$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/309FFE30695E76BA4952E2965B4FE24F9B9D6770.cer File: 309FFE30695E76BA4952E2965B4FE24F9B9D6770.cer (raw, json) Hash identifier: lSqrhKk3zqC9mmwKnl6nym+jw2pPHCEvmdGCI+ApUr8= Subject key identifier: 30:9F:FE:30:69:5E:76:BA:49:52:E2:96:5B:4F:E2:4F:9B:9D:67:70 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 79E9C7EC96F35AB6DC679799D1F94CBFB6196A0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/309FFE30695E76BA4952E2965B4FE24F9B9D6770.mft caRepository: rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 30 Aug 2024 08:50:20 +0000 Certificate not after: Fri 29 Aug 2025 08:55:20 +0000 Subordinate resources: IP: 160.22.208.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:e9:c7:ec:96:f3:5a:b6:dc:67:97:99:d1:f9:4c:bf:b6:19:6a:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Aug 30 08:50:20 2024 GMT Not After : Aug 29 08:55:20 2025 GMT Subject: CN=309FFE30695E76BA4952E2965B4FE24F9B9D6770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a5:a7:3b:0e:38:13:d6:e4:a9:40:df:a3:81: a5:7c:4c:85:dd:fb:18:15:34:1a:e0:fb:12:32:fe: b9:9a:f2:19:3e:dd:46:31:24:68:81:09:85:c6:ca: 63:b7:e4:62:4a:2f:9a:ef:ff:2f:94:6a:4b:3f:b1: 4b:46:73:65:bc:48:1b:e4:25:bd:8f:72:63:05:2b: ba:ef:68:f0:94:7d:d6:ff:16:b0:63:fe:82:20:b2: 83:f4:e9:84:a3:dc:e4:36:56:6a:cd:39:c6:55:9d: 64:55:eb:23:07:2f:20:e3:b8:4a:6e:87:42:25:d0: 3b:f4:41:14:53:0e:f9:fb:70:e6:e0:41:c5:df:38: 16:93:ca:30:95:36:d2:98:4d:b6:ed:30:58:b3:f6: 36:ee:24:f9:b9:d4:2c:6f:06:af:e9:1c:59:41:f3: 32:72:1f:6c:e5:62:a0:c6:f6:bd:6a:7a:0c:d0:5c: 51:0a:fb:ae:ff:e8:e4:70:78:9c:0c:1a:3a:1a:ab: ee:f7:f2:ba:2d:53:7d:5d:5c:8a:72:8c:d6:ad:8c: 5a:3f:30:93:60:b4:75:cf:ac:c8:75:26:7d:7b:2a: 5f:69:94:d0:f8:8e:c4:1e:b2:80:3f:57:0f:0a:18: b0:d3:cd:83:8c:3d:c9:33:d6:d6:0d:c9:16:36:62: 76:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 30:9F:FE:30:69:5E:76:BA:49:52:E2:96:5B:4F:E2:4F:9B:9D:67:70 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f3cb50b0-43cc-48d0-91f4-05bbde7ac1d0/0/309FFE30695E76BA4952E2965B4FE24F9B9D6770.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.208.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:5a:0b:aa:1d:a9:be:68:e4:da:b0:75:14:3c:bb:ff:48:f9: 39:43:74:e4:7b:b6:0b:cf:01:48:18:34:4d:c3:1c:1f:a8:5f: 7a:a4:df:af:7d:c0:b2:32:2c:e2:a1:ad:ed:f4:2d:8c:4e:df: 5c:62:b6:39:53:67:db:7a:c6:0f:dd:3c:12:8b:87:ae:11:84: d1:88:34:cf:6e:1a:26:36:9a:4c:62:05:95:59:e6:a0:6a:78: 17:9e:c2:8d:22:06:1c:b6:c4:16:8c:b0:9b:5a:ed:5d:2d:ae: 0a:16:83:71:8f:2a:b4:fa:fc:34:d2:99:87:90:3e:94:cf:52: 81:cd:cd:46:2b:80:8f:1c:51:81:9b:be:0d:95:6f:d6:89:b6: bd:10:7a:f5:38:35:d4:f8:8b:8f:04:f8:d1:f4:d5:1b:44:c4: 4f:89:ed:8b:76:03:70:7e:57:4c:c9:f8:e8:df:d2:00:f2:fa: f3:bc:4d:0d:4c:32:32:24:42:d9:5f:de:6b:09:c0:79:1b:e6: e6:4e:9c:2e:6b:fe:9a:5d:c9:86:e1:2a:01:22:a9:b9:4c:ca: 18:6d:f8:70:c3:14:ce:d2:d3:85:f9:d1:2d:a4:80:9d:b6:5a: 08:b8:b5:13:8c:10:23:8a:0b:9a:74:68:0e:97:e5:1d:5a:e9: 27:87:5c:1e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeenH7JbzWrbcZ5eZ0flMv7YZagowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDgzMDA4NTAyMFoX DTI1MDgyOTA4NTUyMFowMzExMC8GA1UEAxMoMzA5RkZFMzA2OTVFNzZCQTQ5NTJF Mjk2NUI0RkUyNEY5QjlENjc3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2lpzsOOBPW5KlA36OBpXxMhd37GBU0GuD7EjL+uZryGT7dRjEkaIEJhcbK Y7fkYkovmu//L5RqSz+xS0ZzZbxIG+QlvY9yYwUruu9o8JR91v8WsGP+giCyg/Tp hKPc5DZWas05xlWdZFXrIwcvIOO4Sm6HQiXQO/RBFFMO+ftw5uBBxd84FpPKMJU2 0phNtu0wWLP2Nu4k+bnULG8Gr+kcWUHzMnIfbOVioMb2vWp6DNBcUQr7rv/o5HB4 nAwaOhqr7vfyui1TfV1cinKM1q2MWj8wk2C0dc+syHUmfXsqX2mU0PiOxB6ygD9X DwoYsNPNg4w9yTPW1g3JFjZidj0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDCf/jBpXna6SVLilltP4k+bnWdwMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mM2NiNTBiMC00M2NjLTQ4ZDAtOTFmNC0wNWJiZGU3YWMxZDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzY2I1MGIw LTQzY2MtNDhkMC05MWY0LTA1YmJkZTdhYzFkMC8wLzMwOUZGRTMwNjk1RTc2QkE0 OTUyRTI5NjVCNEZFMjRGOUI5RDY3NzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFtAwDQYJKoZIhvcNAQELBQADggEBAFtaC6odqb5o5NqwdRQ8u/9I+TlDdOR7 tgvPAUgYNE3DHB+oX3qk3699wLIyLOKhre30LYxO31xitjlTZ9t6xg/dPBKLh64R hNGINM9uGiY2mkxiBZVZ5qBqeBeewo0iBhy2xBaMsJta7V0trgoWg3GPKrT6/DTS mYeQPpTPUoHNzUYrgI8cUYGbvg2Vb9aJtr0QevU4NdT4i48E+NH01RtExE+J7Yt2 A3B+V0zJ+Ojf0gDy+vO8TQ1MMjIkQtlf3msJwHkb5uZOnC5r/ppdyYbhKgEiqblM yhht+HDDFM7S04X50S2kgJ22Wgi4tROMECOKC5p0aA6X5R1a6SeHXB4= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org