$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/961A52A522DEB902D9CBDDE98AF82B424422F566.cer File: 961A52A522DEB902D9CBDDE98AF82B424422F566.cer (raw, json) Hash identifier: 2Y0+hRnB8gyurd0oTnuAoL8ISTQ6SVtsJfcyiQTdQso= Subject key identifier: 96:1A:52:A5:22:DE:B9:02:D9:CB:DD:E9:8A:F8:2B:42:44:22:F5:66 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 25939800004317F0835AEAF70F00BFAF54A69747 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.mft caRepository: rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 05 Oct 2024 17:44:56 +0000 Certificate not after: Sat 04 Oct 2025 17:49:56 +0000 Subordinate resources: IP: 160.25.120.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 19:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:93:98:00:00:43:17:f0:83:5a:ea:f7:0f:00:bf:af:54:a6:97:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 5 17:44:56 2024 GMT Not After : Oct 4 17:49:56 2025 GMT Subject: CN=961A52A522DEB902D9CBDDE98AF82B424422F566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e1:1b:15:e8:92:b0:d6:bf:cd:c6:fd:f9:34: 96:4f:52:24:b3:ec:03:72:6f:ca:7b:5b:0c:55:ef: e2:12:0e:a2:d7:f3:a1:de:85:92:7a:17:44:95:cb: 1c:d2:bb:6f:eb:48:ff:39:1d:d7:85:49:07:a3:e3: 52:73:f9:66:40:3d:91:eb:b7:49:3f:cb:f5:11:3d: 50:ec:c2:0d:fd:f0:dd:ba:af:86:17:e7:03:76:29: 34:99:e6:ea:df:fd:9f:4f:fa:31:4f:17:95:01:64: 16:57:37:c0:63:c7:ee:34:15:22:ed:7e:20:c0:fd: 22:6e:10:b2:0f:d1:6b:5e:00:3e:72:eb:6b:d9:27: 17:9e:9a:7a:6c:dc:3f:eb:24:1d:45:2a:3d:22:18: 82:bf:f1:97:19:56:0a:0a:d3:f8:97:f1:1e:57:d5: 23:01:ce:04:17:13:80:79:11:e3:0a:2b:88:91:85: 63:22:67:3f:c7:9d:57:76:9f:1a:f4:77:d7:43:fc: 3b:d5:e0:3c:1e:82:a1:55:2c:50:7f:49:63:0c:f2: 67:c8:e4:a4:f6:1b:0e:49:19:b5:e0:e8:29:29:fa: 4d:c4:1c:8b:06:24:71:87:f4:d6:25:b9:76:81:a5: ee:c8:65:85:41:ae:8c:03:52:b1:33:98:ed:cc:36: e9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 96:1A:52:A5:22:DE:B9:02:D9:CB:DD:E9:8A:F8:2B:42:44:22:F5:66 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cf72f012-a43a-4fcb-86a9-ab3e9573a8d9/0/961A52A522DEB902D9CBDDE98AF82B424422F566.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.120.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:fc:6b:95:bd:55:41:a2:7f:81:6d:a2:9b:91:10:d5:66:3a: df:02:75:e4:e0:97:d4:bb:75:e1:93:65:6e:a6:66:8e:d5:a5: af:05:46:bd:9b:9a:2e:74:c0:ab:43:f1:5a:e4:a2:89:ff:4d: 18:6a:34:dc:b1:3a:f2:95:3d:e6:a5:ea:60:d3:11:30:01:b0: 99:a0:db:3d:cf:aa:f9:8e:77:a8:d8:35:37:80:e8:03:af:f9: 24:f2:c0:55:2b:d3:db:dc:58:b8:5b:b5:b6:c8:dc:cc:8c:d2: bf:ed:47:06:b3:19:bc:46:86:70:a1:19:e2:7a:78:3d:07:b6: 44:d3:7c:12:ed:de:3e:7d:00:42:a0:cf:c8:0a:09:47:43:c0: 7a:2f:05:62:c4:96:27:28:fa:a8:fc:41:35:74:01:13:44:33: 3f:99:01:da:4b:62:b2:9f:7a:45:38:1e:08:e8:68:32:00:89: 57:bd:d5:96:3b:b7:dc:78:7e:88:1f:2c:aa:9d:c5:35:ee:3e: ac:0e:fe:41:af:fd:ba:9e:53:db:e7:61:ef:ca:6f:cf:d4:84: b0:fb:2d:b6:8a:5b:96:a0:94:de:79:40:df:27:ab:d7:c4:bd: cb:e7:54:f5:0e:bf:91:16:4d:19:4c:26:1a:13:c2:9e:74:93: 42:7b:6f:22 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJZOYAABDF/CDWur3DwC/r1Sml0cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAwNTE3NDQ1NloX DTI1MTAwNDE3NDk1NlowMzExMC8GA1UEAxMoOTYxQTUyQTUyMkRFQjkwMkQ5Q0JE REU5OEFGODJCNDI0NDIyRjU2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJfhGxXokrDWv83G/fk0lk9SJLPsA3JvyntbDFXv4hIOotfzod6FknoXRJXL HNK7b+tI/zkd14VJB6PjUnP5ZkA9keu3ST/L9RE9UOzCDf3w3bqvhhfnA3YpNJnm 6t/9n0/6MU8XlQFkFlc3wGPH7jQVIu1+IMD9Im4Qsg/Ra14APnLra9knF56aemzc P+skHUUqPSIYgr/xlxlWCgrT+JfxHlfVIwHOBBcTgHkR4woriJGFYyJnP8edV3af GvR310P8O9XgPB6CoVUsUH9JYwzyZ8jkpPYbDkkZteDoKSn6TcQciwYkcYf01iW5 doGl7shlhUGujANSsTOY7cw26ZECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJYaUqUi3rkC2cvd6Yr4K0JEIvVmMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZjcyZjAxMi1hNDNhLTRmY2ItODZhOS1hYjNlOTU3M2E4ZDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NmNzJmMDEy LWE0M2EtNGZjYi04NmE5LWFiM2U5NTczYThkOS8wLzk2MUE1MkE1MjJERUI5MDJE OUNCRERFOThBRjgyQjQyNDQyMkY1NjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGXgwDQYJKoZIhvcNAQELBQADggEBAHz8a5W9VUGif4FtopuRENVmOt8CdeTg l9S7deGTZW6mZo7Vpa8FRr2bmi50wKtD8Vrkoon/TRhqNNyxOvKVPeal6mDTETAB sJmg2z3PqvmOd6jYNTeA6AOv+STywFUr09vcWLhbtbbI3MyM0r/tRwazGbxGhnCh GeJ6eD0HtkTTfBLt3j59AEKgz8gKCUdDwHovBWLElico+qj8QTV0ARNEMz+ZAdpL YrKfekU4HgjoaDIAiVe91ZY7t9x4fogfLKqdxTXuPqwO/kGv/bqeU9vnYe/Kb8/U hLD7LbaKW5aglN55QN8nq9fEvcvnVPUOv5EWTRlMJhoTwp50k0J7byI= -----END CERTIFICATE-----Generated at Mon Nov 25 10:49:16 2024 by rpki-client on console-fra.rpki-client.org