$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer File: BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer (raw, json) Hash identifier: AjgFAq7GWGHLZekIx4tzKwucBnhmyCdke9DmkHXHnWs= Subject key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F25CB6C85068C3060AFABC786940AF1C2C780CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft caRepository: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 07:58:31 +0000 Certificate not after: Mon 30 Jun 2025 08:03:31 +0000 Subordinate resources: IP: 45.64.100.0/22 IP: 103.21.84.0/22 IP: 111.67.64.0/19 IP: 182.50.240.0/20 IP: 202.61.100.0/23 IP: 2001:df0:cb::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:25:cb:6c:85:06:8c:30:60:af:ab:c7:86:94:0a:f1:c2:c7:80:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 1 07:58:31 2024 GMT Not After : Jun 30 08:03:31 2025 GMT Subject: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7c:04:81:af:55:10:f9:8e:75:66:7b:5d:48: 24:65:26:a0:f0:08:84:84:e2:5b:8c:ad:52:55:9d: 34:57:e4:ed:f9:dc:b7:ab:d7:dc:65:6d:e1:22:9f: 28:6c:cd:79:04:e5:3c:6a:33:cc:36:85:d4:62:b6: 73:f5:ea:d7:38:bc:57:87:0e:74:bc:80:6d:83:c7: de:34:1f:16:f1:7c:f1:61:de:0c:e2:00:db:78:6b: ec:21:32:ac:09:e1:8d:87:1c:fb:6b:93:aa:4b:98: a4:7d:74:b8:83:f8:e7:9f:8d:fd:10:30:f1:cb:b3: e6:7d:0b:17:55:84:d6:1d:3e:cf:59:b7:42:eb:da: ca:80:3d:20:4f:77:ad:72:2b:a4:6b:e7:ac:8d:be: 7c:d5:59:11:f0:ee:a5:50:5c:7c:f5:60:c2:43:91: fb:3f:f3:d9:9e:b6:37:cd:04:9c:40:70:9d:a5:3d: 0c:7a:18:3b:9e:b8:84:18:c9:a6:e9:3a:9c:b9:8f: 53:f6:9e:4c:42:4b:e0:89:2f:99:07:f4:75:ba:73: 30:60:68:b0:25:58:21:04:e8:cf:c6:08:b8:f4:8f: fb:ba:71:cc:f9:b5:b9:cc:57:84:7e:e1:d3:e1:a8: b9:3a:da:19:ba:4a:58:13:6c:b7:27:d7:9a:d7:ec: 51:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.100.0/22 103.21.84.0/22 111.67.64.0/19 182.50.240.0/20 202.61.100.0/23 IPv6: 2001:df0:cb::/48 Signature Algorithm: sha256WithRSAEncryption 28:5b:ec:f9:27:09:72:2a:0f:e1:0c:81:a5:40:45:5b:4a:af: dc:61:c4:2b:5e:d3:55:6e:39:09:cd:fc:7d:dd:79:71:77:2a: 33:c5:a5:c0:8b:58:e8:f9:cc:09:a8:a8:dd:44:9f:e5:6a:3d: 33:0d:a2:9c:81:e7:07:d7:d8:82:3f:91:6c:70:93:21:92:f1: b2:e3:8d:de:85:44:2b:c3:9a:41:ac:9e:fe:67:b5:93:95:93: ed:6e:df:d6:fd:9e:7d:0b:83:de:53:1a:a5:c0:73:9f:54:89: a3:a6:23:19:3c:f8:84:d4:a3:6d:94:56:8b:b5:19:26:0d:ff: d2:27:a0:ab:0f:c3:b4:3e:11:ea:8a:5b:9e:f1:a2:eb:2e:ea: d8:bc:53:7e:87:c2:c3:46:71:2b:23:f5:16:1d:98:c5:5c:b1: 9d:e8:bd:af:79:0d:6c:52:b4:28:99:46:6a:52:6b:52:8d:9c: 5f:8b:7a:2a:41:03:d2:2d:7b:32:f1:71:77:a9:45:71:6c:c4: ff:3b:41:12:be:9c:6d:b4:7f:4a:f1:4c:41:b9:d5:6b:c8:48: 78:9c:bd:9e:88:2d:de:34:69:44:fc:9b:b6:76:47:a2:ab:f2: b9:e2:86:a1:d3:ef:20:0f:3a:66:c1:f5:ef:50:2f:56:76:38: d5:04:87:1d -----BEGIN CERTIFICATE----- MIIF7jCCBNagAwIBAgIUHyXLbIUGjDBgr6vHhpQK8cLHgMowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTA3NTgzMVoX DTI1MDYzMDA4MDMzMVowMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIz QzdBM0RGRDNGOTJBRkU4QUEyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZ8BIGvVRD5jnVme11IJGUmoPAIhITiW4ytUlWdNFfk7fnct6vX3GVt4SKf KGzNeQTlPGozzDaF1GK2c/Xq1zi8V4cOdLyAbYPH3jQfFvF88WHeDOIA23hr7CEy rAnhjYcc+2uTqkuYpH10uIP455+N/RAw8cuz5n0LF1WE1h0+z1m3QuvayoA9IE93 rXIrpGvnrI2+fNVZEfDupVBcfPVgwkOR+z/z2Z62N80EnEBwnaU9DHoYO564hBjJ puk6nLmPU/aeTEJL4IkvmQf0dbpzMGBosCVYIQToz8YIuPSP+7pxzPm1ucxXhH7h 0+GouTraGbpKWBNstyfXmtfsUQ0CAwEAAaOCAuEwggLdMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFL8HbqJKaM8VLDI8ej39P5Kv6KorMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MGRhNDQ3 LWExMzgtNDYyNS1hNDIwLWE3MTFhYzI0MzUxOS8wL0JGMDc2RUEyNEE2OENGMTUy QzMyM0M3QTNERkQzRjkyQUZFOEFBMkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwSAYIKwYBBQUHAQcBAf8EOTA3MCQEAgABMB4D BAItQGQDBAJnFVQDBAVvQ0ADBAS2MvADBAHKPWQwDwQCAAIwCQMHACABDfAAyzAN BgkqhkiG9w0BAQsFAAOCAQEAKFvs+ScJcioP4QyBpUBFW0qv3GHEK17TVW45Cc38 fd15cXcqM8WlwItY6PnMCaio3USf5Wo9Mw2inIHnB9fYgj+RbHCTIZLxsuON3oVE K8OaQaye/me1k5WT7W7f1v2efQuD3lMapcBzn1SJo6YjGTz4hNSjbZRWi7UZJg3/ 0iegqw/DtD4R6opbnvGi6y7q2LxTfofCw0ZxKyP1Fh2YxVyxnei9r3kNbFK0KJlG alJrUo2cX4t6KkED0i17MvFxd6lFcWzE/ztBEr6cbbR/SvFMQbnVa8hIeJy9nogt 3jRpRPybtnZHoqvyueKGodPvIA86ZsH171AvVnY41QSHHQ== -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:24 2025 by rpki-client