$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer (raw, json) Hash identifier: PupNarb0pjjzy7jkK4vTO4/JLH9BfRJn8tuP3At0avo= Subject key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 59DE802828BBC5D27BF5EB907460191EDCFFE76F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft caRepository: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 19 Sep 2024 16:17:42 +0000 Certificate not after: Thu 18 Sep 2025 16:22:42 +0000 Subordinate resources: IP: 160.22.250.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:de:80:28:28:bb:c5:d2:7b:f5:eb:90:74:60:19:1e:dc:ff:e7:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 19 16:17:42 2024 GMT Not After : Sep 18 16:22:42 2025 GMT Subject: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:86:06:ca:78:af:75:81:e2:1a:81:f3:cf: ac:16:d4:a9:6f:d5:01:19:ba:5f:b3:04:dd:f3:30: 01:78:13:04:3c:5b:8d:79:5d:7a:b0:26:ae:ae:cf: 4a:e9:a6:79:1e:5e:6e:72:a1:b5:f1:35:25:2d:ca: 6e:ce:9e:60:38:2a:aa:7e:31:7a:83:e9:1b:1f:8d: 04:b3:86:66:83:18:b6:97:52:4c:85:09:a9:b7:7a: 4d:06:fb:8d:b7:6f:7d:11:38:0c:5c:ba:6d:94:98: 03:d0:74:bc:ce:d6:5a:95:ea:4d:5c:16:6a:67:c4: 8a:2e:7b:fe:26:96:ea:6f:a6:c8:6c:3b:e6:35:a1: 0e:98:75:2a:d2:d8:0c:23:9a:1b:98:77:74:d9:a2: 4c:6f:9a:38:ee:f1:48:0f:c4:3e:b3:f1:5a:44:7a: 71:30:86:95:a9:b7:b5:e4:24:09:72:da:e0:c5:d5: 69:da:25:85:56:1b:f5:7b:e9:34:ad:8b:60:3b:76: 99:21:64:c0:9f:cd:26:8c:53:ad:fb:6a:d3:d5:ae: 55:6d:08:6c:e7:45:41:e4:1e:2d:88:da:f9:0f:8a: 8b:60:b7:15:a8:44:d4:48:02:b5:d7:38:04:ae:8e: 11:77:cf:72:5a:42:a0:eb:16:fc:a8:ba:14:47:67: d3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.250.0/23 Signature Algorithm: sha256WithRSAEncryption 28:1e:9c:f7:f5:49:ef:c5:1a:1a:43:0b:bd:3f:dc:9f:02:62: 1f:fe:0d:25:13:fd:01:c3:e7:2b:b9:bd:38:a8:5a:7b:1e:5c: 25:19:d6:0b:c4:c4:7e:be:52:37:8e:e7:70:db:4f:9d:09:63: 02:88:14:fe:66:95:63:72:17:a4:83:24:bb:79:e1:91:8e:bd: 29:bd:83:61:22:a3:48:6b:34:c1:7e:2a:af:2e:a2:15:72:5e: 5f:3d:9a:15:d0:e8:b4:53:78:f4:1d:f8:ec:ee:89:74:be:6b: 02:8a:d2:b6:30:f3:4b:58:3d:eb:ad:46:99:3f:5a:91:71:ec: f3:38:60:b7:69:ad:e2:9d:d1:02:ff:98:10:9f:46:0d:f7:c4: e9:03:ca:fb:56:20:8d:3d:44:7e:15:d1:a8:67:b8:6a:c8:92: b2:96:34:c5:6e:f3:0d:32:37:da:a5:f5:19:9e:b4:bf:29:ed: 3b:39:66:47:01:82:f1:1d:67:e4:e3:05:11:a8:c5:63:7b:f5: 81:88:0d:a4:b1:1e:fc:4d:b0:8f:b0:e0:71:bf:26:f4:c1:2d: 72:7b:bb:19:d4:cc:7a:a5:5d:21:0d:a2:35:e9:ce:12:d5:88: 58:f9:6e:69:76:11:1b:fb:97:b0:6f:34:55:d1:de:38:e3:e7: 2a:b2:7f:00 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWd6AKCi7xdJ79euQdGAZHtz/528wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkxOTE2MTc0MloX DTI1MDkxODE2MjI0MlowMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVE MkIwMTQzRkVGQzBFOUIyREEzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALfchgbKeK91geIagfPPrBbUqW/VARm6X7ME3fMwAXgTBDxbjXlderAmrq7P SummeR5ebnKhtfE1JS3Kbs6eYDgqqn4xeoPpGx+NBLOGZoMYtpdSTIUJqbd6TQb7 jbdvfRE4DFy6bZSYA9B0vM7WWpXqTVwWamfEii57/iaW6m+myGw75jWhDph1KtLY DCOaG5h3dNmiTG+aOO7xSA/EPrPxWkR6cTCGlam3teQkCXLa4MXVadolhVYb9Xvp NK2LYDt2mSFkwJ/NJoxTrftq09WuVW0IbOdFQeQeLYja+Q+Ki2C3FahE1EgCtdc4 BK6OEXfPclpCoOsW/Ki6FEdn030CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI4gWbLSRIWF0R7SsBQ/78Dpsto2MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwOGFiMTU3 LWQ4MjctNDlhOC1iYjg2LTI4YmUxMzFjM2QyNi8wLzhFMjA1OUIyRDI0NDg1ODVE MTFFRDJCMDE0M0ZFRkMwRTlCMkRBMzYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFvowDQYJKoZIhvcNAQELBQADggEBACgenPf1Se/FGhpDC70/3J8CYh/+DSUT /QHD5yu5vTioWnseXCUZ1gvExH6+UjeO53DbT50JYwKIFP5mlWNyF6SDJLt54ZGO vSm9g2Eio0hrNMF+Kq8uohVyXl89mhXQ6LRTePQd+OzuiXS+awKK0rYw80tYPeut Rpk/WpFx7PM4YLdpreKd0QL/mBCfRg33xOkDyvtWII09RH4V0ahnuGrIkrKWNMVu 8w0yN9ql9RmetL8p7Ts5ZkcBgvEdZ+TjBRGoxWN79YGIDaSxHvxNsI+w4HG/JvTB LXJ7uxnUzHqlXSENojXpzhLViFj5bml2ERv7l7BvNFXR3jjj5yqyfwA= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org