$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.cer File: 28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.cer (raw, json) Hash identifier: H851HO/mktQ9//S8FbQRm78Xh5hNE7rNjeBHmf35wCo= Subject key identifier: 28:71:9E:EF:A3:40:A5:ED:ED:E0:07:8C:4C:B4:84:97:B3:6F:3A:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7AE617E3247559C1303929EA617EF0CE166D78BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 26 Sep 2024 22:58:24 +0000 Certificate not after: Thu 25 Sep 2025 23:03:24 +0000 Subordinate resources: IP: 103.80.230.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:e6:17:e3:24:75:59:c1:30:39:29:ea:61:7e:f0:ce:16:6d:78:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 26 22:58:24 2024 GMT Not After : Sep 25 23:03:24 2025 GMT Subject: CN=28719EEFA340A5EDEDE0078C4CB48497B36F3AD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:de:10:8c:01:c2:8e:ef:77:1a:de:4a:f4:f7: 2d:a7:9d:23:ce:b3:a3:87:63:0e:4c:f5:09:a1:74: 60:d7:61:e5:22:b8:18:95:6e:25:c1:7b:c7:b8:2a: b8:d7:16:89:3f:9f:98:bd:eb:ed:3a:11:a1:69:5b: 41:24:a4:44:5c:72:1d:d9:93:3d:68:cb:b9:c9:5e: e7:59:78:de:ed:7d:8e:6a:92:d1:66:5a:ee:4e:83: 1b:a6:67:22:51:45:71:52:8f:bf:2c:b4:e6:a5:83: 08:09:0d:44:ae:36:d9:c3:6d:b0:11:0e:82:8c:ea: 4d:59:da:84:55:79:b2:e6:bd:5d:eb:6d:be:bb:ea: df:53:b3:e0:01:8b:85:a2:96:33:3d:b9:2a:12:51: b3:0d:6e:a7:ff:f6:93:aa:4a:d1:f2:f6:10:67:e1: e3:a2:01:a7:25:c6:b9:39:24:be:c4:b6:61:8d:7d: 6b:db:cc:55:40:91:16:76:c3:13:8b:e9:17:7a:d5: 32:57:a6:a0:21:89:cc:8d:e1:b9:f9:2e:06:fc:5f: 25:35:d6:57:df:a8:29:9c:24:fe:fc:87:69:fe:b1: b2:ab:50:7c:e2:bd:2e:4d:5a:02:0f:59:89:5a:2f: cf:7d:5c:5a:34:e0:c3:37:5a:16:9f:31:0b:73:26: 76:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 28:71:9E:EF:A3:40:A5:ED:ED:E0:07:8C:4C:B4:84:97:B3:6F:3A:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/741e8223-cc68-410e-b67b-9b8825b5cd5f/0/28719EEFA340A5EDEDE0078C4CB48497B36F3AD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.80.230.0/23 Signature Algorithm: sha256WithRSAEncryption 65:a7:67:a8:f3:64:81:4f:57:43:34:18:67:bd:e4:86:fe:b7: 54:35:87:e4:ec:9b:1a:84:82:41:44:6f:0d:cb:72:54:ff:dc: bc:c7:81:37:1a:b9:d7:ed:b1:09:de:7e:a7:f6:a7:f7:ca:23: 0b:00:7e:16:91:79:da:52:7c:66:d9:62:69:7b:49:94:f8:4d: db:71:72:37:3f:19:8d:d1:b4:47:78:f9:3a:8e:ed:78:b5:27: 7f:98:7b:a9:af:76:f8:ba:be:14:38:39:62:41:d3:1b:e2:6a: e2:9f:de:d3:98:f7:21:9f:10:29:e5:6b:fb:2d:25:b0:d4:5a: b5:ae:b2:36:b4:ac:2a:2f:1b:e6:22:70:37:63:31:04:82:21: cb:fd:6e:ab:3a:85:4b:b9:8f:93:ea:55:9a:ba:89:24:d5:e7: 7f:9c:3d:64:91:17:62:79:0e:38:e6:50:1d:14:d9:a0:b4:20: f4:6b:f3:6c:4d:e7:a4:60:29:dc:f2:3b:17:fb:26:fe:0f:3c: d9:6f:9a:92:9e:1c:42:91:7d:1e:4f:c7:d7:c4:7f:b7:54:ad: 2b:33:c5:69:1a:ed:e2:ac:64:c5:bc:7d:fe:e4:23:a3:66:79: ea:88:ab:5b:b7:a3:2e:dc:87:05:2f:a4:10:73:1a:81:23:40: b0:dc:4a:06 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeuYX4yR1WcEwOSnqYX7wzhZteL0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyNjIyNTgyNFoX DTI1MDkyNTIzMDMyNFowMzExMC8GA1UEAxMoMjg3MTlFRUZBMzQwQTVFREVERTAw NzhDNENCNDg0OTdCMzZGM0FENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXeEIwBwo7vdxreSvT3LaedI86zo4djDkz1CaF0YNdh5SK4GJVuJcF7x7gq uNcWiT+fmL3r7ToRoWlbQSSkRFxyHdmTPWjLucle51l43u19jmqS0WZa7k6DG6Zn IlFFcVKPvyy05qWDCAkNRK422cNtsBEOgozqTVnahFV5sua9Xettvrvq31Oz4AGL haKWMz25KhJRsw1up//2k6pK0fL2EGfh46IBpyXGuTkkvsS2YY19a9vMVUCRFnbD E4vpF3rVMlemoCGJzI3hufkuBvxfJTXWV9+oKZwk/vyHaf6xsqtQfOK9Lk1aAg9Z iVovz31cWjTgwzdaFp8xC3Mmdu8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFChxnu+jQKXt7eAHjEy0hJezbzrWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NDFlODIyMy1jYzY4LTQxMGUtYjY3Yi05Yjg4MjViNWNkNWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0MWU4MjIz LWNjNjgtNDEwZS1iNjdiLTliODgyNWI1Y2Q1Zi8wLzI4NzE5RUVGQTM0MEE1RURF REUwMDc4QzRDQjQ4NDk3QjM2RjNBRDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnUOYwDQYJKoZIhvcNAQELBQADggEBAGWnZ6jzZIFPV0M0GGe95Ib+t1Q1h+Ts mxqEgkFEbw3LclT/3LzHgTcaudftsQnefqf2p/fKIwsAfhaRedpSfGbZYml7SZT4 Tdtxcjc/GY3RtEd4+TqO7Xi1J3+Ye6mvdvi6vhQ4OWJB0xviauKf3tOY9yGfECnl a/stJbDUWrWusja0rCovG+YicDdjMQSCIcv9bqs6hUu5j5PqVZq6iSTV53+cPWSR F2J5DjjmUB0U2aC0IPRr82xN56RgKdzyOxf7Jv4PPNlvmpKeHEKRfR5Px9fEf7dU rSszxWka7eKsZMW8ff7kI6NmeeqIq1u3oy7chwUvpBBzGoEjQLDcSgY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org