$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2A2E185B12379871494114828D5D5D713982E469.cer File: 2A2E185B12379871494114828D5D5D713982E469.cer (raw, json) Hash identifier: tyfeuYSdt4m5A47zrB9fndmynILdRpUWkHOiwpCVhtg= Subject key identifier: 2A:2E:18:5B:12:37:98:71:49:41:14:82:8D:5D:5D:71:39:82:E4:69 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4A79EDDFB3EE20308F885D3CE1516419131CA3FB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.mft caRepository: rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 Feb 2024 16:49:58 +0000 Certificate not after: Thu 13 Feb 2025 16:54:58 +0000 Subordinate resources: IP: 157.20.24.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:79:ed:df:b3:ee:20:30:8f:88:5d:3c:e1:51:64:19:13:1c:a3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 15 16:49:58 2024 GMT Not After : Feb 13 16:54:58 2025 GMT Subject: CN=2A2E185B12379871494114828D5D5D713982E469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4c:8a:37:fd:e2:09:4a:95:6e:77:df:3e:e0: b2:4e:15:03:b2:f5:43:81:3c:a3:69:83:73:bd:2c: a3:0c:6b:2e:29:b6:aa:09:15:2d:bb:21:21:b8:26: 6a:4d:c9:49:f8:2d:53:9c:60:7f:39:11:8c:70:30: 47:3c:f2:ca:b8:4d:fe:75:5a:61:32:25:5e:8f:44: ed:ee:0e:31:2e:70:a6:23:4b:2c:82:1f:8c:c9:18: 6b:9b:43:e1:d1:02:30:d5:9a:a9:e9:e7:c6:8f:c3: 01:7a:98:58:02:c6:8c:01:6a:53:cc:e2:46:d6:ec: 37:b2:a2:6f:28:73:ce:f6:98:73:3e:d3:82:3d:da: 3f:65:bf:c8:f9:b8:cd:b8:9a:84:a1:14:27:f9:9f: 3e:f9:3d:4e:94:4f:3a:1d:f3:4a:54:4b:66:2d:91: d3:a6:b0:4a:5a:98:b6:da:c0:37:84:fb:e5:ab:96: 2b:11:36:19:0f:a0:37:da:ed:86:4f:7d:9b:9d:77: 98:fc:9c:67:c4:53:5f:e3:57:f0:32:28:c0:21:c9: c3:16:13:93:8c:89:1a:d0:1f:fa:b3:83:c4:f2:02: 37:db:1b:15:b5:ab:90:0b:8f:59:cf:32:f2:52:6f: d7:03:20:64:05:ee:fb:80:36:05:f5:ae:c8:38:13: 2c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2A:2E:18:5B:12:37:98:71:49:41:14:82:8D:5D:5D:71:39:82:E4:69 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/15bae30c-b363-407b-a0ab-3154eb309ae9/0/2A2E185B12379871494114828D5D5D713982E469.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.24.0/24 Signature Algorithm: sha256WithRSAEncryption 49:a8:98:05:be:5e:6c:55:09:b5:c2:06:ff:28:6f:35:d4:0f: d7:52:35:e2:ba:f3:ef:dc:c0:53:fb:3f:30:55:92:24:2d:b6: db:1a:6b:59:d3:a2:60:fd:4a:17:38:fd:bb:f4:6c:9c:96:a9: d8:9b:a3:08:92:cf:3d:b9:55:49:8f:74:25:e4:28:9f:2e:8c: 73:02:26:d2:21:8f:e0:80:1d:74:2e:c6:7f:c2:96:cd:d2:a1: d1:82:5c:84:b6:f0:b7:57:7b:7d:4a:9b:bf:30:6b:fc:08:cd: 06:19:88:29:d6:ff:c6:84:d4:69:53:c3:df:8d:b1:16:69:2f: 54:48:89:cc:ad:a2:4c:a9:e8:40:39:ee:92:75:ad:c2:06:51: 06:a6:0e:fc:f0:6d:c0:b7:09:da:14:9c:51:fb:a8:7f:cc:ef: 13:9f:68:28:ec:da:24:64:5e:ab:45:0c:25:fb:3d:82:53:f8: 94:f7:74:e5:da:f5:64:f9:93:0b:4a:27:3a:0c:30:e9:13:b9: 39:f6:61:e5:a7:d5:52:45:6a:30:54:1d:fb:a7:32:f5:8e:19: d7:77:ea:66:26:d1:6d:5f:91:59:33:0e:09:cb:b2:33:74:42: 50:02:fa:4f:c1:61:c0:7f:10:98:1b:96:19:92:85:9a:c0:a1: 38:4a:0d:71 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUSnnt37PuIDCPiF084VFkGRMco/swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxNTE2NDk1OFoX DTI1MDIxMzE2NTQ1OFowMzExMC8GA1UEAxMoMkEyRTE4NUIxMjM3OTg3MTQ5NDEx NDgyOEQ1RDVENzEzOTgyRTQ2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFMijf94glKlW533z7gsk4VA7L1Q4E8o2mDc70sowxrLim2qgkVLbshIbgm ak3JSfgtU5xgfzkRjHAwRzzyyrhN/nVaYTIlXo9E7e4OMS5wpiNLLIIfjMkYa5tD 4dECMNWaqennxo/DAXqYWALGjAFqU8ziRtbsN7KibyhzzvaYcz7Tgj3aP2W/yPm4 zbiahKEUJ/mfPvk9TpRPOh3zSlRLZi2R06awSlqYttrAN4T75auWKxE2GQ+gN9rt hk99m513mPycZ8RTX+NX8DIowCHJwxYTk4yJGtAf+rODxPICN9sbFbWrkAuPWc8y 8lJv1wMgZAXu+4A2BfWuyDgTLNECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCouGFsSN5hxSUEUgo1dXXE5guRpMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNWJhZTMwYy1iMzYzLTQwN2ItYTBhYi0zMTU0ZWIzMDlhZTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1YmFlMzBj LWIzNjMtNDA3Yi1hMGFiLTMxNTRlYjMwOWFlOS8wLzJBMkUxODVCMTIzNzk4NzE0 OTQxMTQ4MjhENUQ1RDcxMzk4MkU0NjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdFBgwDQYJKoZIhvcNAQELBQADggEBAEmomAW+XmxVCbXCBv8obzXUD9dSNeK6 8+/cwFP7PzBVkiQtttsaa1nTomD9Shc4/bv0bJyWqdibowiSzz25VUmPdCXkKJ8u jHMCJtIhj+CAHXQuxn/Cls3SodGCXIS28LdXe31Km78wa/wIzQYZiCnW/8aE1GlT w9+NsRZpL1RIicytokyp6EA57pJ1rcIGUQamDvzwbcC3CdoUnFH7qH/M7xOfaCjs 2iRkXqtFDCX7PYJT+JT3dOXa9WT5kwtKJzoMMOkTuTn2YeWn1VJFajBUHfunMvWO Gdd36mYm0W1fkVkzDgnLsjN0QlAC+k/BYcB/EJgblhmShZrAoThKDXE= -----END CERTIFICATE-----Generated at Fri May 17 17:47:04 2024 by rpki-client on console-ams.rpki-client.org