$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer File: D237DEA20D73B3F216B98336BA8307D913DDB257.cer (raw, json) Hash identifier: VWX+ZOc+yRN0aT54e8TcMtmjNgULNH8T5Jz6DW+JEBc= Subject key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4DB38C636455E47FEB55289E5069A508AFB5D1E2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft caRepository: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Jul 2024 01:21:07 +0000 Certificate not after: Fri 04 Jul 2025 01:26:07 +0000 Subordinate resources: IP: 160.20.104.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b3:8c:63:64:55:e4:7f:eb:55:28:9e:50:69:a5:08:af:b5:d1:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 5 01:21:07 2024 GMT Not After : Jul 4 01:26:07 2025 GMT Subject: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9a:be:b4:c1:61:7d:bf:4a:e8:18:24:dc:de: d4:fe:14:0b:fa:7b:93:60:e5:50:28:ce:9f:80:f1: 7f:92:ad:a0:0a:67:90:f4:78:7f:3a:60:82:0a:62: 98:42:87:d0:4b:bb:e5:e5:1e:b4:20:80:7c:ad:82: af:e8:19:a3:f3:72:2d:5d:7b:59:bc:00:87:92:17: 96:04:be:ff:50:61:0a:f6:f5:4c:e5:c6:42:97:1e: 8a:36:08:4b:82:50:cb:0e:2a:d0:df:dc:38:0b:b3: a4:02:be:4e:11:88:14:3f:c6:9e:ba:9e:24:ed:57: 5e:19:3f:f9:ca:94:2a:44:b6:2e:ff:9b:7e:f6:83: ab:ef:4a:12:84:b8:c7:3f:e3:34:57:89:10:43:1f: f6:0c:07:cc:00:d3:7f:0c:3a:90:a6:99:7a:7e:29: 40:7d:9f:0a:63:fc:73:96:9c:3a:8c:79:36:f9:c6: d6:c1:d1:14:d8:7c:79:a6:cc:ff:76:2d:bf:e7:de: 6c:e6:4a:8e:3d:75:b6:90:6b:a7:eb:66:29:50:f7: 4d:91:a0:1f:b3:c3:0d:7c:bf:23:5f:d6:ad:6b:8e: 14:0e:a2:1b:9e:94:fd:76:6e:50:54:e6:2d:2f:14: 3d:3a:05:1d:ab:3b:1c:a7:e5:00:77:06:63:da:9c: ba:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.20.104.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:b3:2b:88:79:55:84:c2:85:e3:6d:d0:e0:07:e6:5e:02:72: 19:1d:38:41:0a:90:3b:11:41:83:f0:f0:6f:be:5b:66:2c:50: 0e:6c:44:a4:30:c4:79:80:23:66:a1:1e:fe:16:cb:55:66:68: ef:dd:54:c0:b4:b7:18:29:a9:48:f0:31:3e:60:92:74:e3:8b: ac:7c:54:d0:7a:74:d5:2b:42:6a:a9:de:61:4b:1c:f5:f6:28: 1c:74:ca:27:ea:3c:21:e6:21:a4:25:22:d4:d7:f3:e9:7e:b4: 70:4f:7d:88:ce:c9:d0:c3:30:0e:fb:ab:db:dc:44:b8:a2:d4: 10:b7:f1:19:d8:79:8d:3a:0e:3f:b0:ab:1c:de:31:de:3b:48: d2:f4:c1:7c:65:f6:34:53:47:26:f4:4e:4c:0b:65:25:72:cf: 8b:b5:2e:a5:4e:62:33:62:57:66:2c:e5:1f:2b:7d:2c:78:a7: 87:30:49:b3:9f:96:e8:e5:2d:38:b5:58:12:85:bf:7b:2e:37: 7e:29:8a:f5:b2:f6:12:23:29:69:24:7a:a6:70:39:e5:77:c3: 19:e7:c1:68:6b:69:e4:a4:0f:07:94:98:4a:2f:f8:da:a3:1e: 70:2c:56:54:95:6d:d3:05:e4:8a:4b:79:eb:af:75:3a:41:a3: 2d:95:3a:6c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUTbOMY2RV5H/rVSieUGmlCK+10eIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcwNTAxMjEwN1oX DTI1MDcwNDAxMjYwN1owMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4 MzM2QkE4MzA3RDkxM0REQjI1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCavrTBYX2/SugYJNze1P4UC/p7k2DlUCjOn4Dxf5KtoApnkPR4fzpgggpi mEKH0Eu75eUetCCAfK2Cr+gZo/NyLV17WbwAh5IXlgS+/1BhCvb1TOXGQpceijYI S4JQyw4q0N/cOAuzpAK+ThGIFD/GnrqeJO1XXhk/+cqUKkS2Lv+bfvaDq+9KEoS4 xz/jNFeJEEMf9gwHzADTfww6kKaZen4pQH2fCmP8c5acOox5NvnG1sHRFNh8eabM /3Ytv+febOZKjj11tpBrp+tmKVD3TZGgH7PDDXy/I1/WrWuOFA6iG56U/XZuUFTm LS8UPToFHas7HKflAHcGY9qcuqUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNI33qINc7PyFrmDNrqDB9kT3bJXMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYjVmYTRh LWJlYTYtNDY0Zi1iNDA5LTExZDlhMzc2MWE2Yy8wL0QyMzdERUEyMEQ3M0IzRjIx NkI5ODMzNkJBODMwN0Q5MTNEREIyNTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFGgwDQYJKoZIhvcNAQELBQADggEBAG6zK4h5VYTCheNt0OAH5l4CchkdOEEK kDsRQYPw8G++W2YsUA5sRKQwxHmAI2ahHv4Wy1VmaO/dVMC0txgpqUjwMT5gknTj i6x8VNB6dNUrQmqp3mFLHPX2KBx0yifqPCHmIaQlItTX8+l+tHBPfYjOydDDMA77 q9vcRLii1BC38RnYeY06Dj+wqxzeMd47SNL0wXxl9jRTRyb0TkwLZSVyz4u1LqVO YjNiV2Ys5R8rfSx4p4cwSbOflujlLTi1WBKFv3suN34pivWy9hIjKWkkeqZwOeV3 wxnnwWhraeSkDweUmEov+NqjHnAsVlSVbdMF5IpLeeuvdTpBoy2VOmw= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org