$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/353E665549A5A245D363BD0DCEA20282E562E909.cer File: 353E665549A5A245D363BD0DCEA20282E562E909.cer (raw, json) Hash identifier: r4jEpnlS8XbmUVaIDa5h8ug3QwNE3XVSpATF0EIZLsI= Subject key identifier: 35:3E:66:55:49:A5:A2:45:D3:63:BD:0D:CE:A2:02:82:E5:62:E9:09 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3568DF8313BC63518696429B41BB78DFB982DE24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.mft caRepository: rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 21 Oct 2024 08:18:43 +0000 Certificate not after: Mon 20 Oct 2025 08:23:43 +0000 Subordinate resources: IP: 160.25.153.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:68:df:83:13:bc:63:51:86:96:42:9b:41:bb:78:df:b9:82:de:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 21 08:18:43 2024 GMT Not After : Oct 20 08:23:43 2025 GMT Subject: CN=353E665549A5A245D363BD0DCEA20282E562E909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a0:73:55:ea:66:6f:f8:66:a1:26:ca:3d:0f: 70:6a:7e:39:b4:c8:33:1b:be:83:96:5f:8a:0f:9e: f0:9c:bd:1c:50:32:78:e3:39:9e:8d:b3:41:b0:41: 12:69:72:88:f8:0a:ed:c0:9b:14:c0:b2:d5:e6:f3: df:82:61:25:e5:b8:4f:99:e5:dd:2f:f1:70:90:bc: 47:60:bc:e7:99:63:fe:93:51:0c:9c:af:43:2f:e9: 33:1f:4e:35:93:c5:57:d7:26:eb:05:f7:28:8d:46: 7c:26:ac:e3:f5:75:d9:6e:aa:d1:bf:d8:1c:03:23: 18:2e:c1:c3:1c:3e:ee:74:3d:b9:0e:f6:a8:22:75: 8a:04:1e:41:af:c4:11:c0:2d:0c:6b:f7:6e:95:99: c3:63:ff:ff:f9:5e:7f:e7:1e:2e:68:87:38:a5:cd: c7:fe:69:46:5c:4f:e3:c1:e7:c6:91:7a:30:db:3a: e6:02:14:e4:25:6a:d6:75:cb:b7:a3:24:dc:7b:c2: d1:75:d0:18:55:6e:bd:52:40:5f:16:78:3b:8f:72: 4c:06:6e:bd:b2:fb:2f:53:7f:7d:b9:03:7d:2b:d3: a5:61:29:e6:07:f7:0e:9c:50:37:61:e4:82:b1:98: 41:99:27:e3:3d:2d:5c:f0:c3:38:cb:17:25:72:b3: 9e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:3E:66:55:49:A5:A2:45:D3:63:BD:0D:CE:A2:02:82:E5:62:E9:09 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7b411b05-c58a-4206-b7ab-c250c1465550/0/353E665549A5A245D363BD0DCEA20282E562E909.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.153.0/24 Signature Algorithm: sha256WithRSAEncryption 31:94:2d:a0:7b:0c:64:93:a4:98:9b:61:38:35:64:27:0c:4b: 95:25:8f:28:5d:0d:5e:5b:40:75:ba:7e:75:b1:05:f1:ac:be: 23:e1:96:b3:39:12:f9:1a:0c:2a:db:2d:5b:46:13:5e:23:5b: a9:be:04:e2:6e:ca:ac:6e:3c:7a:7e:9c:04:3b:af:5f:33:f6: 4a:96:fe:39:5b:e1:bb:88:ae:5d:52:ab:a8:f4:89:8d:98:1e: b7:d3:4c:2e:b8:a5:48:06:cc:89:4b:de:ea:02:0c:8d:a4:cb: 2c:a7:ab:93:d6:cd:19:7e:3a:ba:7e:13:ee:29:64:69:9f:4a: bf:b1:22:14:99:c1:18:22:b4:2e:24:f9:26:02:21:65:2b:36: 86:c3:f5:08:ff:61:c1:1c:19:f0:1d:2d:62:5e:f1:f9:70:89: cb:cb:e5:d2:e8:8d:10:17:53:6c:21:b0:6e:6f:ba:6c:46:f3: b5:54:fb:ea:44:ee:80:3f:b9:47:8e:09:91:85:45:07:14:c7: 08:06:ae:22:8e:31:30:f5:14:31:ef:d2:bd:cd:5f:c1:3f:bd: 49:b0:05:ba:44:ca:1d:de:84:bc:52:c3:db:2a:8b:3c:dc:f6: ad:f5:68:ba:ef:11:ae:46:90:a5:54:e2:82:2a:fa:3b:b5:24: a7:1c:c9:7d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUNWjfgxO8Y1GGlkKbQbt437mC3iQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAyMTA4MTg0M1oX DTI1MTAyMDA4MjM0M1owMzExMC8GA1UEAxMoMzUzRTY2NTU0OUE1QTI0NUQzNjNC RDBEQ0VBMjAyODJFNTYyRTkwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOegc1XqZm/4ZqEmyj0PcGp+ObTIMxu+g5Zfig+e8Jy9HFAyeOM5no2zQbBB EmlyiPgK7cCbFMCy1ebz34JhJeW4T5nl3S/xcJC8R2C855lj/pNRDJyvQy/pMx9O NZPFV9cm6wX3KI1GfCas4/V12W6q0b/YHAMjGC7Bwxw+7nQ9uQ72qCJ1igQeQa/E EcAtDGv3bpWZw2P///lef+ceLmiHOKXNx/5pRlxP48HnxpF6MNs65gIU5CVq1nXL t6Mk3HvC0XXQGFVuvVJAXxZ4O49yTAZuvbL7L1N/fbkDfSvTpWEp5gf3DpxQN2Hk grGYQZkn4z0tXPDDOMsXJXKznq8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDU+ZlVJpaJF02O9Dc6iAoLlYukJMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YjQxMWIwNS1jNThhLTQyMDYtYjdhYi1jMjUwYzE0NjU1NTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNDExYjA1 LWM1OGEtNDIwNi1iN2FiLWMyNTBjMTQ2NTU1MC8wLzM1M0U2NjU1NDlBNUEyNDVE MzYzQkQwRENFQTIwMjgyRTU2MkU5MDkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACgGZkwDQYJKoZIhvcNAQELBQADggEBADGULaB7DGSTpJibYTg1ZCcMS5Uljyhd DV5bQHW6fnWxBfGsviPhlrM5EvkaDCrbLVtGE14jW6m+BOJuyqxuPHp+nAQ7r18z 9kqW/jlb4buIrl1Sq6j0iY2YHrfTTC64pUgGzIlL3uoCDI2kyyynq5PWzRl+Orp+ E+4pZGmfSr+xIhSZwRgitC4k+SYCIWUrNobD9Qj/YcEcGfAdLWJe8flwicvL5dLo jRAXU2whsG5vumxG87VU++pE7oA/uUeOCZGFRQcUxwgGriKOMTD1FDHv0r3NX8E/ vUmwBbpEyh3ehLxSw9sqizzc9q31aLrvEa5GkKVU4oIq+ju1JKccyX0= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org