f2:d7:36:5c:12:47:be:f7: 27:3a:75:bc:1d:b2:72:75:7f:72:1b:0c:dc:61:67:db:d8:d5: 64:d3:35:b6:5f:37:78:a1:40:e6:fa:67:aa:d1:9f:74:c9:5c: fa:38:a4:5c:66:89:f6:e2:5b:8d:8e:36:80:92:9e:ac:45:da: d7:cd:28:2b:cd:6a:b5:8c:27:98:7c:fd:16:9f:2d:be:a3:79: f6:e0:f6:73:5d:f3:bd:4d:6b:57:a6:da:b3:b6:36:5b:5e:20: ee:2f:ff:15 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQQxcuJCQTquxb+9BN/XR6YwcYsUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNDExMDkwNloX DTI1MTIwMzExMTQwNlowMzExMC8GA1UEAxMoQkU3NzY2M0Y3RjM1OTFBMEU2NEQ4 RDVBQzk4RjI2MzU5MTlCNEIzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwooBPb5XZ++evUR8RXel8HExcSB8d4AjJpZ1JiMKHm+Ro3pxLv5es82O3Q p77B/kLT9q33Bj8jfzUjsV2AIgwGtnzlxgmarevtjTkh1Sd+y3q4KcibpXuR1bQj d/JnNSrGiADeYNVzsuCnv3zRNpsZACMBzM618KE/CAQNKh4aLo9/33IjdASl37za w77phuIgTYZmSPmIj5RR3PWCyigBYtHdypD0TYVqKFDCbyT/aJsrZHsq9rBGwWv5 arVNJePkuF+wksAAvBkth4Y8yL1F1UEKtUZs9bX8qoPJDGSiS9ELKvq9km6JrEJy tCPz6I0NK6C72IbCqnUwX1csKdcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL53Zj9/NZGg5k2NWsmPJjWRm0s7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NGI0ZmU5My03Mjk2LTQ4YjQtYWEwZC1jOGE1YTNkZmQ1OWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0YjRmZTkz LTcyOTYtNDhiNC1hYTBkLWM4YTVhM2RmZDU5YS8wL0JFNzc2NjNGN0YzNTkxQTBF NjREOEQ1QUM5OEYyNjM1OTE5QjRCM0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJneWwwDQYJKoZIhvcNAQELBQADggEBACCG8SL6LjT21xX2D0gg2zy+9t5Y/d0d pB4Q4YZgBER4jAZmVv1tAqub+6eeHQ57jlMMs8mnPIgfwdsiI+KsaSZ187B+SuM8 HXqoI2z6sK3Y4UGcPHvMKm+DramWhtrVMF3ModDgFFfBdo7N3X/DGXyP8UDXHAaz vM7WEQ6CFXVl9+dhblpm7ZKK/fByeU5szTVlfvzZ24VoZajy1zZcEke+9yc6dbwd snJ1f3IbDNxhZ9vY1WTTNbZfN3ihQOb6Z6rRn3TJXPo4pFxmifbiW42ONoCSnqxF 2tfNKCvNarWMJ5h8/RafLb6jefbg9nNd871Na1em2rO2NlteIO4v/xU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:11:59 2025 by rpki-client