$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer File: 020EA2304929066809CA6F723574798639D77438.cer (raw, json) Hash identifier: HsWbCMzo0zldqXd/TkBbDi8eNosPrhmTIMIJOtiT46o= Subject key identifier: 02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 59AFD119D29BEE4468BEC750D17A7791BB4AAADA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft caRepository: rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 08 Jul 2024 05:30:31 +0000 Certificate not after: Mon 07 Jul 2025 05:35:31 +0000 Subordinate resources: IP: 160.25.54.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:af:d1:19:d2:9b:ee:44:68:be:c7:50:d1:7a:77:91:bb:4a:aa:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 8 05:30:31 2024 GMT Not After : Jul 7 05:35:31 2025 GMT Subject: CN=020EA2304929066809CA6F723574798639D77438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f5:d6:73:1c:ef:d0:f5:07:c7:c7:0a:57:f2: 63:49:c9:e9:89:cc:44:8d:ef:ce:4f:3f:40:1a:57: 79:66:b1:f3:1b:a7:c3:53:04:e3:69:6b:9a:76:c7: fb:f7:82:c2:fc:ba:63:c0:2a:74:db:d5:53:39:3d: 0f:7e:b5:58:c3:30:cb:15:da:05:54:bd:5c:c2:51: 1f:58:1e:08:8e:64:a8:26:e7:03:6c:99:db:e9:2f: 49:60:61:14:85:fb:c2:18:f1:86:67:17:d0:c2:6b: 90:a5:5e:17:9d:2a:56:be:bb:0d:6d:13:64:9e:73: 58:ae:4e:eb:cb:e2:6a:1a:cf:db:a3:b6:c3:7d:4d: 5e:ca:68:5e:a5:e8:45:68:24:aa:65:3b:dc:4f:7a: 6d:15:33:ef:8a:aa:ee:f2:71:b5:5a:bc:fe:28:90: 92:0c:2b:74:7a:f4:ea:a7:4d:89:c3:fb:76:52:ea: ba:4e:f5:4c:2d:25:da:5b:29:7b:86:fe:ed:98:83: a4:a8:ae:e3:dc:41:be:b2:36:4a:08:59:61:73:bd: 14:d7:03:84:fc:bb:3c:48:df:d2:6d:04:09:af:3f: 37:52:92:c3:99:61:9d:a8:9e:40:fc:9c:fa:da:59: 82:6c:31:2b:2b:f2:9f:64:40:f0:b1:18:dd:2f:25: 0d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.54.0/23 Signature Algorithm: sha256WithRSAEncryption 49:d6:b0:44:a8:8f:9b:98:e1:1e:ea:39:d6:68:b6:26:7f:92: 7b:9d:45:59:db:92:b2:20:d8:0a:d3:5d:d5:44:76:cc:24:81: 1c:80:7e:53:d8:2c:5c:ca:20:3b:8a:bf:b5:fe:85:a4:7a:77: 2c:d9:16:fb:0b:d0:a8:68:58:06:c5:f0:47:6a:95:a9:b6:f2: f1:f6:97:17:1b:33:5b:b7:40:c8:1f:a5:95:46:50:0e:33:60: da:3b:3c:06:a4:06:aa:b9:91:c5:f3:c8:ec:0a:6c:0e:7d:65: 75:03:82:f0:28:67:60:cd:ba:4f:ef:5b:dc:d3:e5:f8:2b:13: be:04:d4:be:cd:20:e9:5e:89:43:b0:04:53:27:93:d0:d3:1a: 67:da:41:9f:9e:3b:0f:6d:df:81:ff:03:6d:33:a2:ec:bb:4e: f4:d9:cd:bf:5f:88:18:04:f9:7c:b5:74:58:36:58:e4:19:23: 4e:db:2a:70:d2:87:cf:87:4a:ff:bc:4a:f2:d8:99:20:69:97: a9:79:be:78:cd:d6:fe:32:2c:09:a6:39:01:80:e4:22:29:e3: b6:ff:d6:08:40:f9:05:3f:bd:19:77:8c:9d:48:1c:a0:11:51: d0:6d:97:5a:ee:c4:82:a4:4f:a3:be:4e:ac:6f:df:8f:70:f5: cd:d7:bf:af -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWa/RGdKb7kRovsdQ0Xp3kbtKqtowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcwODA1MzAzMVoX DTI1MDcwNzA1MzUzMVowMzExMC8GA1UEAxMoMDIwRUEyMzA0OTI5MDY2ODA5Q0E2 RjcyMzU3NDc5ODYzOUQ3NzQzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALb11nMc79D1B8fHClfyY0nJ6YnMRI3vzk8/QBpXeWax8xunw1ME42lrmnbH +/eCwvy6Y8AqdNvVUzk9D361WMMwyxXaBVS9XMJRH1geCI5kqCbnA2yZ2+kvSWBh FIX7whjxhmcX0MJrkKVeF50qVr67DW0TZJ5zWK5O68viahrP26O2w31NXspoXqXo RWgkqmU73E96bRUz74qq7vJxtVq8/iiQkgwrdHr06qdNicP7dlLquk71TC0l2lsp e4b+7ZiDpKiu49xBvrI2SghZYXO9FNcDhPy7PEjf0m0ECa8/N1KSw5lhnaieQPyc +tpZgmwxKyvyn2RA8LEY3S8lDRECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAIOojBJKQZoCcpvcjV0eYY513Q4MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWEyNmExMC01OGU4LTQzYzctOTQ3ZS03MjIxNzNkNjY2MTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTI2YTEw LTU4ZTgtNDNjNy05NDdlLTcyMjE3M2Q2NjYxNC8wLzAyMEVBMjMwNDkyOTA2Njgw OUNBNkY3MjM1NzQ3OTg2MzlENzc0MzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGTYwDQYJKoZIhvcNAQELBQADggEBAEnWsESoj5uY4R7qOdZotiZ/knudRVnb krIg2ArTXdVEdswkgRyAflPYLFzKIDuKv7X+haR6dyzZFvsL0KhoWAbF8Edqlam2 8vH2lxcbM1u3QMgfpZVGUA4zYNo7PAakBqq5kcXzyOwKbA59ZXUDgvAoZ2DNuk/v W9zT5fgrE74E1L7NIOleiUOwBFMnk9DTGmfaQZ+eOw9t34H/A20zouy7TvTZzb9f iBgE+Xy1dFg2WOQZI07bKnDSh8+HSv+8SvLYmSBpl6l5vnjN1v4yLAmmOQGA5CIp 47b/1ghA+QU/vRl3jJ1IHKARUdBtl1ruxIKkT6O+Tqxv349w9c3Xv68= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org