$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.cer File: 28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.cer (raw, json) Hash identifier: WcQVe/kPLXIjHaxOOEugSp54HI6pkhlGSeomKYE2yF0= Subject key identifier: 28:71:9E:EF:A3:40:A5:ED:ED:E0:07:8C:4C:B4:84:97:B3:6F:3A:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D6C6CAC97FBCFE293A3FB4CDE3EB7DDD069CF75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 26 Oct 2023 11:29:09 +0000 Certificate not after: Thu 24 Oct 2024 11:34:09 +0000 Subordinate resources: IP: 103.80.230.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:6c:6c:ac:97:fb:cf:e2:93:a3:fb:4c:de:3e:b7:dd:d0:69:cf:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 26 11:29:09 2023 GMT Not After : Oct 24 11:34:09 2024 GMT Subject: CN=28719EEFA340A5EDEDE0078C4CB48497B36F3AD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:de:10:8c:01:c2:8e:ef:77:1a:de:4a:f4:f7: 2d:a7:9d:23:ce:b3:a3:87:63:0e:4c:f5:09:a1:74: 60:d7:61:e5:22:b8:18:95:6e:25:c1:7b:c7:b8:2a: b8:d7:16:89:3f:9f:98:bd:eb:ed:3a:11:a1:69:5b: 41:24:a4:44:5c:72:1d:d9:93:3d:68:cb:b9:c9:5e: e7:59:78:de:ed:7d:8e:6a:92:d1:66:5a:ee:4e:83: 1b:a6:67:22:51:45:71:52:8f:bf:2c:b4:e6:a5:83: 08:09:0d:44:ae:36:d9:c3:6d:b0:11:0e:82:8c:ea: 4d:59:da:84:55:79:b2:e6:bd:5d:eb:6d:be:bb:ea: df:53:b3:e0:01:8b:85:a2:96:33:3d:b9:2a:12:51: b3:0d:6e:a7:ff:f6:93:aa:4a:d1:f2:f6:10:67:e1: e3:a2:01:a7:25:c6:b9:39:24:be:c4:b6:61:8d:7d: 6b:db:cc:55:40:91:16:76:c3:13:8b:e9:17:7a:d5: 32:57:a6:a0:21:89:cc:8d:e1:b9:f9:2e:06:fc:5f: 25:35:d6:57:df:a8:29:9c:24:fe:fc:87:69:fe:b1: b2:ab:50:7c:e2:bd:2e:4d:5a:02:0f:59:89:5a:2f: cf:7d:5c:5a:34:e0:c3:37:5a:16:9f:31:0b:73:26: 76:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 28:71:9E:EF:A3:40:A5:ED:ED:E0:07:8C:4C:B4:84:97:B3:6F:3A:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.230.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:39:bf:8f:d3:1d:a6:04:90:89:08:fd:aa:c1:de:c9:24:19: 4c:39:77:a4:a9:1f:28:cb:82:2f:50:b3:90:8a:36:88:ea:7b: 43:e9:25:f6:39:38:ce:b0:9d:c0:c7:e1:70:52:eb:d5:96:2c: f8:63:19:d5:59:90:38:91:5c:a3:b4:c2:43:5e:e5:3e:45:19: 35:b3:8a:4d:98:3f:88:08:47:b9:20:dd:73:5f:ee:e3:55:87: b8:c7:9f:ad:10:18:df:5d:5f:70:72:5a:42:82:3f:82:3c:95: d4:22:d3:46:e3:7b:d2:3e:ef:4c:d3:a5:88:f7:51:85:0e:b1: 12:8a:14:a6:6b:a4:90:98:f1:88:83:e4:c9:75:aa:fd:f3:43: 2f:26:cc:73:73:af:07:dd:70:87:66:a2:80:e6:f4:3a:d1:37: 55:e4:d6:a3:b6:8f:e8:a8:dd:b4:4a:3b:75:5e:60:42:d7:f4: ab:5a:28:36:21:48:68:4a:23:c1:08:1f:f3:90:94:96:8e:c5: dc:2a:4a:f3:d5:7c:8c:a5:fc:43:8b:66:40:e4:7e:32:28:db: 20:08:5e:5f:1e:7b:80:9c:75:fb:83:9e:96:38:3f:aa:15:aa: 28:31:7b:09:b6:4c:20:2f:72:4c:59:2e:c3:e8:94:7c:86:21: 29:a0:38:88 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPWxsrJf7z+KTo/tM3j633dBpz3UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyNjExMjkwOVoX DTI0MTAyNDExMzQwOVowMzExMC8GA1UEAxMoMjg3MTlFRUZBMzQwQTVFREVERTAw NzhDNENCNDg0OTdCMzZGM0FENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXeEIwBwo7vdxreSvT3LaedI86zo4djDkz1CaF0YNdh5SK4GJVuJcF7x7gq uNcWiT+fmL3r7ToRoWlbQSSkRFxyHdmTPWjLucle51l43u19jmqS0WZa7k6DG6Zn IlFFcVKPvyy05qWDCAkNRK422cNtsBEOgozqTVnahFV5sua9Xettvrvq31Oz4AGL haKWMz25KhJRsw1up//2k6pK0fL2EGfh46IBpyXGuTkkvsS2YY19a9vMVUCRFnbD E4vpF3rVMlemoCGJzI3hufkuBvxfJTXWV9+oKZwk/vyHaf6xsqtQfOK9Lk1aAg9Z iVovz31cWjTgwzdaFp8xC3Mmdu8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFChxnu+jQKXt7eAHjEy0hJezbzrWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NDFlODIyMy1jYzY4LTQxMGUtYjY3Yi05Yjg4MjViNWNkNWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0MWU4MjIz LWNjNjgtNDEwZS1iNjdiLTliODgyNWI1Y2Q1Zi8wLzI4NzE5RUVGQTM0MEE1RURF REUwMDc4QzRDQjQ4NDk3QjM2RjNBRDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnUOYwDQYJKoZIhvcNAQELBQADggEBAI85v4/THaYEkIkI/arB3skkGUw5d6Sp HyjLgi9Qs5CKNojqe0PpJfY5OM6wncDH4XBS69WWLPhjGdVZkDiRXKO0wkNe5T5F GTWzik2YP4gIR7kg3XNf7uNVh7jHn60QGN9dX3ByWkKCP4I8ldQi00bje9I+70zT pYj3UYUOsRKKFKZrpJCY8YiD5Ml1qv3zQy8mzHNzrwfdcIdmooDm9DrRN1Xk1qO2 j+io3bRKO3VeYELX9KtaKDYhSGhKI8EIH/OQlJaOxdwqSvPVfIyl/EOLZkDkfjIo 2yAIXl8ee4CcdfuDnpY4P6oVqigxewm2TCAvckxZLsPolHyGISmgOIg= -----END CERTIFICATE-----Generated at Wed May 8 09:50:27 2024 by rpki-client on console-fra.rpki-client.org