$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer File: B8D444C5B3184A4F8C8F199A432242C44E19EACB.cer (raw, json) Hash identifier: 2COz5k/Xc4Begrri7eQD844zIs9pcok4dOa5aQPRoUM= Subject key identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7A7C1F6199BED8DFC12563889551405E255C526B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft caRepository: rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 16 Jul 2024 06:58:43 +0000 Certificate not after: Tue 15 Jul 2025 07:03:43 +0000 Subordinate resources: IP: 160.25.36.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:7c:1f:61:99:be:d8:df:c1:25:63:88:95:51:40:5e:25:5c:52:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 16 06:58:43 2024 GMT Not After : Jul 15 07:03:43 2025 GMT Subject: CN=B8D444C5B3184A4F8C8F199A432242C44E19EACB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:da:9e:7b:a6:ac:3b:9c:d3:73:16:17:5d: c7:d2:fb:b5:5a:6b:dd:b7:a5:7e:0f:ab:31:cf:70: 3b:3e:a5:fa:d9:df:15:aa:7c:94:31:9d:1f:b9:a7: fa:d9:da:eb:00:e7:d9:45:6f:9b:4d:94:bb:d9:ac: d4:cd:26:0c:bf:72:4d:e8:d9:44:1e:9b:7c:e6:76: 9e:f2:98:52:55:43:16:30:bc:c6:d4:d6:6e:00:56: 4f:1f:9d:69:62:61:ac:c0:66:1a:4a:59:3d:86:fe: 23:31:64:03:1d:97:e3:c1:51:1e:b1:6c:01:1a:1b: 29:bb:44:7a:50:dd:0f:c4:d5:7f:2b:1c:47:d1:7a: 25:58:70:01:6d:d9:68:49:b8:97:38:c7:01:a4:e0: 4e:09:87:30:84:ca:c3:40:42:aa:58:06:11:16:14: 56:3b:5d:f9:e3:56:cb:8a:fb:89:3b:66:13:f0:9d: 83:2f:f0:c1:c8:3e:99:61:94:27:ff:b7:a2:1e:9c: 81:b3:9c:ed:44:1b:87:f7:26:66:bd:f3:9d:9a:c8: 48:ad:68:38:0a:19:f7:80:2d:cc:a4:a2:a2:25:93: 26:b0:e3:98:f2:85:c0:66:2e:42:ec:88:b5:4e:00: 45:cd:ab:88:5c:42:23:64:85:77:bd:38:ac:05:0c: ac:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B8:D4:44:C5:B3:18:4A:4F:8C:8F:19:9A:43:22:42:C4:4E:19:EA:CB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7f4b53d8-b2ff-4973-b1ac-6f85faeadbe5/0/B8D444C5B3184A4F8C8F199A432242C44E19EACB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.36.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:5c:48:97:65:bd:05:0a:b5:4d:25:ac:45:24:cd:c9:be:71: 0c:1c:b1:04:88:dc:c8:0d:52:5f:a9:4e:5c:14:6f:7e:b0:6e: 95:89:b0:79:bb:95:4c:92:b0:30:af:ce:17:91:aa:f5:92:5f: a8:2f:2e:46:dd:dd:08:91:24:25:ec:60:87:0e:64:55:10:72: 83:6e:ba:ce:cc:d9:5a:a9:92:74:ab:ff:0f:d1:d9:ce:2e:6b: 13:32:8d:e5:07:93:ed:1f:91:21:e4:52:a6:70:f1:bc:9e:ac: 86:d8:1e:af:fd:e0:94:54:65:94:0d:f2:5e:ff:10:22:16:6f: b9:0c:85:41:a7:a0:10:a5:ab:03:48:9d:5c:62:9b:15:fc:5c: 7a:34:3d:7d:e9:81:26:a0:9d:cb:7b:e7:5c:8f:a9:06:8e:60: b6:7b:ca:ee:f5:78:f1:b0:34:91:52:32:82:de:60:f5:23:22: 08:b1:bf:aa:fb:5f:cf:9f:b5:78:0c:8c:51:79:a5:c4:d7:fc: 40:d9:f6:07:d0:48:00:96:9a:85:ac:ad:41:db:51:4a:0c:96: fe:50:92:fa:ce:ed:bc:99:2f:a3:d8:9b:19:0b:c8:19:0d:dc: 0f:fb:6f:47:ae:a6:38:67:4c:f3:71:d4:fd:75:55:11:c4:80: d2:9a:27:f6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUenwfYZm+2N/BJWOIlVFAXiVcUmswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcxNjA2NTg0M1oX DTI1MDcxNTA3MDM0M1owMzExMC8GA1UEAxMoQjhENDQ0QzVCMzE4NEE0RjhDOEYx OTlBNDMyMjQyQzQ0RTE5RUFDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTP2p57pqw7nNNzFhddx9L7tVpr3belfg+rMc9wOz6l+tnfFap8lDGdH7mn +tna6wDn2UVvm02Uu9ms1M0mDL9yTejZRB6bfOZ2nvKYUlVDFjC8xtTWbgBWTx+d aWJhrMBmGkpZPYb+IzFkAx2X48FRHrFsARobKbtEelDdD8TVfyscR9F6JVhwAW3Z aEm4lzjHAaTgTgmHMITKw0BCqlgGERYUVjtd+eNWy4r7iTtmE/Cdgy/wwcg+mWGU J/+3oh6cgbOc7UQbh/cmZr3znZrISK1oOAoZ94AtzKSioiWTJrDjmPKFwGYuQuyI tU4ARc2riFxCI2SFd704rAUMrAMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLjURMWzGEpPjI8ZmkMiQsROGerLMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZjRiNTNkOC1iMmZmLTQ5NzMtYjFhYy02Zjg1ZmFlYWRiZTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNGI1M2Q4 LWIyZmYtNDk3My1iMWFjLTZmODVmYWVhZGJlNS8wL0I4RDQ0NEM1QjMxODRBNEY4 QzhGMTk5QTQzMjI0MkM0NEUxOUVBQ0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgGSQwDQYJKoZIhvcNAQELBQADggEBAA9cSJdlvQUKtU0lrEUkzcm+cQwcsQSI 3MgNUl+pTlwUb36wbpWJsHm7lUySsDCvzheRqvWSX6gvLkbd3QiRJCXsYIcOZFUQ coNuus7M2VqpknSr/w/R2c4uaxMyjeUHk+0fkSHkUqZw8byerIbYHq/94JRUZZQN 8l7/ECIWb7kMhUGnoBClqwNInVximxX8XHo0PX3pgSagnct751yPqQaOYLZ7yu71 ePGwNJFSMoLeYPUjIgixv6r7X8+ftXgMjFF5pcTX/EDZ9gfQSACWmoWsrUHbUUoM lv5QkvrO7byZL6PYmxkLyBkN3A/7b0eupjhnTPNx1P11VRHEgNKaJ/Y= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org