$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer (raw, json) Hash identifier: pfPcsvuaCpIqDhsGS5UpObyAK7y9WMLNjFoo0NTUW18= Subject key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2FBF9A4099D758B7D05DBC530CD9A2A420CD54C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft caRepository: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 10 Aug 2024 19:41:57 +0000 Certificate not after: Sat 09 Aug 2025 19:46:57 +0000 Subordinate resources: IP: 103.195.88.0/22 IP: 2001:df6:ac00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:bf:9a:40:99:d7:58:b7:d0:5d:bc:53:0c:d9:a2:a4:20:cd:54:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 10 19:41:57 2024 GMT Not After : Aug 9 19:46:57 2025 GMT Subject: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8e:9b:ab:3a:72:41:63:06:7c:b7:91:30:89: 71:3d:40:8e:73:38:d8:e1:c5:8d:17:3b:42:9e:f0: 0d:57:98:a0:df:54:12:5f:4b:d3:ef:9c:dd:a8:8d: 3c:73:a4:7b:19:92:21:26:eb:a1:bf:3e:0f:51:32: 35:eb:51:85:9d:d0:1b:d7:a0:6a:58:7d:5e:a5:7a: 69:14:17:36:b5:59:2d:be:99:04:82:ca:6c:7e:cc: ee:71:51:db:7b:86:c9:06:20:80:f5:b9:73:b3:8b: 84:ce:f4:20:6a:05:8f:12:0e:56:1a:68:51:ba:33: 85:7a:34:d0:a9:06:22:7a:0e:77:ff:7f:95:d8:38: d1:f6:b3:bc:4c:28:68:cd:95:94:b9:3d:ad:a6:36: f8:51:cf:07:1d:21:ed:9f:49:28:9d:de:bd:f2:9b: c0:1f:23:ec:a0:8d:5e:92:2e:e9:20:d3:8b:e8:94: 99:d5:30:57:73:84:14:3f:df:81:7f:45:2e:92:20: dc:de:d3:14:18:3a:82:0e:df:18:b0:a3:bf:c5:14: 85:cb:d7:55:69:f0:c9:d1:4e:79:9e:90:0c:02:8c: 78:8e:44:86:da:06:34:65:1d:fa:bb:c0:d7:8a:4a: 48:55:47:68:7c:53:f7:1f:38:f8:f9:3c:18:42:71: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.88.0/22 IPv6: 2001:df6:ac00::/48 Signature Algorithm: sha256WithRSAEncryption 37:83:b4:cc:e1:1b:17:14:e8:a9:ce:c4:b4:a6:d5:96:fc:81: fe:8d:75:79:f9:40:ec:ec:92:ab:c5:95:75:73:7f:20:79:ba: 47:18:1a:5f:8c:7b:f1:86:2f:51:3c:94:a9:28:51:56:8c:26: 74:2d:8a:33:06:98:99:b3:20:24:ba:a8:14:d3:f5:90:a0:bc: 5a:99:11:ed:e6:e1:b0:d1:89:64:0a:8e:ab:2a:f6:fc:86:d4: d8:1d:d8:9f:e2:1d:98:d5:84:1f:1d:03:09:f3:ca:95:89:49: 92:9a:26:c0:cd:13:e8:47:70:1b:39:65:3a:01:47:e6:5f:3b: cd:67:70:1c:ed:14:66:05:39:14:07:82:c0:9e:fe:ad:fd:a9: 3e:81:ff:73:31:b2:25:ad:2c:32:65:0a:27:d9:bb:af:bb:6b: 29:ca:f2:6e:92:76:25:81:71:b1:e3:e5:d3:8f:f6:d8:5a:50: 59:43:3c:aa:cb:77:f0:77:74:4a:06:ae:74:f5:30:0e:63:ba: 47:72:4a:01:0c:7d:ff:9b:6f:87:88:dc:08:c0:9f:6c:c7:a6: e0:32:4b:62:44:c2:36:f6:6e:7a:66:0d:f7:1b:1a:6a:e6:74: 71:d6:9b:b6:59:f5:e1:a5:75:2f:08:75:a6:18:7a:b9:b0:cf: e0:ac:7d:ae -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUL7+aQJnXWLfQXbxTDNmipCDNVMEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxMDE5NDE1N1oX DTI1MDgwOTE5NDY1N1owMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4 QUNGREQ5RjRERUQzQTBFRDVCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALuOm6s6ckFjBny3kTCJcT1AjnM42OHFjRc7Qp7wDVeYoN9UEl9L0++c3aiN PHOkexmSISbrob8+D1EyNetRhZ3QG9egalh9XqV6aRQXNrVZLb6ZBILKbH7M7nFR 23uGyQYggPW5c7OLhM70IGoFjxIOVhpoUbozhXo00KkGInoOd/9/ldg40fazvEwo aM2VlLk9raY2+FHPBx0h7Z9JKJ3evfKbwB8j7KCNXpIu6SDTi+iUmdUwV3OEFD/f gX9FLpIg3N7TFBg6gg7fGLCjv8UUhcvXVWnwydFOeZ6QDAKMeI5EhtoGNGUd+rvA 14pKSFVHaHxT9x84+Pk8GEJxtr0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFKKeZ6UvVBS9vWKz92fTe06DtW7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mOThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5OGYxOWMz LWU0ZTEtNDFhMS1hYWYwLWQ2MTNhY2E0OTMwYy8wLzUyOEE3OTlFOTRCRDUwNTJG NkY1OEFDRkREOUY0REVEM0EwRUQ1QkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnw1gwDwQCAAIwCQMHACABDfasADANBgkqhkiG9w0BAQsFAAOCAQEAN4O0zOEb FxToqc7EtKbVlvyB/o11eflA7OySq8WVdXN/IHm6RxgaX4x78YYvUTyUqShRVowm dC2KMwaYmbMgJLqoFNP1kKC8WpkR7ebhsNGJZAqOqyr2/IbU2B3Yn+IdmNWEHx0D CfPKlYlJkpomwM0T6EdwGzllOgFH5l87zWdwHO0UZgU5FAeCwJ7+rf2pPoH/czGy Ja0sMmUKJ9m7r7trKcrybpJ2JYFxsePl04/22FpQWUM8qst38Hd0SgaudPUwDmO6 R3JKAQx9/5tvh4jcCMCfbMem4DJLYkTCNvZuemYN9xsaauZ0cdabtln14aV1Lwh1 phh6ubDP4Kx9rg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:21 2024 by rpki-client on console-ams.rpki-client.org