$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer File: C1732571810C9D4976CD1A47D5584726CF0CC7BD.cer (raw, json) Hash identifier: Ums6Z5szIt4MvmRog3calMUzff2S1e/nzcoYM4ls3KU= Subject key identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 6B709CC95409761609820D5368F5C1D6228F6B0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft caRepository: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 11 Jan 2024 04:31:57 +0000 Certificate not after: Thu 09 Jan 2025 04:36:57 +0000 Subordinate resources: IP: 157.10.88.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:70:9c:c9:54:09:76:16:09:82:0d:53:68:f5:c1:d6:22:8f:6b:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 11 04:31:57 2024 GMT Not After : Jan 9 04:36:57 2025 GMT Subject: CN=C1732571810C9D4976CD1A47D5584726CF0CC7BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9f:4a:3c:4b:9b:b6:5d:bd:1f:f2:19:23:40: 4e:b8:62:b1:59:e5:22:62:53:3e:a1:b3:26:f6:f7: 41:0d:a6:9d:0d:ad:3e:5d:1b:f7:c1:8c:ae:3b:3b: 5d:b1:f9:b1:31:38:10:3e:02:56:99:5e:c4:e9:d3: ca:53:4f:8e:89:d8:91:c2:d0:82:fc:ec:f8:a2:c9: af:8e:b4:7b:9e:e2:7b:f2:b7:90:d9:0e:de:1e:63: b8:67:82:3a:46:74:92:a1:5c:a3:85:62:6d:36:b8: 84:3e:a1:51:7a:e8:2b:1e:3a:e1:cd:d7:30:e6:87: 4c:c2:04:7b:61:a9:11:b9:a5:ef:2d:b2:d4:47:a5: 6d:d3:b9:e1:f0:c2:1a:82:b2:30:65:90:c1:f2:2c: 47:39:05:88:9f:7d:67:ca:08:0d:44:97:01:45:a5: 32:b6:4f:78:17:68:48:1f:62:75:8e:37:f6:19:70: 51:96:54:2f:18:13:89:29:03:0c:d4:7f:81:1c:e7: 5a:32:4c:ea:ea:67:8b:af:60:24:68:89:9f:13:ac: 42:0f:73:77:20:46:c9:8c:3f:1a:c8:fb:be:26:80: 24:79:7f:95:47:13:2a:ff:77:57:bc:73:c0:24:15: bc:9c:eb:ef:58:aa:f5:48:70:1d:1e:ea:6a:9f:f3: 66:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C1:73:25:71:81:0C:9D:49:76:CD:1A:47:D5:58:47:26:CF:0C:C7:BD X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/0/C1732571810C9D4976CD1A47D5584726CF0CC7BD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.88.0/23 Signature Algorithm: sha256WithRSAEncryption 89:f1:da:3e:6a:f1:c6:ab:8f:12:86:15:e7:0f:1e:7d:96:77: 1c:92:f4:a5:5f:63:b1:86:8d:f8:d7:9f:8c:93:8a:8c:ab:78: 37:30:ac:b5:5c:8f:1f:91:66:8d:63:fe:4b:32:c9:1c:25:be: 8e:31:ea:e2:4a:9d:fe:00:e3:8b:a4:e5:b3:48:e5:d6:46:00: b5:b8:3a:6c:5b:f0:f6:ca:22:b9:d4:0b:95:9d:8e:69:3b:2a: e7:d6:3d:be:ab:fe:ea:7f:09:f0:6b:06:83:37:2b:04:de:89: 00:75:d1:94:a8:a8:8a:6b:3a:6c:6a:14:89:47:c9:d0:cd:4f: 07:c9:6b:c3:6c:40:47:80:5f:05:f8:58:69:bc:ad:df:a9:87: 0e:76:8a:8d:e3:5e:06:f9:8d:fd:b4:7c:60:0c:c5:ea:d0:a9: 1a:c6:9c:ee:93:af:9b:1b:c5:f5:be:98:a1:20:e4:66:20:67: a8:6e:29:af:0a:65:db:a4:cf:6a:88:4a:ca:cc:e7:ba:4c:56: b0:29:75:7a:71:d5:e9:fa:d8:84:ed:da:20:49:a7:d4:57:7c: cf:6a:13:dd:6d:5f:ac:65:cf:d0:56:88:dc:1d:e9:97:30:4f: 1f:a6:18:aa:59:fe:1b:5d:a2:6d:00:5c:82:38:9e:c1:1b:e6: 86:83:6e:cf -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUa3CcyVQJdhYJgg1TaPXB1iKPaw8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDExMTA0MzE1N1oX DTI1MDEwOTA0MzY1N1owMzExMC8GA1UEAxMoQzE3MzI1NzE4MTBDOUQ0OTc2Q0Qx QTQ3RDU1ODQ3MjZDRjBDQzdCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKfSjxLm7ZdvR/yGSNATrhisVnlImJTPqGzJvb3QQ2mnQ2tPl0b98GMrjs7 XbH5sTE4ED4CVplexOnTylNPjonYkcLQgvzs+KLJr460e57ie/K3kNkO3h5juGeC OkZ0kqFco4VibTa4hD6hUXroKx464c3XMOaHTMIEe2GpEbml7y2y1EelbdO54fDC GoKyMGWQwfIsRzkFiJ99Z8oIDUSXAUWlMrZPeBdoSB9idY439hlwUZZULxgTiSkD DNR/gRznWjJM6upni69gJGiJnxOsQg9zdyBGyYw/Gsj7viaAJHl/lUcTKv93V7xz wCQVvJzr71iq9UhwHR7qap/zZrkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMFzJXGBDJ1Jds0aR9VYRybPDMe9MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEy LWE3NDItNDUwYy1iMTkwLTUwMGU3NTQ1MjBkZS8wL0MxNzMyNTcxODEwQzlENDk3 NkNEMUE0N0Q1NTg0NzI2Q0YwQ0M3QkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdClgwDQYJKoZIhvcNAQELBQADggEBAInx2j5q8carjxKGFecPHn2WdxyS9KVf Y7GGjfjXn4yTioyreDcwrLVcjx+RZo1j/ksyyRwlvo4x6uJKnf4A44uk5bNI5dZG ALW4Omxb8PbKIrnUC5Wdjmk7KufWPb6r/up/CfBrBoM3KwTeiQB10ZSoqIprOmxq FIlHydDNTwfJa8NsQEeAXwX4WGm8rd+phw52io3jXgb5jf20fGAMxerQqRrGnO6T r5sbxfW+mKEg5GYgZ6huKa8KZdukz2qISsrM57pMVrApdXpx1en62ITt2iBJp9RX fM9qE91tX6xlz9BWiNwd6ZcwTx+mGKpZ/htdom0AXII4nsEb5oaDbs8= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org