$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/23475A86BB5C515DDD7753B6555E267A3F5C28F4.cer File: 23475A86BB5C515DDD7753B6555E267A3F5C28F4.cer (raw, json) Hash identifier: BZQWN6dtEJwd2kViZXx1v2H3kJu96lYWRQZQBPEcdcI= Subject key identifier: 23:47:5A:86:BB:5C:51:5D:DD:77:53:B6:55:5E:26:7A:3F:5C:28:F4 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 31133C2E74762CD8882ED32CEC65AD3E1CD4526F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/23475A86BB5C515DDD7753B6555E267A3F5C28F4.mft caRepository: rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 17 Oct 2024 08:32:34 +0000 Certificate not after: Thu 16 Oct 2025 08:37:34 +0000 Subordinate resources: IP: 160.22.30.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:13:3c:2e:74:76:2c:d8:88:2e:d3:2c:ec:65:ad:3e:1c:d4:52:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 17 08:32:34 2024 GMT Not After : Oct 16 08:37:34 2025 GMT Subject: CN=23475A86BB5C515DDD7753B6555E267A3F5C28F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ad:82:5e:d8:10:84:30:ca:da:05:69:11:52: f6:ea:9e:f5:d2:59:26:47:d6:35:3b:29:9f:1c:a4: 4f:8e:a8:7b:05:ac:95:b9:24:09:ea:59:1e:7b:10: 11:7c:f1:72:27:67:f6:ff:8a:a0:ce:54:93:00:3e: ac:fd:17:73:2d:02:db:c0:1c:29:df:e0:68:73:d4: 02:7b:27:2b:56:48:82:84:58:94:1b:e7:1b:09:a8: 2c:64:f0:d5:d0:05:d2:35:76:cd:16:12:b0:05:88: eb:5d:94:7a:26:70:37:64:c7:0b:7b:9a:13:5a:a2: 63:e8:ae:38:86:b1:df:2d:89:d0:35:f5:37:98:fd: 8e:af:a3:f0:68:03:ab:df:05:61:1f:6b:00:87:24: 3d:b0:7e:32:76:b4:26:50:af:bc:6b:e0:b1:7e:3d: 24:53:ff:2f:95:b5:a5:32:fb:14:db:28:d2:5e:be: 3c:35:d6:4b:87:ae:4b:7f:e5:04:86:9b:91:78:ce: 2a:0d:71:cb:05:dd:1d:ad:f5:20:e0:8d:cf:20:62: 4e:06:37:b1:03:5d:66:bc:a5:f1:bc:fe:dc:51:b2: 12:a7:d7:f4:d6:74:2a:ef:5c:d2:e8:46:39:94:01: 1f:e9:0d:2c:a5:d4:af:15:89:b3:d0:f2:eb:d0:74: 11:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 23:47:5A:86:BB:5C:51:5D:DD:77:53:B6:55:5E:26:7A:3F:5C:28:F4 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f5efc413-2709-483e-a314-c5d0663df932/0/23475A86BB5C515DDD7753B6555E267A3F5C28F4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.30.0/23 Signature Algorithm: sha256WithRSAEncryption 04:f3:4e:bc:88:6e:27:db:56:c2:d3:cc:1d:df:1d:38:4a:78: 2f:c7:35:43:2b:1d:ca:0f:2b:c7:14:4b:4b:f7:14:78:1a:55: d4:2b:a5:88:fd:e9:7a:55:4d:cc:fc:77:48:2e:de:d5:17:60: 2c:f6:ff:8e:28:4f:3d:fc:d6:68:62:81:a3:ad:6f:1a:89:8a: 52:6c:b4:f8:7f:70:6a:f0:50:27:75:76:48:e8:85:52:1e:5c: 46:b9:f8:48:ae:6e:cf:a2:c0:66:e7:26:8b:15:65:d0:07:29: 99:7e:ae:22:1b:44:38:d4:88:f3:a7:b9:ce:8c:90:28:bf:03: 5e:44:ad:9c:b9:9d:43:95:fa:e9:d0:53:53:5a:25:33:6d:92: b7:a8:04:6d:72:3a:f3:08:a4:95:9b:bf:93:08:47:2f:73:d2: ee:f0:45:6a:03:8c:8b:8c:c2:72:5e:23:10:ca:c3:41:fa:f5: f0:8e:e8:30:49:d6:bc:a2:18:b1:ee:76:e9:ba:9b:da:24:98: 96:56:db:43:c6:5b:7b:7a:57:e8:5a:18:8b:f3:78:8f:ee:ff: c7:2d:ca:3a:bb:ad:60:b0:e4:97:eb:43:03:82:d1:1d:b2:04: 48:af:ea:bb:ae:ea:ab:53:4b:61:fa:45:24:6e:90:b5:cb:38: 03:16:0d:f5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMRM8LnR2LNiILtMs7GWtPhzUUm8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAxNzA4MzIzNFoX DTI1MTAxNjA4MzczNFowMzExMC8GA1UEAxMoMjM0NzVBODZCQjVDNTE1RERENzc1 M0I2NTU1RTI2N0EzRjVDMjhGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANetgl7YEIQwytoFaRFS9uqe9dJZJkfWNTspnxykT46oewWslbkkCepZHnsQ EXzxcidn9v+KoM5UkwA+rP0Xcy0C28AcKd/gaHPUAnsnK1ZIgoRYlBvnGwmoLGTw 1dAF0jV2zRYSsAWI612UeiZwN2THC3uaE1qiY+iuOIax3y2J0DX1N5j9jq+j8GgD q98FYR9rAIckPbB+Mna0JlCvvGvgsX49JFP/L5W1pTL7FNso0l6+PDXWS4euS3/l BIabkXjOKg1xywXdHa31IOCNzyBiTgY3sQNdZryl8bz+3FGyEqfX9NZ0Ku9c0uhG OZQBH+kNLKXUrxWJs9Dy69B0EcUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCNHWoa7XFFd3XdTtlVeJno/XCj0MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNWVmYzQxMy0yNzA5LTQ4M2UtYTMxNC1jNWQwNjYzZGY5MzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1ZWZjNDEz LTI3MDktNDgzZS1hMzE0LWM1ZDA2NjNkZjkzMi8wLzIzNDc1QTg2QkI1QzUxNURE RDc3NTNCNjU1NUUyNjdBM0Y1QzI4RjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFh4wDQYJKoZIhvcNAQELBQADggEBAATzTryIbifbVsLTzB3fHThKeC/HNUMr HcoPK8cUS0v3FHgaVdQrpYj96XpVTcz8d0gu3tUXYCz2/44oTz381mhigaOtbxqJ ilJstPh/cGrwUCd1dkjohVIeXEa5+Eiubs+iwGbnJosVZdAHKZl+riIbRDjUiPOn uc6MkCi/A15ErZy5nUOV+unQU1NaJTNtkreoBG1yOvMIpJWbv5MIRy9z0u7wRWoD jIuMwnJeIxDKw0H69fCO6DBJ1ryiGLHudum6m9okmJZW20PGW3t6V+haGIvzeI/u /8ctyjq7rWCw5JfrQwOC0R2yBEiv6ruu6qtTS2H6RSRukLXLOAMWDfU= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org