$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer File: 5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.cer (raw, json) Hash identifier: wHx/TehbJf02Fv4gzGjfpmInKqMBjRC8n2oWk9Y0PZA= Subject key identifier: 5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 712C5ED70CEB3C732DBF0342203F96196544C61A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.mft caRepository: rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 19 Jun 2024 03:14:16 +0000 Certificate not after: Wed 18 Jun 2025 03:19:16 +0000 Subordinate resources: IP: 160.22.70.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:2c:5e:d7:0c:eb:3c:73:2d:bf:03:42:20:3f:96:19:65:44:c6:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 19 03:14:16 2024 GMT Not After : Jun 18 03:19:16 2025 GMT Subject: CN=5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d9:fa:a8:3e:33:eb:1f:88:be:67:80:8c:a6: cf:38:6a:62:5e:67:cb:e7:b5:82:d3:25:b6:40:54: af:a6:b1:62:ea:bd:b8:3b:8b:b0:0a:4d:31:bb:ff: c0:b4:d6:d8:d6:c8:86:83:51:5b:f9:5c:bd:dd:5b: d6:83:98:60:74:33:05:f1:07:eb:a0:a8:26:ca:a3: 62:2c:7a:a2:2a:21:0c:0a:e2:cd:60:4f:60:02:49: 4f:fb:85:dc:75:56:a9:36:08:99:3e:c9:ff:d6:83: 6e:32:cf:7e:e7:85:c2:e5:4e:23:19:77:6e:6f:1e: 5b:ca:a8:52:2c:98:39:90:31:07:e7:eb:1e:52:9a: ce:23:fc:3d:4e:0e:f9:b0:46:49:4b:f0:f9:86:9a: a4:6b:83:62:f8:f5:6b:c2:bd:54:7d:65:83:15:43: be:0c:bd:38:2a:d1:60:db:f7:3e:72:9a:40:58:88: 6e:e6:e7:06:45:9f:11:68:8a:f6:cb:fe:66:48:92: 4c:f4:87:d6:87:1c:ec:05:d4:0c:9f:c2:1f:a9:f8: 7b:0a:cc:77:e2:92:e5:2f:32:14:ee:1c:76:7f:23: 14:c6:35:63:85:d5:84:a5:ed:a0:86:fd:f2:e5:53: 7d:ac:4b:27:aa:30:c9:36:a6:24:70:f2:d3:69:73: db:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:B7:E8:A3:AB:F6:DF:6D:46:C3:D5:F9:1E:C3:B7:78:70:CE:6C:61 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/35a20077-fc53-43a3-bda7-f39956d9926d/0/5BB7E8A3ABF6DF6D46C3D5F91EC3B77870CE6C61.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.70.0/23 Signature Algorithm: sha256WithRSAEncryption 18:8a:56:af:82:be:66:f7:48:80:5d:1b:70:cc:21:98:06:fa: 52:22:46:a1:9f:19:21:81:d8:50:20:af:d0:8c:c0:22:f8:49: 34:05:6c:94:40:12:ca:92:0f:9a:33:b1:bf:c9:0f:4f:ce:eb: 98:f6:6e:c3:02:2d:91:68:c2:24:78:82:8e:1e:42:b3:39:ee: 53:bb:01:9e:11:56:54:ea:3f:78:8d:80:17:84:6a:36:03:3a: 4d:85:56:9b:8f:8a:11:4b:f2:2c:1c:d3:2c:b7:a3:a2:aa:14: f5:66:69:99:5c:18:5a:f8:0c:88:49:55:c1:6d:5d:f9:7f:e1: c0:26:20:1f:9d:70:19:f4:31:be:73:de:cd:dc:4b:12:d2:dd: bf:71:f3:87:2c:80:3a:92:c7:f7:d3:26:7e:bc:53:50:89:6c: 53:93:7b:ae:42:d6:15:7e:15:e3:98:1f:e5:18:08:1b:d3:fb: d8:05:80:3d:f3:c5:94:4d:bd:42:86:e5:33:8f:e5:a0:d1:92: f2:91:05:2c:6a:c1:c7:51:57:58:ce:a1:5d:da:e2:82:f6:de: b1:1b:70:5b:e2:5d:42:f1:ac:76:13:61:5d:bc:bf:0b:75:bd: 85:60:ff:db:9d:36:00:a7:b0:fb:df:e0:1f:c1:cd:06:b0:f0: 14:46:0f:3b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcSxe1wzrPHMtvwNCID+WGWVExhowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYxOTAzMTQxNloX DTI1MDYxODAzMTkxNlowMzExMC8GA1UEAxMoNUJCN0U4QTNBQkY2REY2RDQ2QzNE NUY5MUVDM0I3Nzg3MENFNkM2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOPZ+qg+M+sfiL5ngIymzzhqYl5ny+e1gtMltkBUr6axYuq9uDuLsApNMbv/ wLTW2NbIhoNRW/lcvd1b1oOYYHQzBfEH66CoJsqjYix6oiohDArizWBPYAJJT/uF 3HVWqTYImT7J/9aDbjLPfueFwuVOIxl3bm8eW8qoUiyYOZAxB+frHlKaziP8PU4O +bBGSUvw+YaapGuDYvj1a8K9VH1lgxVDvgy9OCrRYNv3PnKaQFiIbubnBkWfEWiK 9sv+ZkiSTPSH1occ7AXUDJ/CH6n4ewrMd+KS5S8yFO4cdn8jFMY1Y4XVhKXtoIb9 8uVTfaxLJ6owyTamJHDy02lz25MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFu36KOr9t9tRsPV+R7Dt3hwzmxhMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNWEyMDA3Ny1mYzUzLTQzYTMtYmRhNy1mMzk5NTZkOTkyNmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM1YTIwMDc3 LWZjNTMtNDNhMy1iZGE3LWYzOTk1NmQ5OTI2ZC8wLzVCQjdFOEEzQUJGNkRGNkQ0 NkMzRDVGOTFFQzNCNzc4NzBDRTZDNjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFkYwDQYJKoZIhvcNAQELBQADggEBABiKVq+Cvmb3SIBdG3DMIZgG+lIiRqGf GSGB2FAgr9CMwCL4STQFbJRAEsqSD5ozsb/JD0/O65j2bsMCLZFowiR4go4eQrM5 7lO7AZ4RVlTqP3iNgBeEajYDOk2FVpuPihFL8iwc0yy3o6KqFPVmaZlcGFr4DIhJ VcFtXfl/4cAmIB+dcBn0Mb5z3s3cSxLS3b9x84csgDqSx/fTJn68U1CJbFOTe65C 1hV+FeOYH+UYCBvT+9gFgD3zxZRNvUKG5TOP5aDRkvKRBSxqwcdRV1jOoV3a4oL2 3rEbcFviXULxrHYTYV28vwt1vYVg/9udNgCnsPvf4B/BzQaw8BRGDzs= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org