$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/9388695CCB2DCC37F2AB8A3D10E4FDE0C3A975A1.cer File: 9388695CCB2DCC37F2AB8A3D10E4FDE0C3A975A1.cer (raw, json) Hash identifier: svD3TxlEgjyMG7o6JIVOkqLroj4R2tkXS0xt7Ri4OWs= Subject key identifier: 93:88:69:5C:CB:2D:CC:37:F2:AB:8A:3D:10:E4:FD:E0:C3:A9:75:A1 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7A31498DDF6B98E72539CC6BA8BF53CB4B0A5DF3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/83cbd67b-d190-4a4c-83b6-11887d7c2e99/0/9388695CCB2DCC37F2AB8A3D10E4FDE0C3A975A1.mft caRepository: rsync://repo-rpki.idnic.net/repo/83cbd67b-d190-4a4c-83b6-11887d7c2e99/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jul 2024 18:01:47 +0000 Certificate not after: Tue 01 Jul 2025 18:06:47 +0000 Subordinate resources: IP: 160.22.96.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:31:49:8d:df:6b:98:e7:25:39:cc:6b:a8:bf:53:cb:4b:0a:5d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 2 18:01:47 2024 GMT Not After : Jul 1 18:06:47 2025 GMT Subject: CN=9388695CCB2DCC37F2AB8A3D10E4FDE0C3A975A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3c:8d:4f:60:25:b1:68:56:49:26:c0:cb:a1: aa:f8:0b:11:18:bb:45:a6:c2:8a:97:fa:cf:65:9e: f2:cf:b8:59:b9:37:ca:f9:7b:97:e9:9f:25:80:3a: d9:d1:3a:97:9e:16:1f:40:28:ab:ae:b8:ae:63:e3: 4d:7e:0e:2b:ea:fc:5f:f5:ba:0d:94:ae:7d:f1:78: c3:8f:bd:57:ba:43:9f:d7:59:ef:46:49:07:1f:11: de:52:36:13:8c:e1:e5:20:75:b1:a8:8f:d9:e7:74: 8d:0a:75:51:2f:84:39:98:81:5a:8e:f9:fd:f5:c8: e4:fc:0c:c4:33:ac:63:bd:a9:c0:61:46:21:dd:b5: f7:d4:52:46:a4:19:b1:df:50:c6:06:76:0a:22:65: 00:1e:96:aa:50:08:5e:c6:64:96:b9:d4:c6:05:da: b6:67:6f:18:b6:1f:da:ba:cd:d7:3b:a2:4f:36:85: a2:0d:9d:0f:bd:04:a8:3e:e4:a0:90:de:bf:62:d2: b0:8f:b9:5f:d5:85:03:36:20:ef:08:a3:9f:55:65: d9:b7:f3:d4:fb:86:7f:74:9c:a4:ac:a9:04:13:97: 2a:f7:cc:fd:d2:2c:0d:fa:79:79:75:ab:90:d4:d7: db:05:25:4d:16:47:bb:ed:6b:62:f7:4e:b1:7a:68: a4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 93:88:69:5C:CB:2D:CC:37:F2:AB:8A:3D:10:E4:FD:E0:C3:A9:75:A1 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/83cbd67b-d190-4a4c-83b6-11887d7c2e99/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/83cbd67b-d190-4a4c-83b6-11887d7c2e99/0/9388695CCB2DCC37F2AB8A3D10E4FDE0C3A975A1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.96.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:7c:f0:e0:70:cc:da:da:fc:ee:b9:66:f3:17:5a:9c:00:36: b0:05:a7:f0:0b:1d:30:5d:32:21:49:7b:52:ba:52:40:3c:3e: 35:4f:01:0f:2c:9b:44:70:4e:9b:56:bf:62:ef:91:16:e8:7e: 72:79:23:ff:98:7d:20:0a:bb:b2:68:62:59:c4:9b:ea:4b:4e: 1b:09:f9:e2:db:49:e7:6d:3c:e2:65:bf:30:01:0d:da:b1:e1: 75:ef:d3:3b:56:0d:67:73:60:87:64:87:fa:35:fc:eb:8e:85: 0d:07:d1:c5:1f:70:a8:54:0a:44:b0:e6:d9:e1:d2:2f:87:a2: ae:b9:9a:a6:af:ac:8a:eb:e8:a1:6f:30:11:df:2f:55:95:fa: b0:6f:a0:aa:88:bf:89:3b:98:0a:bb:d5:d5:ff:01:d5:c5:d8: ce:04:de:47:54:2a:4f:0c:45:25:81:e8:99:25:61:95:ad:70: 25:96:f2:6d:87:fd:57:e4:46:b3:8c:f8:f7:10:7f:e6:0e:37: 0c:e4:65:af:22:6d:05:fd:5e:59:76:c5:c8:38:ee:02:78:a4: 90:6f:00:b7:11:2f:59:8c:e9:8c:88:c5:1d:2e:18:c4:d2:2f: 7b:98:ff:58:ae:f2:02:e9:a6:e9:4a:84:a4:62:5f:70:73:68: 79:53:4d:b2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUejFJjd9rmOclOcxrqL9Ty0sKXfMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcwMjE4MDE0N1oX DTI1MDcwMTE4MDY0N1owMzExMC8GA1UEAxMoOTM4ODY5NUNDQjJEQ0MzN0YyQUI4 QTNEMTBFNEZERTBDM0E5NzVBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALs8jU9gJbFoVkkmwMuhqvgLERi7RabCipf6z2We8s+4Wbk3yvl7l+mfJYA6 2dE6l54WH0Aoq664rmPjTX4OK+r8X/W6DZSuffF4w4+9V7pDn9dZ70ZJBx8R3lI2 E4zh5SB1saiP2ed0jQp1US+EOZiBWo75/fXI5PwMxDOsY72pwGFGId2199RSRqQZ sd9QxgZ2CiJlAB6WqlAIXsZklrnUxgXatmdvGLYf2rrN1zuiTzaFog2dD70EqD7k oJDev2LSsI+5X9WFAzYg7wijn1Vl2bfz1PuGf3ScpKypBBOXKvfM/dIsDfp5eXWr kNTX2wUlTRZHu+1rYvdOsXpopMkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJOIaVzLLcw38quKPRDk/eDDqXWhMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84M2NiZDY3Yi1kMTkwLTRhNGMtODNiNi0xMTg4N2Q3YzJlOTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzY2JkNjdi LWQxOTAtNGE0Yy04M2I2LTExODg3ZDdjMmU5OS8wLzkzODg2OTVDQ0IyRENDMzdG MkFCOEEzRDEwRTRGREUwQzNBOTc1QTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFmAwDQYJKoZIhvcNAQELBQADggEBAF588OBwzNra/O65ZvMXWpwANrAFp/AL HTBdMiFJe1K6UkA8PjVPAQ8sm0RwTptWv2LvkRbofnJ5I/+YfSAKu7JoYlnEm+pL ThsJ+eLbSedtPOJlvzABDdqx4XXv0ztWDWdzYIdkh/o1/OuOhQ0H0cUfcKhUCkSw 5tnh0i+Hoq65mqavrIrr6KFvMBHfL1WV+rBvoKqIv4k7mAq71dX/AdXF2M4E3kdU Kk8MRSWB6JklYZWtcCWW8m2H/VfkRrOM+PcQf+YONwzkZa8ibQX9Xll2xcg47gJ4 pJBvALcRL1mM6YyIxR0uGMTSL3uY/1iu8gLppulKhKRiX3BzaHlTTbI= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org