$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer File: 5B558AD01277C8212C974318B6352FB28BF683AD.cer (raw, json) Hash identifier: nGnddXLxml31rbwh0/mJrriWyjWkZFZ17q1uhISAHAM= Subject key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B7C2BC2B6F0F45547A8618FE73BA41681DB0917 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft caRepository: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 31 Oct 2024 15:29:11 +0000 Certificate not after: Thu 30 Oct 2025 15:34:11 +0000 Subordinate resources: IP: 103.196.40.0/23 IP: 2001:df1:b5c0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:7c:2b:c2:b6:f0:f4:55:47:a8:61:8f:e7:3b:a4:16:81:db:09:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 31 15:29:11 2024 GMT Not After : Oct 30 15:34:11 2025 GMT Subject: CN=5B558AD01277C8212C974318B6352FB28BF683AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:2d:60:d4:5d:bf:81:be:d8:27:6a:a3:32: 31:40:0b:59:ea:08:f1:59:2c:6c:df:07:9b:82:d5: a3:7b:db:08:24:1f:4f:63:b2:d7:09:31:68:50:0f: f1:0a:bb:98:6d:1a:40:54:0d:ee:22:e7:b1:ba:43: e2:6a:43:91:ad:01:bd:95:fd:50:eb:5a:f2:ad:f7: 36:70:73:4e:39:3b:c2:d0:35:0b:36:49:f2:70:9e: 6e:18:01:20:1f:b8:08:04:da:4c:c1:d4:7c:bc:28: 1e:1c:3c:19:3a:e9:c7:1b:a6:d2:3c:84:6f:04:ee: 96:b4:fb:46:71:f6:11:40:be:a2:22:c0:ad:c9:a4: 0f:6f:29:89:01:27:55:e0:71:68:99:e4:c0:ad:38: b8:ec:9c:36:40:9f:38:e8:91:91:89:8e:6e:55:17: 2f:d0:0a:92:66:4e:01:df:35:33:d5:08:5a:e3:d0: d4:ca:59:4c:a7:49:79:91:ee:34:24:47:20:92:d5: a9:62:ec:a4:62:91:4a:cf:2d:80:4a:33:9f:a9:3d: 48:c7:06:6c:c8:37:5a:65:69:31:ed:94:c3:a7:88: 19:e9:18:7a:6b:7b:de:e1:68:5a:bb:bb:9b:c4:95: e1:33:9f:3e:dd:cb:7c:ee:9d:a7:23:21:11:68:96: 9c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.40.0/23 IPv6: 2001:df1:b5c0::/48 Signature Algorithm: sha256WithRSAEncryption 72:2b:9b:c2:81:64:20:eb:92:70:75:29:0b:53:c1:34:13:b7: 0c:1e:8b:93:9c:06:c9:33:e2:0a:6a:b2:d9:e0:59:12:c9:ee: d0:32:89:fa:89:73:a4:d5:a6:bd:85:12:75:2b:d6:62:5d:44: ab:cf:4e:28:d4:1a:bc:de:68:f2:31:49:99:01:28:eb:af:d4: 8c:5e:73:9a:03:f3:e3:bc:80:a6:8a:e8:55:dd:13:25:88:57: 07:e8:ad:8a:9f:a9:ff:1b:7e:68:96:f9:f7:78:0b:38:b3:3a: 35:86:22:db:d8:6f:8c:06:7f:fd:85:84:07:af:c3:8a:95:2e: 64:e8:02:b4:c8:0e:2e:0a:2a:23:50:b8:3d:e6:f1:7f:4f:00: 6b:55:b0:32:48:93:07:a1:28:a3:f4:3c:ac:34:4c:ae:de:73: 92:59:b4:fe:07:7f:1e:fd:e5:01:a4:66:5d:e4:3a:8a:36:7c: de:9a:f9:2e:19:9e:c8:e3:5a:b1:17:51:d8:17:b0:23:14:11: 64:9b:02:c0:97:70:76:26:b0:3c:01:68:13:1e:49:7a:fa:3b: 33:1c:0a:e4:62:8c:a5:92:f8:93:25:62:51:05:e0:61:16:6a: 9e:ce:4b:30:63:cd:6a:2f:0c:c6:51:8c:a0:88:01:c0:4c:62: 7e:8b:2f:bb -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUK3wrwrbw9FVHqGGP5zukFoHbCRcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMTE1MjkxMVoX DTI1MTAzMDE1MzQxMVowMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0 MzE4QjYzNTJGQjI4QkY2ODNBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALveLWDUXb+BvtgnaqMyMUALWeoI8VksbN8Hm4LVo3vbCCQfT2Oy1wkxaFAP 8Qq7mG0aQFQN7iLnsbpD4mpDka0BvZX9UOta8q33NnBzTjk7wtA1CzZJ8nCebhgB IB+4CATaTMHUfLwoHhw8GTrpxxum0jyEbwTulrT7RnH2EUC+oiLArcmkD28piQEn VeBxaJnkwK04uOycNkCfOOiRkYmOblUXL9AKkmZOAd81M9UIWuPQ1MpZTKdJeZHu NCRHIJLVqWLspGKRSs8tgEozn6k9SMcGbMg3WmVpMe2Uw6eIGekYemt73uFoWru7 m8SV4TOfPt3LfO6dpyMhEWiWnHkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFtVitASd8ghLJdDGLY1L7KL9oOtMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhNWI0ZmE0 LTMyOGMtNGNmMi1hZGUzLWM4NjgxMzFkNGUwZC8wLzVCNTU4QUQwMTI3N0M4MjEy Qzk3NDMxOEI2MzUyRkIyOEJGNjgzQUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnxCgwDwQCAAIwCQMHACABDfG1wDANBgkqhkiG9w0BAQsFAAOCAQEAciubwoFk IOuScHUpC1PBNBO3DB6Lk5wGyTPiCmqy2eBZEsnu0DKJ+olzpNWmvYUSdSvWYl1E q89OKNQavN5o8jFJmQEo66/UjF5zmgPz47yAporoVd0TJYhXB+itip+p/xt+aJb5 93gLOLM6NYYi29hvjAZ//YWEB6/DipUuZOgCtMgOLgoqI1C4Pebxf08Aa1WwMkiT B6Eoo/Q8rDRMrt5zklm0/gd/Hv3lAaRmXeQ6ijZ83pr5LhmeyONasRdR2BewIxQR ZJsCwJdwdiawPAFoEx5Jevo7MxwK5GKMpZL4kyViUQXgYRZqns5LMGPNai8MxlGM oIgBwExifosvuw== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:42 2024 by rpki-client on console-ams.rpki-client.org