$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/67C19D4C4526841EC686B5194BEE908F203AF744.cer File: 67C19D4C4526841EC686B5194BEE908F203AF744.cer (raw, json) Hash identifier: 1geIVNppYgcxR5zgLmaT8DdVcMz8iyk15WIdWWAK3Xk= Subject key identifier: 67:C1:9D:4C:45:26:84:1E:C6:86:B5:19:4B:EE:90:8F:20:3A:F7:44 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 724B601A0FACA314928718BAC8823C55A38DCFA9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/0/67C19D4C4526841EC686B5194BEE908F203AF744.mft caRepository: rsync://repo-rpki.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 10 Nov 2024 14:23:13 +0000 Certificate not after: Sun 09 Nov 2025 14:28:13 +0000 Subordinate resources: IP: 160.191.12.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:4b:60:1a:0f:ac:a3:14:92:87:18:ba:c8:82:3c:55:a3:8d:cf:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Nov 10 14:23:13 2024 GMT Not After : Nov 9 14:28:13 2025 GMT Subject: CN=67C19D4C4526841EC686B5194BEE908F203AF744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:03:97:2c:a6:c4:0f:e4:92:24:23:8b:8e:25: be:e8:91:34:7e:02:54:9a:1d:c9:99:a8:22:f0:f0: ae:9f:67:33:86:ad:bf:f7:35:e6:e9:d9:6e:a9:8a: 42:66:bb:b8:ad:a6:63:91:82:5e:45:c3:2f:2a:66: 08:a4:d8:42:e6:2d:35:a7:cd:89:fb:8e:e3:68:d6: 5e:71:2f:af:79:1b:32:56:21:d8:f7:5a:94:a8:0f: a1:47:f5:7d:f7:ad:64:ba:3f:ac:da:8d:00:d1:fe: 48:83:9d:c6:97:d4:7b:1d:be:8f:06:fd:5e:d4:a2: b7:7e:55:92:78:e9:c2:8b:d3:43:0a:6c:f7:da:fa: e6:7d:bb:10:97:2a:f3:7e:e2:9f:89:fe:e8:87:93: b6:8f:5f:11:00:e6:f0:1f:8d:0d:82:c3:7a:9a:d6: 4d:6d:c9:b0:5b:f9:bc:36:15:ea:80:61:5b:fe:f0: 42:bd:08:8e:45:b7:bf:c7:df:10:1d:69:22:f1:80: 0a:a2:e4:2c:90:29:e0:aa:87:c6:85:7d:5d:16:df: 37:85:23:09:4e:0d:31:85:b7:1e:b4:c2:5b:96:70: be:28:51:1a:9c:a2:7b:14:35:a8:ac:db:f3:29:a3: 2c:0c:b4:ef:6c:e9:c3:62:34:60:85:aa:84:8e:04: 28:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 67:C1:9D:4C:45:26:84:1E:C6:86:B5:19:4B:EE:90:8F:20:3A:F7:44 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a211f347-a1e7-471d-ad20-da76aabf384c/0/67C19D4C4526841EC686B5194BEE908F203AF744.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.191.12.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:31:61:c6:7f:ce:b9:86:af:d6:80:d2:2c:5e:1d:28:74:11: 5f:5d:74:3f:52:fc:db:db:b0:fd:a9:b6:10:f5:ca:17:71:60: 72:e9:d7:71:af:45:6b:dd:90:90:8d:4c:37:f2:a0:c9:85:16: ff:75:6c:76:76:37:87:22:45:2e:f2:54:75:03:f7:5b:21:96: 9f:8c:7c:d6:ec:51:4c:c9:95:42:ad:02:d1:26:df:fb:b0:b8: c2:3a:94:b7:c7:ad:22:2f:cd:a3:7b:73:51:c4:24:22:35:7f: 4f:4f:76:36:1f:b9:35:e8:86:32:5d:22:cc:85:b0:00:46:f8: ec:97:32:14:d2:6e:2c:99:3b:2a:9b:44:ac:ea:93:ad:f7:39: 08:7f:e7:35:1e:ba:23:18:e8:08:1a:a3:cd:62:a5:76:d1:41: c3:ed:73:6f:af:1f:07:e2:e2:93:e3:bb:0f:1d:4e:03:1e:f6: af:8d:99:6b:d2:e7:46:e9:1e:66:1e:f2:02:9f:50:e1:3f:ba: 6b:d1:12:45:b8:a3:36:fe:94:b9:2c:f3:57:ab:7f:47:8a:fa: 8a:bb:d0:d7:a5:4d:92:23:15:a9:73:86:a7:c9:b8:b9:8a:d4: 85:a0:f1:48:16:e7:2e:3f:5d:eb:3f:ae:79:e6:33:7b:72:e1: 6c:6d:bf:42 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcktgGg+soxSShxi6yII8VaONz6kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTExMDE0MjMxM1oX DTI1MTEwOTE0MjgxM1owMzExMC8GA1UEAxMoNjdDMTlENEM0NTI2ODQxRUM2ODZC NTE5NEJFRTkwOEYyMDNBRjc0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMoDlyymxA/kkiQji44lvuiRNH4CVJodyZmoIvDwrp9nM4atv/c15unZbqmK Qma7uK2mY5GCXkXDLypmCKTYQuYtNafNifuO42jWXnEvr3kbMlYh2PdalKgPoUf1 ffetZLo/rNqNANH+SIOdxpfUex2+jwb9XtSit35VknjpwovTQwps99r65n27EJcq 837in4n+6IeTto9fEQDm8B+NDYLDeprWTW3JsFv5vDYV6oBhW/7wQr0IjkW3v8ff EB1pIvGACqLkLJAp4KqHxoV9XRbfN4UjCU4NMYW3HrTCW5ZwvihRGpyiexQ1qKzb 8ymjLAy072zpw2I0YIWqhI4EKJ8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGfBnUxFJoQexoa1GUvukI8gOvdEMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMjExZjM0Ny1hMWU3LTQ3MWQtYWQyMC1kYTc2YWFiZjM4NGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyMTFmMzQ3 LWExZTctNDcxZC1hZDIwLWRhNzZhYWJmMzg0Yy8wLzY3QzE5RDRDNDUyNjg0MUVD Njg2QjUxOTRCRUU5MDhGMjAzQUY3NDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgvwwwDQYJKoZIhvcNAQELBQADggEBAJoxYcZ/zrmGr9aA0ixeHSh0EV9ddD9S /NvbsP2pthD1yhdxYHLp13GvRWvdkJCNTDfyoMmFFv91bHZ2N4ciRS7yVHUD91sh lp+MfNbsUUzJlUKtAtEm3/uwuMI6lLfHrSIvzaN7c1HEJCI1f09PdjYfuTXohjJd IsyFsABG+OyXMhTSbiyZOyqbRKzqk633OQh/5zUeuiMY6Agao81ipXbRQcPtc2+v Hwfi4pPjuw8dTgMe9q+NmWvS50bpHmYe8gKfUOE/umvREkW4ozb+lLks81erf0eK +oq70NelTZIjFalzhqfJuLmK1IWg8UgW5y4/Xes/rnnmM3ty4Wxtv0I= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org