$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BF00BBF622014234CC4A26C23F64AC5C143802B6.cer File: BF00BBF622014234CC4A26C23F64AC5C143802B6.cer (raw, json) Hash identifier: tLe27Fm0NWeLsv8oylZePXe+UetF1/LPJnMLlKlelGg= Subject key identifier: BF:00:BB:F6:22:01:42:34:CC:4A:26:C2:3F:64:AC:5C:14:38:02:B6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 259C99CA89C5D353F079C11CC4755A9B2065E5C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0/BF00BBF622014234CC4A26C23F64AC5C143802B6.mft caRepository: rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 01 May 2024 17:17:55 +0000 Certificate not after: Wed 30 Apr 2025 17:22:55 +0000 Subordinate resources: IP: 103.169.8.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:9c:99:ca:89:c5:d3:53:f0:79:c1:1c:c4:75:5a:9b:20:65:e5:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 1 17:17:55 2024 GMT Not After : Apr 30 17:22:55 2025 GMT Subject: CN=BF00BBF622014234CC4A26C23F64AC5C143802B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:de:38:7b:be:1f:c0:bc:db:a9:7c:2b:af:23: 9c:a8:fe:08:b0:5b:ef:30:52:6a:57:cc:88:e6:13: 35:59:14:95:7a:21:ca:bf:34:43:d3:79:24:ff:08: 34:c1:28:be:a5:52:bc:4f:ac:84:fe:10:21:10:17: 64:e2:3f:7f:76:61:56:d6:d7:10:26:6b:b8:99:f8: 1d:b3:82:56:5f:b6:09:60:94:cf:7e:17:17:65:62: 1e:73:96:c4:22:61:b6:b4:29:75:87:79:a7:7c:1e: 8f:ef:8a:27:82:06:b1:da:44:68:15:b3:fd:67:50: 43:a8:d6:f8:e6:5b:32:71:0f:53:56:13:9a:50:1b: 1f:9f:ea:5b:e4:2d:01:4a:ad:03:71:e2:3b:b2:6d: 85:dd:95:c9:81:8f:7d:c9:3e:55:ee:f8:12:3c:ba: a6:c6:ec:9f:0d:ae:a6:b6:21:64:33:79:53:99:e7: fd:2d:c9:6d:0e:f3:c5:b0:70:93:27:79:50:9c:a6: 0a:54:cb:5a:aa:da:e4:cc:e1:96:43:ab:73:d1:2c: 7e:37:49:2c:58:9a:f0:ea:b1:77:f5:c3:53:15:f5: 94:88:00:3c:da:0f:1c:c3:c3:c5:e8:ff:db:59:7a: b6:3a:15:fe:e7:3e:f5:e1:95:af:4c:aa:f7:3c:2e: f6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BF:00:BB:F6:22:01:42:34:CC:4A:26:C2:3F:64:AC:5C:14:38:02:B6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/46cbb6ae-138e-4d2b-93f1-e6b23e6fe8fb/0/BF00BBF622014234CC4A26C23F64AC5C143802B6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.8.0/23 Signature Algorithm: sha256WithRSAEncryption 33:eb:9b:75:71:45:f0:20:b5:bb:8c:2f:05:d6:44:90:46:c8: f3:14:3f:1e:fd:45:a0:a9:d6:e2:e9:64:66:1a:80:49:cf:6d: 82:40:cc:af:5c:a5:4d:e0:75:cc:63:34:97:23:8c:2b:ee:e9: ee:ef:27:18:35:d8:0e:9a:4f:27:7e:6e:fd:66:b0:16:82:8d: bf:11:1f:3f:1f:ec:e0:59:1b:10:f6:c5:b3:21:f0:cf:6b:95: fa:ee:49:3b:ec:7e:cd:b5:ed:ae:78:20:b5:b0:3c:f3:a1:be: c7:61:4f:15:a9:4c:1a:0a:83:f5:8b:1e:16:fb:f2:b9:90:80: 68:c9:78:46:2c:7b:d2:cd:b8:ed:31:dc:b4:7a:0e:f9:0d:8b: 8d:22:c8:bc:a6:9c:6d:8d:ce:6d:75:7c:74:96:aa:97:13:6d: 1e:1e:8e:6d:0f:67:e8:d3:6b:83:0d:26:1c:18:b0:27:af:19: bc:99:f3:64:32:13:68:40:d6:22:a3:74:ba:7d:fd:64:35:cc: d0:14:90:28:64:29:b3:0f:96:37:0f:11:28:8d:ac:86:f5:47: e7:28:11:fb:2f:01:9a:e8:27:1b:66:db:f2:99:2c:22:dd:1d: 5f:95:4b:b8:26:e1:12:36:9c:6d:25:e0:ed:43:91:e0:f9:2e: ec:26:da:65 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJZyZyonF01PwecEcxHVamyBl5cAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMTE3MTc1NVoX DTI1MDQzMDE3MjI1NVowMzExMC8GA1UEAxMoQkYwMEJCRjYyMjAxNDIzNENDNEEy NkMyM0Y2NEFDNUMxNDM4MDJCNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPeOHu+H8C826l8K68jnKj+CLBb7zBSalfMiOYTNVkUlXohyr80Q9N5JP8I NMEovqVSvE+shP4QIRAXZOI/f3ZhVtbXECZruJn4HbOCVl+2CWCUz34XF2ViHnOW xCJhtrQpdYd5p3wej++KJ4IGsdpEaBWz/WdQQ6jW+OZbMnEPU1YTmlAbH5/qW+Qt AUqtA3HiO7Jthd2VyYGPfck+Ve74Ejy6psbsnw2uprYhZDN5U5nn/S3JbQ7zxbBw kyd5UJymClTLWqra5MzhlkOrc9EsfjdJLFia8Oqxd/XDUxX1lIgAPNoPHMPDxej/ 21l6tjoV/uc+9eGVr0yq9zwu9gkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL8Au/YiAUI0zEomwj9krFwUOAK2MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NmNiYjZhZS0xMzhlLTRkMmItOTNmMS1lNmIyM2U2ZmU4ZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2Y2JiNmFl LTEzOGUtNGQyYi05M2YxLWU2YjIzZTZmZThmYi8wL0JGMDBCQkY2MjIwMTQyMzRD QzRBMjZDMjNGNjRBQzVDMTQzODAyQjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqQgwDQYJKoZIhvcNAQELBQADggEBADPrm3VxRfAgtbuMLwXWRJBGyPMUPx79 RaCp1uLpZGYagEnPbYJAzK9cpU3gdcxjNJcjjCvu6e7vJxg12A6aTyd+bv1msBaC jb8RHz8f7OBZGxD2xbMh8M9rlfruSTvsfs217a54ILWwPPOhvsdhTxWpTBoKg/WL Hhb78rmQgGjJeEYse9LNuO0x3LR6DvkNi40iyLymnG2Nzm11fHSWqpcTbR4ejm0P Z+jTa4MNJhwYsCevGbyZ82QyE2hA1iKjdLp9/WQ1zNAUkChkKbMPljcPESiNrIb1 R+coEfsvAZroJxtm2/KZLCLdHV+VS7gm4RI2nG0l4O1DkeD5Luwm2mU= -----END CERTIFICATE-----Generated at Wed May 8 09:50:43 2024 by rpki-client on console-fra.rpki-client.org