$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer File: 142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer (raw, json) Hash identifier: e3VhNV+V82ub7evTUpmsgVCOlcB/llIasadOuxXAVYo= Subject key identifier: 14:2A:78:CA:51:D8:80:42:BA:51:2A:1B:B4:6D:6D:F4:4F:63:BB:D7 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 621982D1FE37891EF632D93155594DCC60BEE246 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.mft caRepository: rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 30 Jul 2024 01:23:43 +0000 Certificate not after: Tue 29 Jul 2025 01:28:43 +0000 Subordinate resources: IP: 160.20.240.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:19:82:d1:fe:37:89:1e:f6:32:d9:31:55:59:4d:cc:60:be:e2:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 30 01:23:43 2024 GMT Not After : Jul 29 01:28:43 2025 GMT Subject: CN=142A78CA51D88042BA512A1BB46D6DF44F63BBD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d8:8f:cf:04:e3:d6:5c:17:97:23:13:c7:f2: 70:cd:2b:ac:8a:d6:73:95:ca:0c:39:95:ba:96:d0: 8c:55:54:6b:3f:d1:fe:4a:f5:33:25:7f:06:80:ba: 31:0c:37:32:ff:47:04:35:ae:63:c5:04:d7:72:23: 97:8a:60:a0:0b:6d:90:b1:1a:35:5b:94:b4:53:4c: d0:d7:ef:74:f5:cd:17:46:03:3e:0b:ac:4a:76:81: 4e:c1:24:d2:3d:e5:4a:80:ba:d4:fb:5b:fa:f1:48: 5d:6d:21:96:fc:5e:43:22:70:d3:36:22:02:18:56: 36:e4:7e:a4:0e:a8:f4:a2:74:0f:46:00:c8:1e:b8: 9d:0c:29:83:8b:c7:65:a5:c9:1b:da:95:da:11:8a: 4d:3d:86:c2:20:45:9b:92:6e:7a:e2:fe:ab:59:53: 49:ff:91:8c:0e:73:81:94:10:37:01:2c:aa:b6:fd: 4e:f4:e3:f0:15:ee:d4:29:29:5a:11:8f:6a:8c:08: 83:05:67:37:71:ca:07:af:48:d6:06:ab:0e:65:5c: b6:15:06:05:ee:47:92:93:84:6d:f9:1f:cc:90:ca: 99:02:bb:08:97:0e:21:a4:d2:33:53:6d:e2:08:c8: e8:45:b1:5e:75:cd:d4:8e:0c:c4:10:51:be:32:2a: 8a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 14:2A:78:CA:51:D8:80:42:BA:51:2A:1B:B4:6D:6D:F4:4F:63:BB:D7 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.240.0/24 Signature Algorithm: sha256WithRSAEncryption 40:37:b2:a7:39:82:39:77:a1:e8:39:d6:b5:3b:1b:30:de:74: ca:d0:3a:e5:27:ac:7f:61:ba:1b:98:4b:c4:0d:5e:5d:70:fc: 1e:c4:4d:90:c9:44:f3:57:1c:1e:03:89:98:24:af:89:54:31: 11:a4:63:22:45:8d:79:18:03:af:78:28:6e:e7:f7:3c:d4:82: 62:16:1c:b4:a6:13:60:c6:05:59:36:1b:59:ad:70:36:67:68: be:cc:1d:61:d2:07:a6:ba:1d:47:92:07:67:af:a7:20:3e:06: 48:d2:dc:81:da:47:ea:8a:76:8a:7a:43:2b:05:66:f5:2b:10: 3d:1c:5a:e5:24:31:08:61:77:37:c8:e1:c6:25:0c:ca:61:ba: 0f:97:72:ae:cf:58:0a:d6:9d:f3:87:c6:79:94:03:2a:cd:08: 1b:72:7d:cb:9b:de:8a:b2:29:cb:d1:e0:5d:78:7f:62:38:75: 78:01:e1:79:33:de:05:d8:d4:97:08:9e:ab:91:bd:a8:fb:e4: 73:d6:b0:a6:e7:1e:28:1d:a0:b7:d4:57:2d:56:68:85:fb:1d: f6:8b:9b:47:a4:09:d4:11:16:30:37:a2:fd:d8:b3:7c:d8:24: ba:ef:42:77:53:85:d9:d5:98:38:d3:b6:9e:94:d2:5d:4e:46: a7:d1:3b:01 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYhmC0f43iR72MtkxVVlNzGC+4kYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDczMDAxMjM0M1oX DTI1MDcyOTAxMjg0M1owMzExMC8GA1UEAxMoMTQyQTc4Q0E1MUQ4ODA0MkJBNTEy QTFCQjQ2RDZERjQ0RjYzQkJENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALzYj88E49ZcF5cjE8fycM0rrIrWc5XKDDmVupbQjFVUaz/R/kr1MyV/BoC6 MQw3Mv9HBDWuY8UE13Ijl4pgoAttkLEaNVuUtFNM0NfvdPXNF0YDPgusSnaBTsEk 0j3lSoC61Ptb+vFIXW0hlvxeQyJw0zYiAhhWNuR+pA6o9KJ0D0YAyB64nQwpg4vH ZaXJG9qV2hGKTT2GwiBFm5JueuL+q1lTSf+RjA5zgZQQNwEsqrb9TvTj8BXu1Ckp WhGPaowIgwVnN3HKB69I1garDmVcthUGBe5HkpOEbfkfzJDKmQK7CJcOIaTSM1Nt 4gjI6EWxXnXN1I4MxBBRvjIqiiMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBQqeMpR2IBCulEqG7RtbfRPY7vXMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZmM1YTFjYy1jYzVlLTRlNTgtOGRmNC1mODg2NzE4MzEzYWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmYzVhMWNj LWNjNWUtNGU1OC04ZGY0LWY4ODY3MTgzMTNhYS8wLzE0MkE3OENBNTFEODgwNDJC QTUxMkExQkI0NkQ2REY0NEY2M0JCRDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACgFPAwDQYJKoZIhvcNAQELBQADggEBAEA3sqc5gjl3oeg51rU7GzDedMrQOuUn rH9huhuYS8QNXl1w/B7ETZDJRPNXHB4DiZgkr4lUMRGkYyJFjXkYA694KG7n9zzU gmIWHLSmE2DGBVk2G1mtcDZnaL7MHWHSB6a6HUeSB2evpyA+BkjS3IHaR+qKdop6 QysFZvUrED0cWuUkMQhhdzfI4cYlDMphug+Xcq7PWArWnfOHxnmUAyrNCBtyfcub 3oqyKcvR4F14f2I4dXgB4Xkz3gXY1JcInquRvaj75HPWsKbnHigdoLfUVy1WaIX7 HfaLm0ekCdQRFjA3ov3Ys3zYJLrvQndThdnVmDjTtp6U0l1ORqfROwE= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org