$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer File: 528098CFFE1330AD3E557BCFEC2D8B4692F51248.cer (raw, json) Hash identifier: NDrM6RoYgdHmSN7BgCK6coVeZxQfmGu8MQnBq20J6Eo= Subject key identifier: 52:80:98:CF:FE:13:30:AD:3E:55:7B:CF:EC:2D:8B:46:92:F5:12:48 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6194AA94B592F5DCF05F982075C8957C47D82B4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.mft caRepository: rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Apr 2024 08:18:29 +0000 Certificate not after: Fri 04 Apr 2025 08:23:29 +0000 Subordinate resources: IP: 157.66.54.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 15:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:94:aa:94:b5:92:f5:dc:f0:5f:98:20:75:c8:95:7c:47:d8:2b:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 5 08:18:29 2024 GMT Not After : Apr 4 08:23:29 2025 GMT Subject: CN=528098CFFE1330AD3E557BCFEC2D8B4692F51248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2a:7c:20:ff:a1:85:4c:50:33:07:a2:8d:98: f5:0c:4a:bd:11:3b:55:94:b3:11:de:8c:7e:fa:24: 23:e4:98:ca:7b:cc:99:5e:fd:a2:fc:13:dd:12:a1: 9d:71:79:dd:30:08:16:07:56:fe:06:75:f1:cf:34: 11:de:82:14:8f:e7:de:00:8d:c0:6e:ea:5f:56:e8: 7f:16:ae:cd:a3:82:61:15:c4:a8:30:1a:49:33:c3: 40:d5:e2:06:5d:fd:bc:fb:67:78:a3:c5:f7:ff:f5: 28:42:ac:44:6c:f7:c1:b8:9b:52:d4:c1:eb:9f:f6: c8:aa:7c:9a:40:9c:5c:11:ac:4d:07:0f:44:d0:4f: 6f:c8:d9:8b:72:8b:a4:5d:6c:ff:a2:6e:45:33:df: 42:a6:94:39:c4:a3:67:e9:12:00:e1:20:53:f8:d0: 49:50:5b:84:3c:34:fe:06:8c:4f:92:52:d8:a8:63: 97:41:ea:3b:65:df:96:13:0f:c5:c5:dd:14:af:79: 47:7f:4c:7f:6e:e9:89:eb:6a:3e:25:2e:5a:d9:a3: 75:91:77:68:0a:d1:60:ba:5c:77:6a:4e:a6:37:81: ac:e9:5b:45:55:7d:6f:5d:20:ac:66:a8:db:3d:46: 1f:04:fc:ee:95:e4:69:f6:88:62:70:a7:e6:49:a7: 9f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:80:98:CF:FE:13:30:AD:3E:55:7B:CF:EC:2D:8B:46:92:F5:12:48 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f8dc0849-83fb-4cc8-8c21-be6ca7a2ed83/0/528098CFFE1330AD3E557BCFEC2D8B4692F51248.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.54.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:af:bd:48:d8:48:17:ce:6c:d7:04:52:77:2a:a8:c0:74:9c: 8a:ee:78:71:dc:5a:8e:7b:1a:f8:28:6e:b5:df:08:5d:76:3b: 6e:b5:25:60:58:6d:d1:46:0b:94:b3:64:43:a4:c2:09:5b:76: 50:fb:9d:97:9d:75:86:96:32:ad:fb:7a:fd:35:c4:7a:bf:b0: 6c:60:f9:31:83:bf:20:fc:49:f9:68:f7:6f:8c:72:54:88:4d: be:11:8d:b7:1d:4a:8f:27:6c:db:91:d2:f3:45:ea:81:1f:54: 12:33:55:48:fc:10:2e:77:ec:ba:31:3c:dd:52:e0:16:3d:7c: a6:f2:cb:1a:57:00:31:6a:af:e2:e5:2c:a5:47:70:1b:65:c1: 98:03:2e:aa:7c:a6:ff:68:e1:f5:d5:18:69:0b:e1:c7:41:17: 0f:28:c0:e5:f2:7e:24:ba:70:2e:93:15:d2:41:5f:40:df:1a: e9:8e:7a:46:ba:aa:37:39:de:a3:65:a9:45:3d:76:ec:5e:f4: df:9e:8f:03:b7:32:03:6a:9f:66:64:fa:ef:4e:74:a2:8d:c6: fe:9c:fe:5f:fd:23:f2:48:9f:03:70:58:b1:82:df:7e:36:59: 39:a9:26:a5:f2:77:f3:23:52:40:3e:d1:ff:9e:f3:74:02:7d: af:98:b1:da -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYZSqlLWS9dzwX5ggdciVfEfYK0wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwNTA4MTgyOVoX DTI1MDQwNDA4MjMyOVowMzExMC8GA1UEAxMoNTI4MDk4Q0ZGRTEzMzBBRDNFNTU3 QkNGRUMyRDhCNDY5MkY1MTI0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAqfCD/oYVMUDMHoo2Y9QxKvRE7VZSzEd6MfvokI+SYynvMmV79ovwT3RKh nXF53TAIFgdW/gZ18c80Ed6CFI/n3gCNwG7qX1bofxauzaOCYRXEqDAaSTPDQNXi Bl39vPtneKPF9//1KEKsRGz3wbibUtTB65/2yKp8mkCcXBGsTQcPRNBPb8jZi3KL pF1s/6JuRTPfQqaUOcSjZ+kSAOEgU/jQSVBbhDw0/gaMT5JS2Khjl0HqO2XflhMP xcXdFK95R39Mf27pietqPiUuWtmjdZF3aArRYLpcd2pOpjeBrOlbRVV9b10grGao 2z1GHwT87pXkafaIYnCn5kmnn9MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFKAmM/+EzCtPlV7z+wti0aS9RJIMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mOGRjMDg0OS04M2ZiLTRjYzgtOGMyMS1iZTZjYTdhMmVkODMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y4ZGMwODQ5 LTgzZmItNGNjOC04YzIxLWJlNmNhN2EyZWQ4My8wLzUyODA5OENGRkUxMzMwQUQz RTU1N0JDRkVDMkQ4QjQ2OTJGNTEyNDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQjYwDQYJKoZIhvcNAQELBQADggEBAF+vvUjYSBfObNcEUncqqMB0nIrueHHc Wo57GvgobrXfCF12O261JWBYbdFGC5SzZEOkwglbdlD7nZeddYaWMq37ev01xHq/ sGxg+TGDvyD8Sflo92+MclSITb4RjbcdSo8nbNuR0vNF6oEfVBIzVUj8EC537Lox PN1S4BY9fKbyyxpXADFqr+LlLKVHcBtlwZgDLqp8pv9o4fXVGGkL4cdBFw8owOXy fiS6cC6TFdJBX0DfGumOeka6qjc53qNlqUU9duxe9N+ejwO3MgNqn2Zk+u9OdKKN xv6c/l/9I/JInwNwWLGC3342WTmpJqXyd/MjUkA+0f+e83QCfa+Ysdo= -----END CERTIFICATE-----Generated at Thu May 16 10:44:08 2024 by rpki-client on console-ams.rpki-client.org