$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.cer (raw, json) Hash identifier: oG/jjJZXYawmtH7BkO0uKOgKcXaVOfXH9pMk2MnxO7o= Subject key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B6D478E0BE4D7A6D7805F07B8C732921E53274A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft caRepository: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 22:36:25 +0000 Certificate not after: Mon 30 Jun 2025 22:41:25 +0000 Subordinate resources: IP: 103.153.60.0/23 IP: 2001:df4:3680::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:6d:47:8e:0b:e4:d7:a6:d7:80:5f:07:b8:c7:32:92:1e:53:27:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 22:36:25 2024 GMT Not After : Jun 30 22:41:25 2025 GMT Subject: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:95:68:69:3f:a2:c0:33:56:6b:3d:66:f4:8f: dc:01:43:d0:df:c5:a2:04:9d:dd:16:01:dd:06:59: d2:14:b2:a4:08:48:f8:25:de:e9:e3:a4:57:fa:5f: ce:cf:32:f4:6c:e7:03:55:5b:62:3c:eb:30:3a:5b: 5f:dd:86:a1:df:b0:6e:c8:59:c1:2c:c5:20:40:5f: 07:e3:e0:83:f8:e5:81:cf:68:29:b3:35:b1:cd:00: e5:39:2f:68:3d:a9:d1:69:31:83:84:f8:7e:91:10: 63:ac:a3:7b:62:df:31:84:c8:f7:b0:e4:c0:08:6f: 9d:38:f2:15:2c:89:39:af:a3:41:20:ef:e1:7f:0c: bd:85:e5:8c:ac:e9:4f:c6:3f:a7:2a:c6:dc:81:f1: ec:3c:6e:2c:61:ed:f1:7c:06:36:80:1d:4c:e8:62: aa:3f:f6:f2:d4:55:ae:56:80:6e:cf:38:7d:e2:83: 33:4b:87:db:33:1c:90:2a:34:21:a1:96:e6:af:b1: 44:bb:f5:6a:96:28:89:a3:9c:c0:1b:a6:30:ae:11: 12:54:21:94:cb:2d:9d:f3:23:d5:5b:80:20:ea:76: 7f:4d:28:72:18:9c:4d:a5:b9:11:20:96:b5:d8:60: e8:79:c3:13:a4:f9:a7:03:0e:48:b8:39:82:1f:39: 6d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.153.60.0/23 IPv6: 2001:df4:3680::/48 Signature Algorithm: sha256WithRSAEncryption 06:61:20:e1:25:2d:1e:bb:f6:05:86:68:f1:0d:b6:e8:6a:e1: f2:51:d6:de:3f:80:03:b5:8f:b8:14:05:74:6c:b6:0a:e8:19: 9a:58:79:70:65:15:83:6c:df:d5:e3:2d:0f:d4:32:b8:a9:29: 74:2d:43:65:ba:88:3e:f4:54:a2:17:93:da:5e:55:a0:13:4a: 1d:3a:95:5e:d4:a6:ef:a0:c2:e7:e5:69:05:ed:43:30:72:95: 8c:17:89:41:ca:91:e4:53:40:f5:5e:1d:0a:ca:ee:e5:1b:0b: 7f:b3:cb:7a:85:46:4f:fa:0a:1b:83:5e:f0:ec:15:71:0c:b1: a8:93:68:64:64:f1:ec:8e:f6:af:7e:88:77:36:81:a9:a2:e0: b0:37:62:da:b4:01:70:1a:05:30:88:2e:2c:bb:e2:84:6f:e9: 25:fd:4c:59:0b:ec:47:0e:b2:09:dd:1c:41:86:c5:94:92:59: a0:8c:9e:18:71:02:04:9c:7f:dc:5a:1e:14:16:53:f0:8a:02: e1:30:85:c5:e9:ad:8c:a9:bd:4e:82:2a:6c:cb:27:fc:93:6e: c2:a6:d1:26:89:c3:8d:8a:bb:fd:80:5e:aa:65:d3:1b:78:f3: 55:91:d8:d0:d7:af:a0:e8:15:ff:01:ca:7c:8b:cb:89:a0:35: 13:1d:07:31 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUe21Hjgvk16bXgF8HuMcykh5TJ0owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTIyMzYyNVoX DTI1MDYzMDIyNDEyNVowMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1 NUFCRjFFRTUyNEFBREY3NDE0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJuVaGk/osAzVms9ZvSP3AFD0N/FogSd3RYB3QZZ0hSypAhI+CXe6eOkV/pf zs8y9GznA1VbYjzrMDpbX92God+wbshZwSzFIEBfB+Pgg/jlgc9oKbM1sc0A5Tkv aD2p0Wkxg4T4fpEQY6yje2LfMYTI97DkwAhvnTjyFSyJOa+jQSDv4X8MvYXljKzp T8Y/pyrG3IHx7DxuLGHt8XwGNoAdTOhiqj/28tRVrlaAbs84feKDM0uH2zMckCo0 IaGW5q+xRLv1apYoiaOcwBumMK4RElQhlMstnfMj1VuAIOp2f00ochicTaW5ESCW tdhg6HnDE6T5pwMOSLg5gh85bWMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFI+44fTwAqHt+NVq/HuUkqt90FIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFhOTUyMGZk LThkZTUtNGE2OS04NWYxLWM0NDg5N2FlNjEyMS8wLzUyM0VFMzg3RDNDMDBBODdC N0UzNTVBQkYxRUU1MjRBQURGNzQxNDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnmTwwDwQCAAIwCQMHACABDfQ2gDANBgkqhkiG9w0BAQsFAAOCAQEABmEg4SUt Hrv2BYZo8Q226Grh8lHW3j+AA7WPuBQFdGy2CugZmlh5cGUVg2zf1eMtD9QyuKkp dC1DZbqIPvRUoheT2l5VoBNKHTqVXtSm76DC5+VpBe1DMHKVjBeJQcqR5FNA9V4d Csru5RsLf7PLeoVGT/oKG4Ne8OwVcQyxqJNoZGTx7I72r36IdzaBqaLgsDdi2rQB cBoFMIguLLvihG/pJf1MWQvsRw6yCd0cQYbFlJJZoIyeGHECBJx/3FoeFBZT8IoC 4TCFxemtjKm9ToIqbMsn/JNuwqbRJonDjYq7/YBeqmXTG3jzVZHY0NevoOgV/wHK fIvLiaA1Ex0HMQ== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:21 2024 by rpki-client on console-ams.rpki-client.org