$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer (raw, json) Hash identifier: rNFyn3RwLj5kCsgHQS3EQyBkRYLHcmMhI7u4BXKywys= Subject key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 65ACC88F90530C31F85E7BD13FE533590BDA24CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft caRepository: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 12 Oct 2024 09:59:17 +0000 Certificate not after: Sat 11 Oct 2025 10:04:17 +0000 Subordinate resources: IP: 157.10.184.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ac:c8:8f:90:53:0c:31:f8:5e:7b:d1:3f:e5:33:59:0b:da:24:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 12 09:59:17 2024 GMT Not After : Oct 11 10:04:17 2025 GMT Subject: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:80:6d:bc:eb:e1:82:59:c9:99:0d:e3:cc:44: ef:50:c3:e4:66:8f:64:06:12:e6:5b:e0:23:fa:9e: 07:9c:6e:e0:43:62:d8:12:fe:d5:33:19:1a:f2:88: 7b:78:04:e4:91:c9:1b:e3:ff:46:f4:8e:c7:64:11: 42:df:f9:fc:2c:ac:8b:f3:c7:b3:d4:d7:47:65:69: 70:29:fb:08:a2:2e:e3:1a:77:c2:87:43:50:ab:50: d1:03:6b:e9:bf:d6:14:f7:9f:ba:7e:dc:42:bd:6f: 42:fc:96:75:e7:50:ca:ce:9a:d0:ca:9e:fc:b4:95: 9a:81:44:0a:82:87:6f:20:2e:bf:57:9f:f2:c4:00: f7:a7:fc:cb:06:21:30:71:4f:70:c0:27:f6:f6:97: c0:16:14:13:6e:a0:83:a1:44:0c:c0:34:05:b0:47: 7c:34:fe:57:ef:c6:d4:f7:aa:80:ea:09:4d:7e:48: 86:36:16:40:ed:93:56:a7:68:e8:e4:98:a0:32:aa: da:47:a7:26:22:38:6e:64:dd:98:72:19:31:d8:fb: 35:d6:5f:15:26:86:62:e9:e9:82:f8:a7:f8:e3:15: 97:1f:80:f1:39:a1:54:92:fb:f6:4b:2f:14:f3:9b: f1:5e:8b:11:45:ea:d5:3f:80:7c:1a:34:c8:52:91: 51:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.184.0/24 Signature Algorithm: sha256WithRSAEncryption 93:91:9f:04:f9:9d:f4:4d:af:05:6c:a1:f1:be:a6:7e:85:f1: b5:eb:41:c7:42:10:28:50:75:9d:d1:ab:61:9b:d4:78:cb:f2: bc:1f:53:34:aa:a9:bb:41:65:95:2c:7c:b5:d0:d1:44:4a:50: c2:4c:bf:ca:58:02:1b:30:dc:54:bc:63:54:ce:03:23:39:c9: e3:97:fa:43:cc:9a:1c:3b:2f:44:b7:06:4a:60:6c:ef:57:b4: c0:6d:35:e3:9e:ce:25:5a:24:8c:85:ad:bf:f0:ea:21:d0:36: 83:fa:96:6c:e6:cc:cd:fd:06:03:32:02:1f:4e:71:99:4f:ea: 7f:e6:e8:e9:88:98:85:37:29:b4:7c:28:d9:30:1b:31:c6:26: 34:5c:94:c6:61:26:ac:84:1b:d1:9c:18:08:0d:89:c6:7c:15: ce:7a:52:c7:e2:38:8a:9c:b4:d7:0f:e8:55:6b:0b:03:46:e3: b9:a1:6b:f6:76:1a:ac:1f:8c:2a:44:a2:ad:c5:fc:e8:c3:c7: 55:61:58:83:0d:c8:df:9d:c6:b0:6c:1f:5a:ef:36:5a:9c:be: 4a:02:87:d8:1f:f3:08:1a:7f:42:a4:ec:6c:43:06:f9:61:46: d1:71:82:d9:0d:9f:43:6b:ab:fe:9b:21:73:c3:af:c7:ee:7c: f0:62:75:37 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZazIj5BTDDH4XnvRP+UzWQvaJM0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAxMjA5NTkxN1oX DTI1MTAxMTEwMDQxN1owMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYy RTc5NjY5QzYzQ0IzOUU1Q0YzQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWAbbzr4YJZyZkN48xE71DD5GaPZAYS5lvgI/qeB5xu4ENi2BL+1TMZGvKI e3gE5JHJG+P/RvSOx2QRQt/5/Cysi/PHs9TXR2VpcCn7CKIu4xp3wodDUKtQ0QNr 6b/WFPefun7cQr1vQvyWdedQys6a0Mqe/LSVmoFECoKHbyAuv1ef8sQA96f8ywYh MHFPcMAn9vaXwBYUE26gg6FEDMA0BbBHfDT+V+/G1PeqgOoJTX5IhjYWQO2TVqdo 6OSYoDKq2kenJiI4bmTdmHIZMdj7NdZfFSaGYunpgvin+OMVlx+A8TmhVJL79ksv FPOb8V6LEUXq1T+AfBo0yFKRUaUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFK5weXwuvNFxA8ueWacY8s55c86MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwYTg1OTBl LWU0ZGMtNDQxNi1hNmZhLWZiNzhkNmRkMTJkNy8wLzUyQjlDMUU1RjBCQUYzNDVD NDBGMkU3OTY2OUM2M0NCMzlFNUNGM0EubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdCrgwDQYJKoZIhvcNAQELBQADggEBAJORnwT5nfRNrwVsofG+pn6F8bXrQcdC EChQdZ3Rq2Gb1HjL8rwfUzSqqbtBZZUsfLXQ0URKUMJMv8pYAhsw3FS8Y1TOAyM5 yeOX+kPMmhw7L0S3BkpgbO9XtMBtNeOeziVaJIyFrb/w6iHQNoP6lmzmzM39BgMy Ah9OcZlP6n/m6OmImIU3KbR8KNkwGzHGJjRclMZhJqyEG9GcGAgNicZ8Fc56Usfi OIqctNcP6FVrCwNG47mha/Z2GqwfjCpEoq3F/OjDx1VhWIMNyN+dxrBsH1rvNlqc vkoCh9gf8wgaf0Kk7GxDBvlhRtFxgtkNn0Nrq/6bIXPDr8fufPBidTc= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org