$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer File: 2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer (raw, json) Hash identifier: tAeePQRhDIjy76yLsyclws10cu3JHr6wL5x78IUjodI= Subject key identifier: 20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 649148245062CC6E838DA2FFE8831C737374105B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.mft caRepository: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 04 Oct 2024 09:01:31 +0000 Certificate not after: Fri 03 Oct 2025 09:06:31 +0000 Subordinate resources: IP: 160.25.229.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:91:48:24:50:62:cc:6e:83:8d:a2:ff:e8:83:1c:73:73:74:10:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 4 09:01:31 2024 GMT Not After : Oct 3 09:06:31 2025 GMT Subject: CN=2098B3BD046CFFF28B48954F288A333FADDD1DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3e:16:31:b2:48:d4:e7:88:27:da:92:1e:7e: 38:92:be:1c:6e:1a:93:e2:c1:25:1a:04:b5:c3:eb: 05:e7:8f:f8:69:3a:d9:b2:27:b1:2c:44:f4:c3:89: d6:ed:e5:e1:52:d0:68:2b:2b:63:40:63:b8:60:08: 9d:a8:6a:5b:fa:7f:c1:d1:14:54:52:58:4e:94:3c: d7:92:c9:48:ff:c8:b4:c3:b8:bf:c2:fa:3c:05:a4: 8e:d8:9b:10:fe:b1:f3:cf:af:a7:7b:73:3c:ed:b4: 3d:37:dc:e6:b1:ae:39:41:26:60:33:8b:6f:5a:84: 40:2e:bb:8e:ac:ef:f3:9b:a1:4f:07:9a:ef:85:46: 33:ad:bf:c4:d2:7c:94:4a:a2:4a:42:f9:cf:10:09: 22:46:90:c8:21:c4:74:7a:25:38:70:7c:53:22:41: 8f:e0:e3:2d:34:12:79:21:8b:00:3c:a9:3d:a5:0e: db:77:68:c5:e8:2c:00:5f:51:97:a3:12:fd:dd:50: a7:c8:a7:cc:b6:7e:cc:2d:ef:c9:a1:ed:47:49:a3: a5:ac:ab:d4:c7:25:01:6e:e5:01:8b:72:a6:44:2e: b5:4b:5b:a9:7f:b1:3b:ee:28:04:c3:aa:b4:05:4d: e7:68:c9:09:13:7d:b4:ae:03:51:6e:4d:dc:5f:48: dc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.229.0/24 Signature Algorithm: sha256WithRSAEncryption 63:71:51:74:6c:da:1c:bc:44:c5:02:4d:7d:31:d7:09:6e:f9: 8f:3e:c9:2d:7e:c4:bb:ff:9d:09:8c:69:63:23:e2:39:98:78: 57:53:73:4c:b4:5d:49:7f:2e:c5:fe:42:48:a3:a3:34:1d:ec: ce:26:18:f9:0b:04:69:0a:23:2b:db:e8:85:ff:e6:49:30:55: 5f:97:7e:f5:9b:a1:43:55:3e:7a:48:84:9d:39:0f:35:25:19: d4:f1:52:73:bd:d7:a9:54:8d:81:ec:22:b5:1b:5a:db:d3:73: 12:84:42:00:3e:33:47:8e:3d:7e:10:12:84:91:02:6a:dc:d5: 34:0b:42:e9:35:fd:91:42:3d:6c:bd:fe:52:f9:02:fa:f2:e8: 51:0c:84:6b:f6:f4:48:f0:af:31:8b:af:5a:46:c7:58:e8:9d: b6:e5:d6:72:d2:f7:08:03:4d:9b:e9:aa:e4:0f:25:6e:8e:50: 7b:4b:36:c8:5e:cd:c5:ae:03:4e:c7:e2:ed:4d:e0:3b:e9:ec: 01:67:e6:9d:96:0c:9f:62:b4:88:cd:7d:7f:03:ed:97:73:5f: c8:91:e5:d7:37:45:d5:ee:16:37:d2:69:89:01:ce:09:2d:23: 9f:50:ad:3e:f8:e8:59:b3:26:c1:b0:62:61:dc:1f:d5:06:34: 63:70:22:2d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZJFIJFBizG6DjaL/6IMcc3N0EFswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAwNDA5MDEzMVoX DTI1MTAwMzA5MDYzMVowMzExMC8GA1UEAxMoMjA5OEIzQkQwNDZDRkZGMjhCNDg5 NTRGMjg4QTMzM0ZBREREMURFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKk+FjGySNTniCfakh5+OJK+HG4ak+LBJRoEtcPrBeeP+Gk62bInsSxE9MOJ 1u3l4VLQaCsrY0BjuGAInahqW/p/wdEUVFJYTpQ815LJSP/ItMO4v8L6PAWkjtib EP6x88+vp3tzPO20PTfc5rGuOUEmYDOLb1qEQC67jqzv85uhTwea74VGM62/xNJ8 lEqiSkL5zxAJIkaQyCHEdHolOHB8UyJBj+DjLTQSeSGLADypPaUO23doxegsAF9R l6MS/d1Qp8inzLZ+zC3vyaHtR0mjpayr1MclAW7lAYtypkQutUtbqX+xO+4oBMOq tAVN52jJCRN9tK4DUW5N3F9I3O0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCCYs70EbP/yi0iVTyiKMz+t3R3pMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYTQxNzYwOC0xNmI4LTQ0OTctODFlMy05NDdkNzhkYmNmMTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FhNDE3NjA4 LTE2YjgtNDQ5Ny04MWUzLTk0N2Q3OGRiY2YxMS8wLzIwOThCM0JEMDQ2Q0ZGRjI4 QjQ4OTU0RjI4OEEzMzNGQURERDFERTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACgGeUwDQYJKoZIhvcNAQELBQADggEBAGNxUXRs2hy8RMUCTX0x1wlu+Y8+yS1+ xLv/nQmMaWMj4jmYeFdTc0y0XUl/LsX+QkijozQd7M4mGPkLBGkKIyvb6IX/5kkw VV+XfvWboUNVPnpIhJ05DzUlGdTxUnO916lUjYHsIrUbWtvTcxKEQgA+M0eOPX4Q EoSRAmrc1TQLQuk1/ZFCPWy9/lL5Avry6FEMhGv29EjwrzGLr1pGx1jonbbl1nLS 9wgDTZvpquQPJW6OUHtLNshezcWuA07H4u1N4Dvp7AFn5p2WDJ9itIjNfX8D7Zdz X8iR5dc3RdXuFjfSaYkBzgktI59QrT746FmzJsGwYmHcH9UGNGNwIi0= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org