$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer (raw, json) Hash identifier: NsgdcGK2wudbnkhkgmY5Pnl+fMLylq6beVteYmxBCh0= Subject key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 78FF5F8F62061B4950EF08B6DC75922F2E584784 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft caRepository: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 08 Feb 2024 15:42:37 +0000 Certificate not after: Thu 06 Feb 2025 15:47:37 +0000 Subordinate resources: IP: 27.124.80.0/20 IP: 103.25.108.0/22 IP: 119.47.88.0/22 IP: 119.47.95.0/24 IP: 124.109.20.0/22 IP: 2402:d680::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:ff:5f:8f:62:06:1b:49:50:ef:08:b6:dc:75:92:2f:2e:58:47:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 8 15:42:37 2024 GMT Not After : Feb 6 15:47:37 2025 GMT Subject: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5a:e8:a1:6e:6a:ce:95:9d:b9:2a:1c:03:cd: 99:98:96:8a:84:82:5a:38:84:49:68:04:bf:f5:fe: c5:c5:98:11:ff:f3:9c:a9:4b:8e:92:7d:93:b3:a7: 85:7a:ad:16:d5:c2:14:97:a4:14:f6:7f:08:c5:05: 24:b2:72:1a:4c:1d:a2:7d:2c:09:27:91:e0:12:cb: c2:73:97:28:48:cf:02:78:d1:f4:d2:1a:01:ae:fd: 9e:3e:63:af:56:d7:4c:30:fc:ba:aa:5a:39:29:b8: 53:7d:60:48:ce:7e:de:cf:31:42:56:94:33:49:2c: 69:72:8b:e8:8b:7f:d9:ac:2d:02:97:98:5d:be:e4: e6:4a:ca:0c:b6:bd:a9:c0:a6:4d:98:66:4e:d4:c6: 99:63:2b:57:72:d2:8f:11:e0:5d:79:da:c1:df:30: 36:00:45:22:c5:16:41:49:70:ac:0b:ee:61:3e:c9: 2e:01:67:75:43:4d:5d:b2:27:3b:22:b8:bc:f3:85: c4:fd:80:21:15:07:14:0d:2c:0c:6e:0c:9b:98:d5: 2e:7d:af:ab:0c:a3:59:9c:32:72:1d:77:8c:69:2d: d2:be:a8:e8:5e:0b:30:4a:55:86:f8:2e:14:1d:a1: 10:4d:72:45:b5:23:6e:2e:e9:c6:af:06:7a:fa:68: 18:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.124.80.0/20 103.25.108.0/22 119.47.88.0/22 119.47.95.0/24 124.109.20.0/22 IPv6: 2402:d680::/32 Signature Algorithm: sha256WithRSAEncryption 59:f2:d2:93:72:25:b6:a4:64:9b:50:db:17:25:ce:8a:eb:ef: e5:9f:25:01:39:6c:a2:0e:4e:c5:12:4a:6b:15:1f:e5:40:13: b8:90:bf:2a:91:8e:1a:30:2f:3e:b0:6d:18:22:f3:78:a5:d7: 68:70:71:73:ff:2f:ed:1d:fd:f3:62:04:da:30:79:16:d1:ca: a5:da:7d:38:27:4a:3c:65:4b:8f:a7:1a:e1:c7:dd:c5:b3:dc: 20:9a:32:1c:b8:62:55:90:e9:7d:c5:e8:7e:23:68:36:82:1c: 0c:c4:5e:48:42:ac:d5:b9:89:b3:5e:d2:c3:2a:6a:f3:c6:70: 24:14:5b:29:99:fd:6c:19:f1:ca:b1:51:76:58:ac:e7:5b:ec: ec:42:c7:bb:39:98:00:51:74:d5:58:ea:94:f8:42:b6:44:b4: 4b:98:4b:8f:cc:c7:38:00:55:db:28:09:d6:b4:3e:b0:2b:67: 7a:bc:81:08:3c:2a:7e:ee:5d:79:64:78:ac:ab:a2:69:57:7b: 49:06:3b:de:c3:c7:21:e4:3d:bd:24:e7:d7:1d:d8:7b:58:b4: cd:e1:a2:a2:a3:fa:29:b3:98:bc:ce:ea:3a:df:61:4b:b9:1f: b1:89:30:81:ac:0b:3f:d2:57:96:82:f6:f5:7d:a7:4a:6d:9e: ef:f3:f1:02 -----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgIUeP9fj2IGG0lQ7wi23HWSLy5YR4QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwODE1NDIzN1oX DTI1MDIwNjE1NDczN1owMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZG M0QzODhFQ0VENTBDRjlBNjQ3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN9a6KFuas6VnbkqHAPNmZiWioSCWjiESWgEv/X+xcWYEf/znKlLjpJ9k7On hXqtFtXCFJekFPZ/CMUFJLJyGkwdon0sCSeR4BLLwnOXKEjPAnjR9NIaAa79nj5j r1bXTDD8uqpaOSm4U31gSM5+3s8xQlaUM0ksaXKL6It/2awtApeYXb7k5krKDLa9 qcCmTZhmTtTGmWMrV3LSjxHgXXnawd8wNgBFIsUWQUlwrAvuYT7JLgFndUNNXbIn OyK4vPOFxP2AIRUHFA0sDG4Mm5jVLn2vqwyjWZwych13jGkt0r6o6F4LMEpVhvgu FB2hEE1yRbUjbi7pxq8GevpoGMUCAwEAAaOCAt8wggLbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCKOdSu/uMFrO0bz04js7VDPmmRzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zMTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJh LTAyYWItNDIwMi05NzBmLWY2OTlkZmY5N2RlNS8wLzIyOEU3NTJCQkZCOEMxNkIz QjQ2RjNEMzg4RUNFRDUwQ0Y5QTY0NzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4D BAQbfFADBAJnGWwDBAJ3L1gDBAB3L18DBAJ8bRQwDQQCAAIwBwMFACQC1oAwDQYJ KoZIhvcNAQELBQADggEBAFny0pNyJbakZJtQ2xclzorr7+WfJQE5bKIOTsUSSmsV H+VAE7iQvyqRjhowLz6wbRgi83il12hwcXP/L+0d/fNiBNoweRbRyqXafTgnSjxl S4+nGuHH3cWz3CCaMhy4YlWQ6X3F6H4jaDaCHAzEXkhCrNW5ibNe0sMqavPGcCQU WymZ/WwZ8cqxUXZYrOdb7OxCx7s5mABRdNVY6pT4QrZEtEuYS4/MxzgAVdsoCda0 PrArZ3q8gQg8Kn7uXXlkeKyromlXe0kGO97DxyHkPb0k59cd2HtYtM3hoqKj+imz mLzO6jrfYUu5H7GJMIGsCz/SV5aC9vV9p0ptnu/z8QI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:46 2024 by rpki-client on console-fra.rpki-client.org