$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer File: 24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.cer (raw, json) Hash identifier: jQer01bKr0+5XxVKDn9hkqdmMWW6H3sVDMAjM2/kTrA= Subject key identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 526B408E3F3460E230E209C4B49E0B3714064930 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 16 Jul 2024 08:10:34 +0000 Certificate not after: Tue 15 Jul 2025 08:15:34 +0000 Subordinate resources: IP: 160.25.34.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:6b:40:8e:3f:34:60:e2:30:e2:09:c4:b4:9e:0b:37:14:06:49:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 16 08:10:34 2024 GMT Not After : Jul 15 08:15:34 2025 GMT Subject: CN=24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:61:e9:df:46:4e:7f:d3:a2:24:f5:71:e0: a7:44:8b:5e:fe:df:0b:e1:4c:0d:78:e2:ce:f1:4d: 4e:86:23:7b:b3:84:90:75:40:11:1c:31:92:fa:8b: 47:79:fd:ab:45:44:6a:95:17:a3:98:18:2d:db:9f: 4c:57:c1:02:61:4a:e4:8e:4a:47:2b:68:2e:54:32: 48:74:0a:8e:41:07:34:99:ee:7d:99:a0:a8:a1:c7: 84:bb:0e:3b:72:9c:00:ef:6b:ab:99:0e:08:a9:db: 6e:d4:ba:4d:4b:0d:4e:db:5e:d8:f9:c4:17:33:f2: d9:cc:a7:1d:f3:07:d1:12:1e:04:1d:c4:65:62:a3: 22:1f:88:47:af:28:e7:a3:8d:8e:40:f4:f3:a3:90: e9:e5:f1:64:7e:11:43:33:28:d4:2a:fe:33:c9:5f: 2d:e2:80:4a:85:ed:b1:b9:bc:97:0e:2c:31:ea:e8: 19:e0:1d:0b:22:53:5b:69:1e:43:01:85:ae:c5:17: 5d:4e:39:2b:76:28:74:46:f2:f3:fe:9c:95:32:dd: 3e:a5:22:db:f7:92:f8:6a:b3:b1:63:3a:9a:69:17: 3c:ba:1e:16:96:9c:30:d6:28:18:2d:03:34:59:f1: e6:5d:fc:45:ea:af:2b:9e:e1:50:04:da:fe:04:65: fd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 24:AE:CD:D0:A0:82:7A:48:D5:FB:AE:F5:01:FE:D3:F4:C6:2A:AB:D8 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d6c9b8c-3be7-4c02-9551-fbc6ffc4070f/0/24AECDD0A0827A48D5FBAEF501FED3F4C62AABD8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.34.0/23 Signature Algorithm: sha256WithRSAEncryption 49:cd:28:e6:46:ac:0c:57:3a:1f:d7:cd:85:1f:32:4d:f7:e6: aa:5b:3a:01:df:fc:1c:ff:8a:17:6e:38:b8:d0:71:41:99:41: 04:20:a6:02:eb:06:18:c6:31:d4:18:67:eb:15:a2:52:a5:25: 55:4a:5d:75:c7:08:ee:73:71:e3:68:9b:c0:f2:99:da:61:5a: 00:ae:7b:2c:47:42:31:82:55:aa:91:eb:ea:61:bb:94:fa:2d: 5f:39:32:6c:5e:e8:e4:61:d2:25:ac:8b:1a:56:e4:2e:b1:82: 20:d2:5d:2b:94:ad:bb:af:e1:f0:1c:88:58:34:30:06:82:ec: f6:87:c0:1c:19:dd:57:4e:a1:aa:27:ac:03:19:4f:ea:74:fd: 58:f5:d9:ac:58:7e:78:c7:70:ed:fe:4d:a1:bc:d7:5f:3a:41: 1b:4a:5d:ba:f4:dd:5a:25:89:fa:0d:ea:2c:8e:14:f9:17:37: f6:e4:fd:b6:a6:ad:8f:a5:ee:53:9d:2d:bf:e7:aa:d4:3c:d4: 50:5a:e9:98:bc:da:a1:68:bd:d8:cf:82:f5:f7:ba:ac:0e:47: 02:ba:81:2c:b7:5b:5c:b2:3d:0f:ad:65:ea:57:1e:5c:e6:b0: fe:d9:05:9d:fe:07:09:63:db:ef:a2:96:4d:1b:c9:38:5d:18: 48:b9:b4:78 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUmtAjj80YOIw4gnEtJ4LNxQGSTAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcxNjA4MTAzNFoX DTI1MDcxNTA4MTUzNFowMzExMC8GA1UEAxMoMjRBRUNERDBBMDgyN0E0OEQ1RkJB RUY1MDFGRUQzRjRDNjJBQUJEODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMu9YenfRk5/06Ik9XHgp0SLXv7fC+FMDXjizvFNToYje7OEkHVAERwxkvqL R3n9q0VEapUXo5gYLdufTFfBAmFK5I5KRytoLlQySHQKjkEHNJnufZmgqKHHhLsO O3KcAO9rq5kOCKnbbtS6TUsNTtte2PnEFzPy2cynHfMH0RIeBB3EZWKjIh+IR68o 56ONjkD086OQ6eXxZH4RQzMo1Cr+M8lfLeKASoXtsbm8lw4sMeroGeAdCyJTW2ke QwGFrsUXXU45K3YodEby8/6clTLdPqUi2/eS+GqzsWM6mmkXPLoeFpacMNYoGC0D NFnx5l38ReqvK57hUATa/gRl/YkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCSuzdCggnpI1fuu9QH+0/TGKqvYMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDZjOWI4Yy0zYmU3LTRjMDItOTU1MS1mYmM2ZmZjNDA3MGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkNmM5Yjhj LTNiZTctNGMwMi05NTUxLWZiYzZmZmM0MDcwZi8wLzI0QUVDREQwQTA4MjdBNDhE NUZCQUVGNTAxRkVEM0Y0QzYyQUFCRDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGSIwDQYJKoZIhvcNAQELBQADggEBAEnNKOZGrAxXOh/XzYUfMk335qpbOgHf /Bz/ihduOLjQcUGZQQQgpgLrBhjGMdQYZ+sVolKlJVVKXXXHCO5zceNom8Dymdph WgCueyxHQjGCVaqR6+phu5T6LV85Mmxe6ORh0iWsixpW5C6xgiDSXSuUrbuv4fAc iFg0MAaC7PaHwBwZ3VdOoaonrAMZT+p0/Vj12axYfnjHcO3+TaG81186QRtKXbr0 3VolifoN6iyOFPkXN/bk/bamrY+l7lOdLb/nqtQ81FBa6Zi82qFovdjPgvX3uqwO RwK6gSy3W1yyPQ+tZepXHlzmsP7ZBZ3+Bwlj2++ilk0byThdGEi5tHg= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org