$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer File: 1952B074D19D5AB562D7EE537AD3059EA097353B.cer (raw, json) Hash identifier: BLZZzIakINW6aT40Xpyr9u2pSP39e/X+kVnSv7SOXDw= Subject key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 617E034C3908839EBD6310AA76591BA6CF3AE95A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft caRepository: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 05 Jun 2024 12:03:33 +0000 Certificate not after: Wed 04 Jun 2025 12:08:33 +0000 Subordinate resources: IP: 103.158.26.0/23 IP: 2406:aec0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7e:03:4c:39:08:83:9e:bd:63:10:aa:76:59:1b:a6:cf:3a:e9:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 5 12:03:33 2024 GMT Not After : Jun 4 12:08:33 2025 GMT Subject: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ce:3f:48:be:9c:b5:8e:8f:98:9e:f1:46:7c: 7d:54:ff:a5:0d:62:c1:a9:4d:f8:da:01:11:1d:ce: c6:59:bd:cb:8b:d6:e4:20:ca:f0:a4:73:79:40:22: 0e:a1:82:53:8d:a8:30:5d:a7:31:e5:81:db:f5:7b: e2:55:00:88:84:5e:4c:5d:48:aa:0f:4e:a0:bc:0e: 7b:31:3c:0a:c0:4e:42:d2:cb:90:40:74:74:0a:e1: 55:3e:4b:65:df:31:a3:10:64:a7:1c:20:b1:72:8c: 38:5b:4f:c6:61:fe:a0:29:9d:e0:0c:ea:a8:be:7f: 00:65:6a:fc:46:58:2d:c4:4d:a4:a8:d4:ff:bb:83: 87:c5:33:f9:fa:a7:c2:f5:de:d2:1a:79:80:a1:c3: 95:08:85:77:01:06:8b:44:95:b3:4f:4e:8d:ee:9e: 39:87:41:5b:a7:ff:43:97:0a:b9:60:8f:3e:d2:6a: 73:1b:7c:11:b2:3b:73:7f:ac:5d:b3:f0:60:24:54: 38:c4:2e:b8:c0:ad:11:d5:b6:37:4c:20:95:c5:2a: 0e:bc:a8:29:aa:38:38:f0:ef:9b:da:13:97:52:d4: 2a:11:ce:77:b2:0d:1d:62:28:1b:c4:48:64:6c:65: d4:47:68:2b:e2:63:3b:38:6a:ea:b7:9e:9c:80:da: ff:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.26.0/23 IPv6: 2406:aec0::/32 Signature Algorithm: sha256WithRSAEncryption 62:85:5a:c9:69:c2:a0:2f:82:17:e2:10:84:46:6b:22:d0:ed: 09:5b:3f:58:6c:40:5a:bf:be:0e:ff:83:07:f8:2b:d9:32:08: 9e:e7:cf:fb:8b:b8:ba:bc:14:9e:96:68:c1:15:d3:54:9c:6f: 1a:13:ee:8c:77:1e:38:f5:cd:2d:62:09:7a:d0:98:5d:81:78: 94:97:ce:9f:91:c9:36:36:ae:ac:ff:2e:9e:88:54:25:c4:b5: e9:9f:ec:67:57:6a:73:9e:8a:7d:52:bf:f4:4f:f9:36:30:4c: 90:e0:fc:d0:91:1b:64:d5:44:bb:58:01:9d:c8:fb:69:28:2d: cc:db:1f:74:0e:b4:e4:db:69:6e:cc:dd:b5:30:b3:4f:86:4d: a5:a2:ae:49:b7:8c:e6:91:59:23:20:e6:68:97:69:dc:58:2a: 1a:b6:c9:94:0d:f0:52:13:f4:5c:2a:6f:d0:9b:4d:30:4d:64: 5b:43:bd:01:37:e3:78:92:79:7f:a1:86:c1:41:42:84:d9:40: 5e:d3:cd:6a:fa:1f:9d:ca:82:f1:8a:2f:d4:93:f3:bf:7c:7d: d2:49:86:ac:c8:2a:b9:5d:ea:2c:a8:98:27:ab:78:4a:1c:48: b1:9b:9c:5e:d7:8a:a9:50:da:f9:c0:d2:b3:81:d0:79:cb:3d: 72:72:e7:06 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUYX4DTDkIg569YxCqdlkbps866VowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwNTEyMDMzM1oX DTI1MDYwNDEyMDgzM1owMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdF RTUzN0FEMzA1OUVBMDk3MzUzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOXOP0i+nLWOj5ie8UZ8fVT/pQ1iwalN+NoBER3Oxlm9y4vW5CDK8KRzeUAi DqGCU42oMF2nMeWB2/V74lUAiIReTF1Iqg9OoLwOezE8CsBOQtLLkEB0dArhVT5L Zd8xoxBkpxwgsXKMOFtPxmH+oCmd4AzqqL5/AGVq/EZYLcRNpKjU/7uDh8Uz+fqn wvXe0hp5gKHDlQiFdwEGi0SVs09Oje6eOYdBW6f/Q5cKuWCPPtJqcxt8EbI7c3+s XbPwYCRUOMQuuMCtEdW2N0wglcUqDryoKao4OPDvm9oTl1LUKhHOd7INHWIoG8RI ZGxl1EdoK+JjOzhq6reenIDa/xcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBlSsHTRnVq1YtfuU3rTBZ6glzU7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kNGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1 LTFkNzYtNGEzNi04MTYwLWE5ZThhZmUzNTc5Zi8wLzE5NTJCMDc0RDE5RDVBQjU2 MkQ3RUU1MzdBRDMwNTlFQTA5NzM1M0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnhowDQQCAAIwBwMFACQGrsAwDQYJKoZIhvcNAQELBQADggEBAGKFWslpwqAv ghfiEIRGayLQ7QlbP1hsQFq/vg7/gwf4K9kyCJ7nz/uLuLq8FJ6WaMEV01ScbxoT 7ox3Hjj1zS1iCXrQmF2BeJSXzp+RyTY2rqz/Lp6IVCXEtemf7GdXanOein1Sv/RP +TYwTJDg/NCRG2TVRLtYAZ3I+2koLczbH3QOtOTbaW7M3bUws0+GTaWirkm3jOaR WSMg5miXadxYKhq2yZQN8FIT9Fwqb9CbTTBNZFtDvQE343iSeX+hhsFBQoTZQF7T zWr6H53KgvGKL9ST8798fdJJhqzIKrld6iyomCereEocSLGbnF7XiqlQ2vnA0rOB 0HnLPXJy5wY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:13 2024 by rpki-client on console-fra.rpki-client.org