$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer (raw, json) Hash identifier: fCUMBVNGKqCMPNbtAsSETDWaZbnSfyU6gydkTHg1fgE= Subject key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 28D0EFA01FBF4EC4B390CAAB6285D9B8400FB354 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft caRepository: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 08:56:28 +0000 Certificate not after: Mon 30 Jun 2025 09:01:28 +0000 Subordinate resources: IP: 103.195.18.0/23 IP: 2001:df6:cc00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d0:ef:a0:1f:bf:4e:c4:b3:90:ca:ab:62:85:d9:b8:40:0f:b3:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 08:56:28 2024 GMT Not After : Jun 30 09:01:28 2025 GMT Subject: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8e:c8:6c:00:81:81:4f:3a:65:0e:58:09:61: cb:b6:7b:bc:7b:50:c9:fe:42:10:ec:45:7c:72:33: 65:e5:7a:05:9a:e1:f7:66:cd:70:f1:c5:5a:87:a2: 6b:55:66:06:1b:c0:ae:49:f4:dc:86:06:df:67:b1: b8:27:90:c4:34:95:8f:66:10:a9:91:67:3f:ad:3f: e7:13:2d:9c:86:84:79:26:50:2b:2f:fa:1d:26:da: f3:db:e8:54:27:64:b0:b9:14:2e:13:38:82:a9:57: c9:aa:5c:e8:fb:8e:cf:d8:ea:0a:6a:0d:a8:7a:2e: 0c:57:89:59:fa:de:17:05:64:78:aa:d5:cc:27:6d: 58:9a:fe:9a:a6:14:52:50:5d:7d:0c:f7:22:d0:56: 79:dc:2f:6e:da:b9:eb:b8:1a:79:6a:f0:09:f7:04: 8f:c8:28:af:ef:50:f7:68:8d:01:c0:91:95:dc:ba: 84:a6:d1:6c:38:c7:3d:1f:95:b7:7a:1b:11:2d:90: 1e:f3:8e:2f:73:5f:4b:e8:bf:01:ab:6a:f6:18:22: 08:74:4d:86:a2:d4:36:9e:a3:88:2f:ba:ea:99:35: 4f:12:cd:bd:80:03:ef:35:81:c0:3e:f3:0b:5b:62: 76:69:12:6d:98:9c:4b:c0:02:e0:e6:a6:cc:07:41: 7c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.18.0/23 IPv6: 2001:df6:cc00::/48 Signature Algorithm: sha256WithRSAEncryption 75:f7:62:5f:2e:3d:8d:e4:1d:f1:e2:0e:16:6e:c4:a2:3f:74: e9:78:c9:c3:0d:4b:25:f3:54:5b:d2:03:7d:b1:ad:31:b5:0f: f3:72:3e:41:5a:86:55:af:25:3b:44:1d:48:19:d7:31:d7:f2: 43:5b:fb:79:8c:6a:a8:7e:69:22:56:b8:4c:bf:44:81:1b:4c: e9:5f:af:90:64:a2:62:64:45:ef:a5:4f:5f:35:87:9e:cf:39: 9a:40:0f:62:a4:9f:52:fe:02:f8:72:0a:e6:4f:f8:35:67:90: 1e:5d:a9:0a:b5:fc:51:7a:21:46:71:bf:cf:7f:5f:4b:cf:da: 90:7f:55:d0:1c:da:ab:c1:ec:42:a4:48:8a:00:23:6c:43:ca: 79:9b:05:4f:fa:44:a6:f8:94:71:c9:42:5c:e4:a0:ad:be:a9: 86:ed:a3:fb:97:66:46:a9:b3:75:75:f1:32:73:00:95:f5:00: dc:06:58:a8:ea:f6:8c:0c:40:fa:b5:34:c3:c1:72:1e:7f:20: 16:a1:93:a5:17:c4:11:aa:8f:dd:83:b0:c4:15:df:b0:8d:90: 54:bb:5a:58:8b:e1:f4:a3:eb:d0:ff:83:87:67:f8:5d:4c:aa: 7e:d0:c4:a9:56:cd:ba:30:44:f9:d1:80:03:a2:14:08:f2:2f: 29:18:48:0d -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUKNDvoB+/TsSzkMqrYoXZuEAPs1QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTA4NTYyOFoX DTI1MDYzMDA5MDEyOFowMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhC NTI2QzU2QUVCRENCNUFEQkQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOyOyGwAgYFPOmUOWAlhy7Z7vHtQyf5CEOxFfHIzZeV6BZrh92bNcPHFWoei a1VmBhvArkn03IYG32exuCeQxDSVj2YQqZFnP60/5xMtnIaEeSZQKy/6HSba89vo VCdksLkULhM4gqlXyapc6PuOz9jqCmoNqHouDFeJWfreFwVkeKrVzCdtWJr+mqYU UlBdfQz3ItBWedwvbtq567gaeWrwCfcEj8gor+9Q92iNAcCRldy6hKbRbDjHPR+V t3obES2QHvOOL3NfS+i/Aatq9hgiCHRNhqLUNp6jiC+66pk1TxLNvYAD7zWBwD7z C1tidmkSbZicS8AC4OamzAdBfOkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDVmts8A17C2c/i1JsVq69y1rb0oMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kM2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3 LTY4MTgtNDhhOS1hYmU0LWVkYjk2MDQ5ZjNjOC8wLzM1NjZCNkNGMDBEN0IwQjY3 M0Y4QjUyNkM1NkFFQkRDQjVBREJEMjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnwxIwDwQCAAIwCQMHACABDfbMADANBgkqhkiG9w0BAQsFAAOCAQEAdfdiXy49 jeQd8eIOFm7Eoj906XjJww1LJfNUW9IDfbGtMbUP83I+QVqGVa8lO0QdSBnXMdfy Q1v7eYxqqH5pIla4TL9EgRtM6V+vkGSiYmRF76VPXzWHns85mkAPYqSfUv4C+HIK 5k/4NWeQHl2pCrX8UXohRnG/z39fS8/akH9V0Bzaq8HsQqRIigAjbEPKeZsFT/pE pviUcclCXOSgrb6phu2j+5dmRqmzdXXxMnMAlfUA3AZYqOr2jAxA+rU0w8FyHn8g FqGTpRfEEaqP3YOwxBXfsI2QVLtaWIvh9KPr0P+Dh2f4XUyqftDEqVbNujBE+dGA A6IUCPIvKRhIDQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:46 2024 by rpki-client on console-fra.rpki-client.org