$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2AD789EBFC58C1F0E4F87390781D38CB0D580210.cer File: 2AD789EBFC58C1F0E4F87390781D38CB0D580210.cer (raw, json) Hash identifier: g6Jc6T/Hx+jx+/YOHOZkmD0Bj7ihd/tR0i8OkbhjwiQ= Subject key identifier: 2A:D7:89:EB:FC:58:C1:F0:E4:F8:73:90:78:1D:38:CB:0D:58:02:10 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0BF66D7D86B9769AC706430D5BC66B7EB005C4DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/2AD789EBFC58C1F0E4F87390781D38CB0D580210.mft caRepository: rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 26 Jun 2024 20:39:25 +0000 Certificate not after: Wed 25 Jun 2025 20:44:25 +0000 Subordinate resources: IP: 160.22.62.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:f6:6d:7d:86:b9:76:9a:c7:06:43:0d:5b:c6:6b:7e:b0:05:c4:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 26 20:39:25 2024 GMT Not After : Jun 25 20:44:25 2025 GMT Subject: CN=2AD789EBFC58C1F0E4F87390781D38CB0D580210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cd:17:4e:84:a8:77:7d:31:12:2f:33:c3:bd: ba:4e:c0:95:75:ba:90:f1:be:61:93:f4:3c:e2:85: 0e:15:de:92:62:2d:15:d9:e7:c4:04:29:35:af:97: eb:54:10:fc:87:db:87:25:66:ad:94:b2:19:0b:c5: 13:bc:e1:33:30:71:03:17:cd:61:08:43:76:5d:7d: 52:f5:ed:38:c9:98:50:6d:2f:3d:af:ab:8c:98:48: a7:3b:b7:f9:ef:27:ce:d8:36:20:1e:14:64:8d:53: 22:5d:5c:cc:eb:38:e9:2a:12:21:54:d0:a4:e9:bf: 4d:ba:f4:d3:5e:c8:57:60:95:d9:7d:2a:31:fa:39: 79:7d:56:99:d0:6f:b5:6f:28:f5:e7:ad:10:a0:f0: fd:a6:4f:d9:12:45:5a:05:ae:51:5b:87:9a:a8:e6: d2:cc:55:0f:36:e5:37:39:4c:f8:88:d7:25:4c:cb: 2c:a4:ca:8e:a2:79:e0:02:7e:66:70:70:d7:1d:4e: 6d:be:11:ac:3b:77:46:0a:40:6e:06:fd:16:9c:15: b8:12:b2:95:ae:9c:dd:40:5f:cf:10:0d:f2:ff:37: e0:79:3a:df:9c:63:64:17:5e:5c:ca:7c:97:e7:2d: 95:2a:6d:60:14:d7:e3:26:18:f5:1a:e7:05:d2:b7: 33:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2A:D7:89:EB:FC:58:C1:F0:E4:F8:73:90:78:1D:38:CB:0D:58:02:10 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0ec677fd-d569-4cc5-a563-9b0f248b1af1/0/2AD789EBFC58C1F0E4F87390781D38CB0D580210.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.62.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:63:76:f4:33:4c:6e:6c:a3:2a:83:79:63:3c:6b:e8:0a:85: 1e:7e:a6:2b:f3:ff:2d:3c:c9:e5:5b:e2:a4:91:81:03:13:2c: 05:e5:f2:38:85:3c:5d:79:12:cc:45:7d:ed:31:ab:2f:30:4e: 9c:ae:a4:b5:d5:65:8a:de:c2:6c:dd:8b:1e:21:2d:8d:cd:e4: 1b:c8:d4:51:0c:80:c6:36:cf:0a:73:50:1f:a4:9a:2b:9a:1b: b2:f7:2c:05:4c:11:a0:ad:1a:71:dd:99:89:b4:f1:00:cd:48: f5:6b:17:86:62:f2:c9:3d:cc:df:3b:26:56:e4:2b:ca:93:b4: eb:ce:ff:f1:8f:76:bc:a4:ee:fc:db:72:b4:6d:9e:30:b5:8d: b8:d5:4e:c4:6e:0f:ed:fc:7f:34:59:09:df:70:cd:1d:6b:c0: 50:4a:04:19:56:77:7d:60:e9:f6:d9:64:14:8f:f1:ec:ea:02: 35:fb:e7:e8:f9:75:14:df:c2:db:6f:af:e5:31:61:6d:f8:e8: 15:79:2c:83:e0:c1:34:ad:e9:07:02:09:76:eb:4d:44:75:a6: 4f:89:30:57:b6:94:ee:5f:f5:56:fa:0d:8d:6c:27:01:8d:01: 90:1e:da:99:e9:3b:b7:58:69:b8:bc:ec:90:7e:1c:d6:4b:14: ff:c9:91:ac -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUC/ZtfYa5dprHBkMNW8ZrfrAFxN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYyNjIwMzkyNVoX DTI1MDYyNTIwNDQyNVowMzExMC8GA1UEAxMoMkFENzg5RUJGQzU4QzFGMEU0Rjg3 MzkwNzgxRDM4Q0IwRDU4MDIxMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfNF06EqHd9MRIvM8O9uk7AlXW6kPG+YZP0POKFDhXekmItFdnnxAQpNa+X 61QQ/IfbhyVmrZSyGQvFE7zhMzBxAxfNYQhDdl19UvXtOMmYUG0vPa+rjJhIpzu3 +e8nztg2IB4UZI1TIl1czOs46SoSIVTQpOm/Tbr0017IV2CV2X0qMfo5eX1WmdBv tW8o9eetEKDw/aZP2RJFWgWuUVuHmqjm0sxVDzblNzlM+IjXJUzLLKTKjqJ54AJ+ ZnBw1x1Obb4RrDt3RgpAbgb9FpwVuBKyla6c3UBfzxAN8v834Hk635xjZBdeXMp8 l+ctlSptYBTX4yYY9RrnBdK3MwUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCrXiev8WMHw5PhzkHgdOMsNWAIQMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZWM2NzdmZC1kNTY5LTRjYzUtYTU2My05YjBmMjQ4YjFhZjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYzY3N2Zk LWQ1NjktNGNjNS1hNTYzLTliMGYyNDhiMWFmMS8wLzJBRDc4OUVCRkM1OEMxRjBF NEY4NzM5MDc4MUQzOENCMEQ1ODAyMTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFj4wDQYJKoZIhvcNAQELBQADggEBADxjdvQzTG5soyqDeWM8a+gKhR5+pivz /y08yeVb4qSRgQMTLAXl8jiFPF15EsxFfe0xqy8wTpyupLXVZYrewmzdix4hLY3N 5BvI1FEMgMY2zwpzUB+kmiuaG7L3LAVMEaCtGnHdmYm08QDNSPVrF4Zi8sk9zN87 JlbkK8qTtOvO//GPdryk7vzbcrRtnjC1jbjVTsRuD+38fzRZCd9wzR1rwFBKBBlW d31g6fbZZBSP8ezqAjX75+j5dRTfwttvr+UxYW346BV5LIPgwTSt6QcCCXbrTUR1 pk+JMFe2lO5f9Vb6DY1sJwGNAZAe2pnpO7dYabi87JB+HNZLFP/Jkaw= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org