$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/611A205C7A5D6583CE5801C64DC8EAFAB57E4129.cer File: 611A205C7A5D6583CE5801C64DC8EAFAB57E4129.cer (raw, json) Hash identifier: KiZ1qifAFP2HPnfK5FQfQuSxe9NHRkyzWTWrOHx9DJs= Subject key identifier: 61:1A:20:5C:7A:5D:65:83:CE:58:01:C6:4D:C8:EA:FA:B5:7E:41:29 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 14B420CEE4BE08C9912520ED1B90563287D07A38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0/611A205C7A5D6583CE5801C64DC8EAFAB57E4129.mft caRepository: rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Apr 2024 04:19:43 +0000 Certificate not after: Fri 04 Apr 2025 04:24:43 +0000 Subordinate resources: IP: 157.10.212.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:b4:20:ce:e4:be:08:c9:91:25:20:ed:1b:90:56:32:87:d0:7a:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 5 04:19:43 2024 GMT Not After : Apr 4 04:24:43 2025 GMT Subject: CN=611A205C7A5D6583CE5801C64DC8EAFAB57E4129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8c:80:08:5f:40:a1:4d:98:f9:b5:6d:53:8e: 15:0f:c5:f7:8a:ea:78:e4:c7:fd:2b:c5:57:21:ed: 1d:40:e5:a3:e5:38:7b:37:d4:e9:0f:7e:92:77:8a: 8d:2b:97:6f:d7:01:9c:45:1f:0b:25:10:1f:e5:6a: dd:1c:33:f3:9d:3f:ca:4d:a5:e7:bd:ce:28:49:ab: 2c:d8:c8:6b:38:cc:57:59:1a:30:28:17:e0:93:17: 5f:30:f4:a8:24:ed:c0:b8:7b:e3:a3:af:a0:3f:92: 9d:79:44:ff:d7:79:c4:82:26:dc:70:9e:fc:c6:bb: b6:cc:ce:09:9a:89:85:46:44:b1:6d:ba:f9:b0:14: 45:79:bb:cd:97:29:76:37:e1:79:a5:5f:98:a8:d4: 99:58:b1:ac:42:95:5c:5c:e4:c2:e5:a8:1d:b8:cf: d1:70:41:cb:48:33:e1:0e:c2:c3:c4:e4:68:bb:c3: dc:8a:f6:0c:98:66:92:2e:fe:76:f6:61:4d:0e:86: ed:de:ec:e0:36:9a:f5:1f:8d:a1:d0:66:c1:98:ef: 99:a0:7e:72:d1:a0:2e:b8:b0:b1:dd:a4:fc:e6:f3: 03:f0:d2:8b:61:bc:d7:82:e1:1a:b7:4d:38:ae:ed: d0:11:0d:f5:1a:0f:74:51:e3:84:42:a0:3a:66:78: d7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 61:1A:20:5C:7A:5D:65:83:CE:58:01:C6:4D:C8:EA:FA:B5:7E:41:29 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0/611A205C7A5D6583CE5801C64DC8EAFAB57E4129.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.212.0/23 Signature Algorithm: sha256WithRSAEncryption 05:79:a8:4e:11:0d:7b:f8:65:d6:da:4b:97:09:76:9f:b2:b0: e3:1e:d7:f1:79:5a:7f:fb:12:d7:8e:45:59:9a:40:2c:be:4a: 17:0f:91:dc:41:f1:b7:70:2b:85:80:37:a9:fb:03:d3:51:9f: ea:30:31:bf:20:b4:df:bb:a6:c2:1c:8c:64:85:76:09:b5:8e: 28:2e:96:f2:06:e2:05:1f:16:68:24:9e:07:95:e1:60:42:15: d4:85:14:7a:ed:35:bf:70:23:06:60:47:51:02:a8:46:46:29: cb:41:79:00:4c:5c:b8:eb:fb:d0:00:95:24:64:13:6e:39:0a: 7b:56:5e:51:69:2d:98:6a:f3:4b:24:44:b8:24:48:36:0d:d7: ee:40:94:93:41:5b:b0:1f:f2:fc:01:53:fe:91:0d:74:4b:fa: 26:9a:44:75:9c:bf:3c:80:22:7c:f1:5c:96:94:d1:ef:bb:73: 49:5a:1a:2a:53:d2:7c:ba:b8:cc:45:b4:ef:30:94:a2:9e:88: 66:e2:4c:f5:8b:75:d7:92:11:26:63:9e:d5:4c:db:7b:af:21: 21:2e:54:19:0f:5d:61:9a:eb:0e:4b:16:fc:8c:8e:97:a9:62: 73:0c:92:1e:37:ac:ff:76:1d:64:1d:23:f2:44:f1:9d:18:5b: 5d:60:bf:44 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFLQgzuS+CMmRJSDtG5BWMofQejgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwNTA0MTk0M1oX DTI1MDQwNDA0MjQ0M1owMzExMC8GA1UEAxMoNjExQTIwNUM3QTVENjU4M0NFNTgw MUM2NERDOEVBRkFCNTdFNDEyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKMgAhfQKFNmPm1bVOOFQ/F94rqeOTH/SvFVyHtHUDlo+U4ezfU6Q9+kneK jSuXb9cBnEUfCyUQH+Vq3Rwz850/yk2l573OKEmrLNjIazjMV1kaMCgX4JMXXzD0 qCTtwLh746OvoD+SnXlE/9d5xIIm3HCe/Ma7tszOCZqJhUZEsW26+bAURXm7zZcp djfheaVfmKjUmVixrEKVXFzkwuWoHbjP0XBBy0gz4Q7Cw8TkaLvD3Ir2DJhmki7+ dvZhTQ6G7d7s4Daa9R+NodBmwZjvmaB+ctGgLriwsd2k/ObzA/DSi2G814LhGrdN OK7t0BEN9RoPdFHjhEKgOmZ41zMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGEaIFx6XWWDzlgBxk3I6vq1fkEpMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hN2Q1MGYyNy03ZTg4LTQ3MTgtODNkZi02ODMyZWM4MGU2MjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E3ZDUwZjI3 LTdlODgtNDcxOC04M2RmLTY4MzJlYzgwZTYyNC8wLzYxMUEyMDVDN0E1RDY1ODND RTU4MDFDNjREQzhFQUZBQjU3RTQxMjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdCtQwDQYJKoZIhvcNAQELBQADggEBAAV5qE4RDXv4ZdbaS5cJdp+ysOMe1/F5 Wn/7EteORVmaQCy+ShcPkdxB8bdwK4WAN6n7A9NRn+owMb8gtN+7psIcjGSFdgm1 jigulvIG4gUfFmgkngeV4WBCFdSFFHrtNb9wIwZgR1ECqEZGKctBeQBMXLjr+9AA lSRkE245CntWXlFpLZhq80skRLgkSDYN1+5AlJNBW7Af8vwBU/6RDXRL+iaaRHWc vzyAInzxXJaU0e+7c0laGipT0ny6uMxFtO8wlKKeiGbiTPWLddeSESZjntVM23uv ISEuVBkPXWGa6w5LFvyMjpepYnMMkh43rP92HWQdI/JE8Z0YW11gv0Q= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org