$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/8107B8970680BF15377E222E6093ED124116C40F.cer File: 8107B8970680BF15377E222E6093ED124116C40F.cer (raw, json) Hash identifier: OHl0KgPISCf3cuLMZoYTIVJUpWbfy1vrM1Ao3tvloS0= Subject key identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 06FD4A6A1FC73449DFD468F7F64C2C1F5B2FEE8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft caRepository: rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 27 Sep 2024 04:48:45 +0000 Certificate not after: Fri 26 Sep 2025 04:53:45 +0000 Subordinate resources: IP: 160.22.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:fd:4a:6a:1f:c7:34:49:df:d4:68:f7:f6:4c:2c:1f:5b:2f:ee:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 27 04:48:45 2024 GMT Not After : Sep 26 04:53:45 2025 GMT Subject: CN=8107B8970680BF15377E222E6093ED124116C40F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:90:fe:ec:65:ee:73:c5:b5:a4:0e:e1:bb:9f: ab:87:f9:c3:02:88:82:0e:31:7c:6f:f9:34:a2:5a: f8:ae:14:cb:41:4e:57:46:7f:69:0f:67:8f:2f:33: 3d:b6:c2:0c:e1:62:57:f2:75:c3:fa:b3:78:80:b6: 35:42:dc:d2:1b:ed:8f:f7:c1:d5:21:c4:68:cf:0c: bd:cd:88:c5:40:dd:af:c7:42:a3:01:1a:90:04:25: 17:9e:71:71:44:0d:c8:71:b6:a4:0f:94:64:64:aa: e0:7c:2d:b2:47:b7:1f:0d:a5:f6:6e:12:bd:bc:f0: 01:e8:a0:65:c8:f7:a3:78:63:df:6b:4e:71:a4:67: 2b:7a:6c:15:fe:72:fd:76:76:6d:0b:00:f3:c5:13: 92:83:d7:1d:c4:c6:ec:31:24:62:83:ba:c7:9d:63: 8e:3f:d5:d4:90:1a:d9:dc:72:d8:49:94:40:e9:62: d7:34:9f:17:65:6f:d1:c6:ca:20:55:67:23:67:71: a0:c8:02:32:a7:65:a7:5c:f9:0c:91:77:98:26:22: 1e:3d:0b:a5:ef:82:ad:ef:8d:73:18:22:8f:0b:28: d1:51:2b:01:ed:2c:1b:f1:99:4d:78:c5:07:e3:54: 4f:7b:1d:fe:0a:57:63:c4:f1:a1:72:d6:8e:c1:0d: 10:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 81:07:B8:97:06:80:BF:15:37:7E:22:2E:60:93:ED:12:41:16:C4:0F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f195b4b4-bc8a-4ce5-b550-9aa7b36ee1fa/0/8107B8970680BF15377E222E6093ED124116C40F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.136.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:89:c1:c4:c9:03:e9:92:81:8f:d5:30:44:bc:11:0c:f7:63: fa:a2:51:98:22:1b:66:46:c7:2d:1d:84:77:b9:43:28:9a:6f: f9:74:e5:b3:a4:71:00:ef:00:29:1e:6b:08:eb:11:0f:84:b1: 98:f2:aa:91:31:82:ab:70:98:ae:08:eb:43:2a:22:7f:9a:2c: 38:9d:59:3c:5c:09:bf:91:57:d6:1b:78:b8:5d:44:26:88:83: 27:03:03:01:03:74:39:fe:ae:76:f2:89:67:10:a1:c2:5d:71: 72:08:03:72:db:74:c3:21:8e:8e:91:44:e9:fe:28:26:43:0c: 07:78:5a:22:28:a4:1f:d3:29:71:22:2f:b6:6d:d5:06:0e:dc: b9:71:f5:02:29:ae:57:79:55:95:2b:37:b2:11:0d:dc:a3:1f: 94:ae:4b:5b:d1:d6:38:20:4e:41:cd:26:98:ef:67:27:54:09: b7:a6:09:76:90:27:8f:31:e7:87:3a:62:b9:cf:01:b4:97:28: 5a:9d:93:38:00:da:d8:7b:4f:37:33:cd:79:c8:dc:10:28:96: 24:7d:c5:50:10:9f:b9:08:f9:0d:72:a1:1c:0a:fb:ad:e0:8e: de:1a:e5:38:31:8c:83:35:b4:60:49:5f:45:cf:b9:e7:d7:e9: 19:75:41:34 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBv1Kah/HNEnf1Gj39kwsH1sv7o0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkyNzA0NDg0NVoX DTI1MDkyNjA0NTM0NVowMzExMC8GA1UEAxMoODEwN0I4OTcwNjgwQkYxNTM3N0Uy MjJFNjA5M0VEMTI0MTE2QzQwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKSQ/uxl7nPFtaQO4bufq4f5wwKIgg4xfG/5NKJa+K4Uy0FOV0Z/aQ9njy8z PbbCDOFiV/J1w/qzeIC2NULc0hvtj/fB1SHEaM8Mvc2IxUDdr8dCowEakAQlF55x cUQNyHG2pA+UZGSq4Hwtske3Hw2l9m4SvbzwAeigZcj3o3hj32tOcaRnK3psFf5y /XZ2bQsA88UTkoPXHcTG7DEkYoO6x51jjj/V1JAa2dxy2EmUQOli1zSfF2Vv0cbK IFVnI2dxoMgCMqdlp1z5DJF3mCYiHj0Lpe+Cre+Ncxgijwso0VErAe0sG/GZTXjF B+NUT3sd/gpXY8TxoXLWjsENEG0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIEHuJcGgL8VN34iLmCT7RJBFsQPMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMTk1YjRiNC1iYzhhLTRjZTUtYjU1MC05YWE3YjM2ZWUxZmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTViNGI0 LWJjOGEtNGNlNS1iNTUwLTlhYTdiMzZlZTFmYS8wLzgxMDdCODk3MDY4MEJGMTUz NzdFMjIyRTYwOTNFRDEyNDExNkM0MEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFogwDQYJKoZIhvcNAQELBQADggEBAGyJwcTJA+mSgY/VMES8EQz3Y/qiUZgi G2ZGxy0dhHe5Qyiab/l05bOkcQDvACkeawjrEQ+EsZjyqpExgqtwmK4I60MqIn+a LDidWTxcCb+RV9YbeLhdRCaIgycDAwEDdDn+rnbyiWcQocJdcXIIA3LbdMMhjo6R ROn+KCZDDAd4WiIopB/TKXEiL7Zt1QYO3Llx9QIprld5VZUrN7IRDdyjH5SuS1vR 1jggTkHNJpjvZydUCbemCXaQJ48x54c6YrnPAbSXKFqdkzgA2th7TzczzXnI3BAo liR9xVAQn7kI+Q1yoRwK+63gjt4a5TgxjIM1tGBJX0XPuefX6Rl1QTQ= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org