$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer File: 2CCC85BF6CCD365701EFA75EE416D234F861385B.cer (raw, json) Hash identifier: wJM+fyWLu/yBzgzX6FjeGxGwT2BKNy/eRHGJeALxxlE= Subject key identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 353CC7F7E005515888B95B8333A71AAB130A879D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft caRepository: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 30 Jul 2024 07:33:43 +0000 Certificate not after: Tue 29 Jul 2025 07:38:43 +0000 Subordinate resources: IP: 160.25.218.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:3c:c7:f7:e0:05:51:58:88:b9:5b:83:33:a7:1a:ab:13:0a:87:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 30 07:33:43 2024 GMT Not After : Jul 29 07:38:43 2025 GMT Subject: CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c2:1c:1f:e1:73:df:fa:6f:3b:f4:f6:3f:64: c8:8f:90:2f:24:16:cf:00:6e:99:4d:d9:fa:5f:8d: a0:db:39:cf:11:19:df:c7:ab:11:bb:0c:dc:cb:75: 33:10:ee:30:e5:d1:88:de:f4:3c:6d:97:6c:a4:e5: a8:81:5b:c0:9a:78:e4:43:e5:a4:d1:12:90:2b:a2: 0f:84:ca:0f:37:85:f2:6f:a9:3d:08:21:5e:1e:ac: 51:7c:cc:86:e4:12:7c:3f:e7:e2:c9:dc:54:c5:bf: f3:7e:d9:cd:28:27:a6:f1:d3:63:57:eb:ef:34:2e: 29:a8:8e:53:0f:7f:14:fa:a5:96:e6:b3:5c:06:b3: 8c:ca:55:bb:87:55:15:99:ac:0b:c4:b9:7b:2c:1a: e2:98:4d:5e:fc:c0:5e:82:0b:92:5e:2a:2e:32:9d: bb:fc:95:d2:ea:63:e0:36:b5:76:16:20:ec:24:4d: 19:5a:e7:72:a3:12:17:cd:89:a6:cf:a5:44:f8:00: ee:86:30:63:ce:ba:5d:26:77:de:81:06:93:fd:7c: c1:33:fd:40:30:11:97:dd:83:7f:25:5d:cb:b7:73: b7:ec:da:c3:3a:93:eb:4f:6d:a1:9a:6b:fd:c4:7b: de:a8:51:4a:16:fd:d2:b2:ac:ce:a9:b7:64:8c:a3: 17:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.218.0/23 Signature Algorithm: sha256WithRSAEncryption 07:aa:97:97:4b:05:a5:e6:42:75:bd:6c:40:0f:62:cb:a0:91: 8e:23:d1:c4:0e:a2:c8:bc:01:79:b3:7c:57:78:d9:00:00:6d: a3:e3:46:b2:7a:43:a2:fd:96:e4:e3:b5:ac:a8:8f:85:cf:67: fe:31:bd:4e:44:17:ac:45:95:14:fe:fc:e4:f3:db:21:75:0b: 1c:34:47:81:5e:1e:b1:55:a4:cb:c8:76:cc:56:e0:05:00:32: 16:d3:8a:8b:ca:d0:bd:ad:0d:a6:b3:e2:91:01:66:d7:7d:fd: 8e:5a:fe:15:f2:76:cf:29:ef:93:db:e7:05:5f:9e:eb:6c:e4: ef:bf:01:c9:ed:7f:87:aa:4c:20:c2:5f:67:f3:85:42:0a:c1: 32:28:49:3c:8b:33:83:03:f0:50:5e:69:27:4d:c5:e0:c9:b5: a1:0e:08:37:06:32:d9:55:57:92:f8:5d:aa:4d:fd:16:3a:ec: 74:d5:32:be:7e:92:f6:23:ee:35:d7:6f:9e:c8:19:86:27:9a: 27:96:a3:2c:e7:81:cf:42:bc:fc:21:01:85:8a:95:a1:f3:40: d6:ba:16:95:79:11:de:1f:81:51:22:95:79:16:30:93:e1:f9: 96:9d:1a:bc:92:0d:c2:52:0c:3e:6b:88:1a:45:9a:40:89:83: 43:dc:e1:3e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUNTzH9+AFUViIuVuDM6caqxMKh50wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDczMDA3MzM0M1oX DTI1MDcyOTA3Mzg0M1owMzExMC8GA1UEAxMoMkNDQzg1QkY2Q0NEMzY1NzAxRUZB NzVFRTQxNkQyMzRGODYxMzg1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjCHB/hc9/6bzv09j9kyI+QLyQWzwBumU3Z+l+NoNs5zxEZ38erEbsM3Mt1 MxDuMOXRiN70PG2XbKTlqIFbwJp45EPlpNESkCuiD4TKDzeF8m+pPQghXh6sUXzM huQSfD/n4sncVMW/837ZzSgnpvHTY1fr7zQuKaiOUw9/FPqlluazXAazjMpVu4dV FZmsC8S5eywa4phNXvzAXoILkl4qLjKdu/yV0upj4Da1dhYg7CRNGVrncqMSF82J ps+lRPgA7oYwY866XSZ33oEGk/18wTP9QDARl92DfyVdy7dzt+zawzqT609toZpr /cR73qhRShb90rKszqm3ZIyjF5ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCzMhb9szTZXAe+nXuQW0jT4YThbMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYWYwN2YxOC01YzQ5LTQxMjktYWE1My03MDg1Y2NkNTdiNjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZjA3ZjE4 LTVjNDktNDEyOS1hYTUzLTcwODVjY2Q1N2I2My8wLzJDQ0M4NUJGNkNDRDM2NTcw MUVGQTc1RUU0MTZEMjM0Rjg2MTM4NUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGdowDQYJKoZIhvcNAQELBQADggEBAAeql5dLBaXmQnW9bEAPYsugkY4j0cQO osi8AXmzfFd42QAAbaPjRrJ6Q6L9luTjtayoj4XPZ/4xvU5EF6xFlRT+/OTz2yF1 Cxw0R4FeHrFVpMvIdsxW4AUAMhbTiovK0L2tDaaz4pEBZtd9/Y5a/hXyds8p75Pb 5wVfnuts5O+/Acntf4eqTCDCX2fzhUIKwTIoSTyLM4MD8FBeaSdNxeDJtaEOCDcG MtlVV5L4XapN/RY67HTVMr5+kvYj7jXXb57IGYYnmieWoyzngc9CvPwhAYWKlaHz QNa6FpV5Ed4fgVEilXkWMJPh+ZadGrySDcJSDD5riBpFmkCJg0Pc4T4= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:50 2024 by rpki-client on console-ams.rpki-client.org