$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer File: 61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.cer (raw, json) Hash identifier: F0RFJ1D0wb6MtDTzgvjekekDsEVdAf8j/w6SUoBJIYA= Subject key identifier: 61:E9:B6:78:CD:42:DA:2A:1B:3E:F3:D8:87:9E:DF:7E:CD:2A:00:63 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1F543B7125E7F0165B3D032B4AA5C483390BAD15 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.mft caRepository: rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 27 Jun 2024 09:18:22 +0000 Certificate not after: Thu 26 Jun 2025 09:23:22 +0000 Subordinate resources: IP: 160.22.126.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:54:3b:71:25:e7:f0:16:5b:3d:03:2b:4a:a5:c4:83:39:0b:ad:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 27 09:18:22 2024 GMT Not After : Jun 26 09:23:22 2025 GMT Subject: CN=61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:31:db:9d:01:32:28:a6:de:1e:45:22:d0:da: 5f:57:34:cd:d7:18:2e:78:22:09:f7:10:fd:3c:8c: b7:f5:ef:07:fc:99:44:f4:1f:ad:0e:69:35:ec:5b: 1b:d1:09:1a:6c:cc:e4:74:be:47:f0:6e:aa:75:6a: e7:8f:7d:a2:ba:65:25:a6:74:8f:32:5a:3a:9a:6a: 74:15:3c:9f:46:3d:ea:38:a6:b7:4a:11:58:78:8b: 20:fe:36:2d:1e:d9:18:14:82:eb:e3:6d:72:58:64: 45:fa:26:c7:61:bd:38:17:e3:b5:14:c4:e7:35:63: 83:26:83:4d:09:a0:ee:0d:7e:87:12:2b:6d:1c:1d: 23:bd:da:91:98:ee:dd:7a:75:2b:12:31:13:28:11: ef:43:d9:e7:b8:00:db:31:35:fc:e0:be:f8:53:47: 07:3c:36:6f:be:1b:72:24:18:e9:4f:4f:b4:dd:f0: 4f:e1:65:d5:63:0b:c8:7c:7d:d8:20:f2:92:6c:ed: 8f:76:e3:2f:a6:97:a6:40:e3:d8:9e:28:c7:a0:59: 23:cb:a8:2d:1d:98:b8:2a:66:71:ad:d2:e8:5c:f6: 6a:71:d3:16:39:72:95:5e:ef:ba:98:71:5f:7c:b2: 75:48:2a:4f:ce:40:de:8a:27:99:b1:92:8f:02:07: 64:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 61:E9:B6:78:CD:42:DA:2A:1B:3E:F3:D8:87:9E:DF:7E:CD:2A:00:63 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0546e09a-c007-4b0c-9460-7c40341ca2f7/0/61E9B678CD42DA2A1B3EF3D8879EDF7ECD2A0063.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.126.0/23 Signature Algorithm: sha256WithRSAEncryption 71:90:34:bb:52:a5:19:fb:b1:7b:7e:1d:9c:ee:91:4c:b7:07: d3:8a:08:45:a7:f2:1e:65:08:01:62:98:e5:28:91:f9:2b:28: 0b:8b:aa:36:c6:de:88:14:16:01:10:00:30:f4:5a:15:a0:9a: 02:7b:d9:45:12:6a:03:36:5a:f6:09:83:0c:73:9a:28:b6:9c: c4:6c:0b:b9:79:86:98:dc:e1:56:16:7f:27:4a:d6:f6:e0:d6: 50:15:6b:a8:b7:11:73:7d:31:ff:74:01:ff:0d:c2:0d:32:15: c6:63:0c:63:e2:66:31:46:04:bb:bf:f8:d9:51:b0:c9:46:e0: b8:cc:06:ee:a4:92:77:f3:14:a1:74:79:6c:29:3a:78:0b:af: 43:8e:a5:7a:14:45:43:72:72:88:fa:38:ea:7e:c7:f0:fd:da: f2:19:ac:13:d8:cb:14:9f:9e:f3:0c:b4:13:20:03:15:46:bc: cd:3d:89:62:46:f4:de:39:99:0b:62:6b:d8:4c:7b:70:f8:70: 27:7b:00:d3:8c:d3:6c:5d:2c:7f:34:74:a9:59:48:ca:0e:61: b7:dc:39:08:b4:81:57:1b:84:3c:a1:d0:bb:e6:bb:02:31:b2: 2a:ef:3b:f2:97:2e:c5:6c:6f:54:7e:ca:22:75:37:b3:84:e2: 66:80:82:00 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUH1Q7cSXn8BZbPQMrSqXEgzkLrRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYyNzA5MTgyMloX DTI1MDYyNjA5MjMyMlowMzExMC8GA1UEAxMoNjFFOUI2NzhDRDQyREEyQTFCM0VG M0Q4ODc5RURGN0VDRDJBMDA2MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0x250BMiim3h5FItDaX1c0zdcYLngiCfcQ/TyMt/XvB/yZRPQfrQ5pNexb G9EJGmzM5HS+R/BuqnVq5499orplJaZ0jzJaOppqdBU8n0Y96jimt0oRWHiLIP42 LR7ZGBSC6+NtclhkRfomx2G9OBfjtRTE5zVjgyaDTQmg7g1+hxIrbRwdI73akZju 3Xp1KxIxEygR70PZ57gA2zE1/OC++FNHBzw2b74bciQY6U9PtN3wT+Fl1WMLyHx9 2CDykmztj3bjL6aXpkDj2J4ox6BZI8uoLR2YuCpmca3S6Fz2anHTFjlylV7vuphx X3yydUgqT85A3oonmbGSjwIHZBcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGHptnjNQtoqGz7z2Iee337NKgBjMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTQ2ZTA5YS1jMDA3LTRiMGMtOTQ2MC03YzQwMzQxY2EyZjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1NDZlMDlh LWMwMDctNGIwYy05NDYwLTdjNDAzNDFjYTJmNy8wLzYxRTlCNjc4Q0Q0MkRBMkEx QjNFRjNEODg3OUVERjdFQ0QyQTAwNjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFn4wDQYJKoZIhvcNAQELBQADggEBAHGQNLtSpRn7sXt+HZzukUy3B9OKCEWn 8h5lCAFimOUokfkrKAuLqjbG3ogUFgEQADD0WhWgmgJ72UUSagM2WvYJgwxzmii2 nMRsC7l5hpjc4VYWfydK1vbg1lAVa6i3EXN9Mf90Af8Nwg0yFcZjDGPiZjFGBLu/ +NlRsMlG4LjMBu6kknfzFKF0eWwpOngLr0OOpXoURUNycoj6OOp+x/D92vIZrBPY yxSfnvMMtBMgAxVGvM09iWJG9N45mQtia9hMe3D4cCd7ANOM02xdLH80dKlZSMoO YbfcOQi0gVcbhDyh0LvmuwIxsirvO/KXLsVsb1R+yiJ1N7OE4maAggA= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org