$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer File: D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer (raw, json) Hash identifier: XE4rwc+KeCplaDmtlkmI4tZg0rthfBImQaT2LZ2Xq8Q= Subject key identifier: D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C051D8C5D0719C0D4010E1729271E8E691D954B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft caRepository: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 14 Jul 2024 23:54:32 +0000 Certificate not after: Sun 13 Jul 2025 23:59:32 +0000 Subordinate resources: IP: 103.84.200.0/23 IP: 2001:df0:3700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:05:1d:8c:5d:07:19:c0:d4:01:0e:17:29:27:1e:8e:69:1d:95:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 23:54:32 2024 GMT Not After : Jul 13 23:59:32 2025 GMT Subject: CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:35:d9:77:b3:14:40:ad:66:41:b4:b9:58:8d: a5:cb:4b:75:ff:2f:f8:41:d5:f2:f9:52:38:18:92: e6:37:ad:ce:fe:c5:29:ca:e0:84:0a:86:10:b6:eb: 27:64:f9:82:dd:2b:bc:f5:eb:81:e2:09:35:44:61: c1:de:95:45:fb:6a:e6:62:ed:df:b0:a8:99:7b:f5: 8b:58:84:fb:ec:a0:0b:4e:f7:b4:e4:71:68:e6:e6: c4:f0:50:a6:56:4f:ae:6e:4e:10:2c:5b:f1:e7:e7: 27:2f:ad:e2:12:a6:41:b2:44:d1:5c:f1:cd:19:4e: 18:62:76:48:f1:81:1c:c2:88:45:e6:4f:8d:43:33: f3:30:29:73:ce:3a:73:fd:7e:39:c8:ce:6f:4d:a1: 14:b9:bb:3b:e2:bd:f8:98:58:25:d0:b6:95:a6:2c: 03:7e:ef:82:88:36:8c:56:fe:98:67:85:1e:07:61: 41:51:8f:28:62:05:ac:b4:ce:56:f0:44:fd:0e:17: 41:45:c8:d7:b3:b9:43:46:1a:96:32:c9:de:df:c4: fd:4e:cd:49:73:b8:c6:ab:81:65:45:1c:dc:1b:e7: 48:11:24:93:9f:79:a0:25:13:44:8b:60:df:57:b5: dc:ac:58:cf:dd:b9:87:fc:72:c8:4f:b4:e5:e1:63: 6c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.200.0/23 IPv6: 2001:df0:3700::/48 Signature Algorithm: sha256WithRSAEncryption 65:0b:a0:7d:17:da:de:e8:b6:7d:1f:92:ff:f1:f6:bc:6f:c6: 33:86:34:7c:77:48:16:fb:11:98:2b:56:77:6e:02:83:8b:16: e8:93:00:02:57:f6:a0:ea:e1:ac:2a:b3:0b:5b:9a:7c:af:91: 63:5b:7c:ed:97:74:c5:9c:9a:d0:ed:c6:b2:95:75:24:9b:38: f5:2c:fd:bd:0b:fe:c7:4e:95:53:b6:6a:be:14:23:19:b7:b7: d2:44:66:c9:8d:6a:e1:63:6d:a2:5f:2d:7c:7c:bd:ea:d8:62: 66:f4:e1:51:5e:10:40:7b:04:9e:1f:cb:81:78:36:70:ed:f3: 56:e8:64:e3:7b:d4:28:04:14:15:95:98:46:d8:75:ee:7a:2b: b2:0d:1a:d8:f5:a4:aa:07:37:19:0f:30:41:7b:33:37:bd:0e: 19:76:37:62:f6:7f:59:e0:31:0d:e6:87:fe:b4:77:8a:15:f7: cd:19:9e:f4:1d:d0:4b:a5:d6:95:2d:1c:82:ae:2a:cd:79:4a: 03:4e:1f:81:5d:0b:56:b4:90:ed:07:9b:e3:58:cc:78:92:35: aa:26:4f:58:d4:d6:63:44:ac:38:32:bc:66:45:1c:59:41:b1: 71:8d:03:92:f2:49:3e:ef:96:4f:bd:f0:e3:d1:f1:38:34:e1: ce:f2:e9:54 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUDAUdjF0HGcDUAQ4XKScejmkdlUswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxNDIzNTQzMloX DTI1MDcxMzIzNTkzMlowMzExMC8GA1UEAxMoRDI4QkE5RDVFMzIxOTNERUUyOUVC NEMxOTQ0RjM1RkMzMkQ4QjE5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOs12XezFECtZkG0uViNpctLdf8v+EHV8vlSOBiS5jetzv7FKcrghAqGELbr J2T5gt0rvPXrgeIJNURhwd6VRftq5mLt37ComXv1i1iE++ygC073tORxaObmxPBQ plZPrm5OECxb8efnJy+t4hKmQbJE0VzxzRlOGGJ2SPGBHMKIReZPjUMz8zApc846 c/1+OcjOb02hFLm7O+K9+JhYJdC2laYsA37vgog2jFb+mGeFHgdhQVGPKGIFrLTO VvBE/Q4XQUXI17O5Q0YaljLJ3t/E/U7NSXO4xquBZUUc3BvnSBEkk595oCUTRItg 31e13KxYz925h/xyyE+05eFjbKkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNKLqdXjIZPe4p60wZRPNfwy2LGbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yNWUyNDE1Yy03ZDRmLTQ0MjctODMyZC01OWI0Yzc5YWFlNWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1ZTI0MTVj LTdkNGYtNDQyNy04MzJkLTU5YjRjNzlhYWU1YS8wL0QyOEJBOUQ1RTMyMTkzREVF MjlFQjRDMTk0NEYzNUZDMzJEOEIxOUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnVMgwDwQCAAIwCQMHACABDfA3ADANBgkqhkiG9w0BAQsFAAOCAQEAZQugfRfa 3ui2fR+S//H2vG/GM4Y0fHdIFvsRmCtWd24Cg4sW6JMAAlf2oOrhrCqzC1uafK+R Y1t87Zd0xZya0O3GspV1JJs49Sz9vQv+x06VU7ZqvhQjGbe30kRmyY1q4WNtol8t fHy96thiZvThUV4QQHsEnh/LgXg2cO3zVuhk43vUKAQUFZWYRth17norsg0a2PWk qgc3GQ8wQXszN70OGXY3YvZ/WeAxDeaH/rR3ihX3zRme9B3QS6XWlS0cgq4qzXlK A04fgV0LVrSQ7Qeb41jMeJI1qiZPWNTWY0SsODK8ZkUcWUGxcY0DkvJJPu+WT73w 49HxODThzvLpVA== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:33 2024 by rpki-client on console-ams.rpki-client.org