$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer (raw, json) Hash identifier: P6oXU7XWOqDb/4W8z1VPB58RyLhBDWZRNnDM16uQ2jk= Subject key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34A2719F3CE8FC83CEC53D9B7959E20FEB236145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft caRepository: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 09 Sep 2023 14:51:06 +0000 Certificate not after: Sat 07 Sep 2024 14:56:06 +0000 Subordinate resources: IP: 103.195.88.0/22 IP: 2001:df6:ac00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a2:71:9f:3c:e8:fc:83:ce:c5:3d:9b:79:59:e2:0f:eb:23:61:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 14:51:06 2023 GMT Not After : Sep 7 14:56:06 2024 GMT Subject: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:9b:ab:3a:72:41:63:06:7c:b7:91:30:89: 71:3d:40:8e:73:38:d8:e1:c5:8d:17:3b:42:9e:f0: 0d:57:98:a0:df:54:12:5f:4b:d3:ef:9c:dd:a8:8d: 3c:73:a4:7b:19:92:21:26:eb:a1:bf:3e:0f:51:32: 35:eb:51:85:9d:d0:1b:d7:a0:6a:58:7d:5e:a5:7a: 69:14:17:36:b5:59:2d:be:99:04:82:ca:6c:7e:cc: ee:71:51:db:7b:86:c9:06:20:80:f5:b9:73:b3:8b: 84:ce:f4:20:6a:05:8f:12:0e:56:1a:68:51:ba:33: 85:7a:34:d0:a9:06:22:7a:0e:77:ff:7f:95:d8:38: d1:f6:b3:bc:4c:28:68:cd:95:94:b9:3d:ad:a6:36: f8:51:cf:07:1d:21:ed:9f:49:28:9d:de:bd:f2:9b: c0:1f:23:ec:a0:8d:5e:92:2e:e9:20:d3:8b:e8:94: 99:d5:30:57:73:84:14:3f:df:81:7f:45:2e:92:20: dc:de:d3:14:18:3a:82:0e:df:18:b0:a3:bf:c5:14: 85:cb:d7:55:69:f0:c9:d1:4e:79:9e:90:0c:02:8c: 78:8e:44:86:da:06:34:65:1d:fa:bb:c0:d7:8a:4a: 48:55:47:68:7c:53:f7:1f:38:f8:f9:3c:18:42:71: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.88.0/22 IPv6: 2001:df6:ac00::/48 Signature Algorithm: sha256WithRSAEncryption 50:54:82:94:fb:43:52:a1:2b:56:31:d5:81:0f:aa:03:5e:9b: c5:22:5d:bb:70:b9:33:9b:59:9e:dc:1e:7b:ef:2b:57:a2:28: 04:a8:92:d8:58:bd:19:e3:11:4b:5b:9a:2d:a4:64:b8:cb:a0: 98:7d:98:d8:88:3f:df:50:76:65:dc:c8:e8:0a:65:7f:4a:28: 54:17:1d:06:9a:66:8b:a2:a8:35:56:d8:23:17:d9:58:67:5b: 03:8c:7a:61:49:d8:48:5d:34:39:67:53:2f:4c:30:bd:ab:86: 66:ea:d3:73:b3:e9:62:50:93:a8:25:f3:69:a9:2a:cb:2c:d8: ce:19:49:03:44:35:7d:47:b5:49:23:33:8d:27:cd:eb:87:53: f2:b5:09:8b:78:5f:08:f1:97:c3:ea:51:5d:76:5c:67:bc:69: 37:3c:01:da:86:ff:40:14:fe:2d:1f:5e:b3:ba:df:df:d8:5b: e6:83:7b:9b:96:52:9c:09:7c:76:9c:61:b5:2a:0e:2b:ac:2d: dc:23:d8:84:99:77:a5:08:4b:72:a5:b7:b9:b4:1c:21:78:5e: eb:bc:56:e8:58:68:14:86:fc:23:62:9a:46:fe:88:e4:a8:ff: 9b:51:dd:ce:8a:fb:46:aa:61:8d:d7:ed:57:ab:bc:62:d3:ee: e8:4e:4a:40 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUNKJxnzzo/IPOxT2beVniD+sjYUUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwOTE0NTEwNloX DTI0MDkwNzE0NTYwNlowMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4 QUNGREQ5RjRERUQzQTBFRDVCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuOm6s6ckFjBny3kTCJcT1AjnM42OHFjRc7Qp7wDVeYoN9UEl9L0++c3aiN PHOkexmSISbrob8+D1EyNetRhZ3QG9egalh9XqV6aRQXNrVZLb6ZBILKbH7M7nFR 23uGyQYggPW5c7OLhM70IGoFjxIOVhpoUbozhXo00KkGInoOd/9/ldg40fazvEwo aM2VlLk9raY2+FHPBx0h7Z9JKJ3evfKbwB8j7KCNXpIu6SDTi+iUmdUwV3OEFD/f gX9FLpIg3N7TFBg6gg7fGLCjv8UUhcvXVWnwydFOeZ6QDAKMeI5EhtoGNGUd+rvA 14pKSFVHaHxT9x84+Pk8GEJxtr0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFKKeZ6UvVBS9vWKz92fTe06DtW7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mOThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMz LWU0ZTEtNDFhMS1hYWYwLWQ2MTNhY2E0OTMwYy8wLzUyOEE3OTlFOTRCRDUwNTJG NkY1OEFDRkREOUY0REVEM0EwRUQ1QkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnw1gwDwQCAAIwCQMHACABDfasADANBgkqhkiG9w0BAQsFAAOCAQEAUFSClPtD UqErVjHVgQ+qA16bxSJdu3C5M5tZntwee+8rV6IoBKiS2Fi9GeMRS1uaLaRkuMug mH2Y2Ig/31B2ZdzI6Aplf0ooVBcdBppmi6KoNVbYIxfZWGdbA4x6YUnYSF00OWdT L0wwvauGZurTc7PpYlCTqCXzaakqyyzYzhlJA0Q1fUe1SSMzjSfN64dT8rUJi3hf CPGXw+pRXXZcZ7xpNzwB2ob/QBT+LR9es7rf39hb5oN7m5ZSnAl8dpxhtSoOK6wt 3CPYhJl3pQhLcqW3ubQcIXhe67xW6FhoFIb8I2KaRv6I5Kj/m1Hdzor7Rqphjdft V6u8YtPu6E5KQA== -----END CERTIFICATE-----Generated at Fri May 3 03:08:27 2024 by rpki-client on console-ams.rpki-client.org