$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/31C2F0F25531E3524E0E0E901310435F2F406AC6.cer File: 31C2F0F25531E3524E0E0E901310435F2F406AC6.cer (raw, json) Hash identifier: Dxdf37lpzMYxN38gcroD5hXnRXsI5Hu+nizJ7RY3GzA= Subject key identifier: 31:C2:F0:F2:55:31:E3:52:4E:0E:0E:90:13:10:43:5F:2F:40:6A:C6 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 44EE9972A71512554F8C81B853F08A03D02D7757 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.mft caRepository: rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 29 Oct 2024 07:11:21 +0000 Certificate not after: Tue 28 Oct 2025 07:16:21 +0000 Subordinate resources: IP: 160.187.144.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ee:99:72:a7:15:12:55:4f:8c:81:b8:53:f0:8a:03:d0:2d:77:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 29 07:11:21 2024 GMT Not After : Oct 28 07:16:21 2025 GMT Subject: CN=31C2F0F25531E3524E0E0E901310435F2F406AC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2f:c0:4d:1e:62:52:6a:37:b8:62:58:ae:38: 32:12:11:05:9b:fe:32:86:b4:2b:d5:70:2b:17:b0: a2:5f:5e:c1:5d:d1:de:39:66:22:c5:27:d6:e7:96: 40:d1:15:6c:95:05:03:40:69:97:fd:9d:29:fd:b6: 97:35:4d:10:fc:76:55:e7:5c:58:6a:85:d7:6f:c5: 38:88:39:ac:78:86:bd:70:26:cd:f3:48:b4:90:89: 90:0a:b8:d0:4d:65:7d:74:98:be:d5:3c:35:b9:5b: df:d9:2f:b2:3e:d5:50:0c:4f:0d:56:98:75:f8:69: bc:16:93:b7:8d:50:d1:0c:b7:ed:96:cf:d8:80:e3: ae:83:17:05:fc:85:24:de:b1:3b:d1:f1:07:9b:b2: da:c7:70:b3:fc:78:00:8f:4e:4b:3a:0e:73:a5:bc: cc:40:58:ea:16:56:91:a0:00:4b:66:40:01:39:32: 21:8b:84:c5:cf:44:35:b3:43:02:b1:e2:67:a2:e8: 55:63:78:c1:a3:ab:44:ae:04:4c:0d:90:8e:93:86: 76:de:6b:24:71:12:7b:19:bc:49:9d:aa:e3:df:80: b7:68:9a:02:95:72:70:6e:e0:d4:f7:91:d5:31:db: 45:71:a9:0b:be:42:c3:db:8c:48:e1:5c:1d:61:db: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 31:C2:F0:F2:55:31:E3:52:4E:0E:0E:90:13:10:43:5F:2F:40:6A:C6 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ba89b7dd-99a7-450e-be84-b3bfc7340f1f/0/31C2F0F25531E3524E0E0E901310435F2F406AC6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.187.144.0/23 Signature Algorithm: sha256WithRSAEncryption 62:09:cd:89:a6:fa:3b:58:4f:16:29:d1:ec:4f:80:aa:6b:47: 5a:88:48:75:2d:b3:34:6d:5d:02:6f:3a:d1:28:6b:72:b5:7d: 79:a4:1d:e0:b9:33:91:a6:fa:a0:7d:56:65:5d:b8:d7:8e:4e: f5:59:bb:e5:52:32:f6:e5:63:53:4d:e6:54:4b:c7:35:62:1f: bf:00:e6:85:12:b9:bd:94:52:f0:54:71:2f:24:7a:0e:ab:69: 52:56:50:54:8a:78:01:f5:84:55:e9:7f:9f:3a:74:f8:a3:41: a4:7b:2f:08:f9:39:65:cb:e7:ce:f2:4c:25:03:4d:14:c9:16: b5:46:e2:5b:20:42:4b:e1:c6:9d:fd:c6:4d:d8:a4:58:91:bf: c8:c7:03:74:a9:70:d2:0d:61:c1:57:94:74:7e:95:c1:7e:15: d9:68:40:38:89:15:67:98:20:9f:17:d4:b1:e4:91:f9:cf:87: 76:d8:06:f3:7c:ff:ce:39:59:14:d4:9d:4d:a1:8b:aa:d4:6e: a5:0e:56:ad:31:b2:5c:c0:5b:57:ff:36:2c:73:b3:80:21:67: 6c:d6:ae:e8:22:e7:3e:7d:fd:b2:f2:16:c5:5a:04:2b:d6:8b: 11:fb:40:73:1e:8f:15:20:06:c4:33:48:5c:54:59:3f:f5:88: c6:a0:37:0a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURO6ZcqcVElVPjIG4U/CKA9Atd1cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAyOTA3MTEyMVoX DTI1MTAyODA3MTYyMVowMzExMC8GA1UEAxMoMzFDMkYwRjI1NTMxRTM1MjRFMEUw RTkwMTMxMDQzNUYyRjQwNkFDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEvwE0eYlJqN7hiWK44MhIRBZv+Moa0K9VwKxewol9ewV3R3jlmIsUn1ueW QNEVbJUFA0Bpl/2dKf22lzVNEPx2VedcWGqF12/FOIg5rHiGvXAmzfNItJCJkAq4 0E1lfXSYvtU8Nblb39kvsj7VUAxPDVaYdfhpvBaTt41Q0Qy37ZbP2IDjroMXBfyF JN6xO9HxB5uy2sdws/x4AI9OSzoOc6W8zEBY6hZWkaAAS2ZAATkyIYuExc9ENbND ArHiZ6LoVWN4waOrRK4ETA2QjpOGdt5rJHESexm8SZ2q49+At2iaApVycG7g1PeR 1THbRXGpC75Cw9uMSOFcHWHbkZcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDHC8PJVMeNSTg4OkBMQQ18vQGrGMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYTg5YjdkZC05OWE3LTQ1MGUtYmU4NC1iM2JmYzczNDBmMWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhODliN2Rk LTk5YTctNDUwZS1iZTg0LWIzYmZjNzM0MGYxZi8wLzMxQzJGMEYyNTUzMUUzNTI0 RTBFMEU5MDEzMTA0MzVGMkY0MDZBQzYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgu5AwDQYJKoZIhvcNAQELBQADggEBAGIJzYmm+jtYTxYp0exPgKprR1qISHUt szRtXQJvOtEoa3K1fXmkHeC5M5Gm+qB9VmVduNeOTvVZu+VSMvblY1NN5lRLxzVi H78A5oUSub2UUvBUcS8keg6raVJWUFSKeAH1hFXpf586dPijQaR7Lwj5OWXL587y TCUDTRTJFrVG4lsgQkvhxp39xk3YpFiRv8jHA3SpcNINYcFXlHR+lcF+FdloQDiJ FWeYIJ8X1LHkkfnPh3bYBvN8/845WRTUnU2hi6rUbqUOVq0xslzAW1f/Nixzs4Ah Z2zWrugi5z59/bLyFsVaBCvWixH7QHMejxUgBsQzSFxUWT/1iMagNwo= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org