$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer File: FA30FF8566753253FBBD8786797FE93FB0CF62AD.cer (raw, json) Hash identifier: aQ6bGkgXM1t33mz1+fulOtVo0n5ziS0x2XCvjMoEQU0= Subject key identifier: FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2DEB49350FF5EAEE0366F55546EB1FFC98F2119A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.mft caRepository: rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Jun 2024 14:07:36 +0000 Certificate not after: Tue 24 Jun 2025 14:12:36 +0000 Subordinate resources: IP: 160.22.24.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:eb:49:35:0f:f5:ea:ee:03:66:f5:55:46:eb:1f:fc:98:f2:11:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 25 14:07:36 2024 GMT Not After : Jun 24 14:12:36 2025 GMT Subject: CN=FA30FF8566753253FBBD8786797FE93FB0CF62AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d9:9e:a3:aa:e3:1f:76:66:73:08:df:26:ad: d4:51:b5:b4:e2:f7:6d:eb:2a:55:e8:80:be:59:0c: 6e:d7:15:22:a6:0b:5e:56:0c:32:15:99:9c:d6:43: 97:55:b8:34:bf:ed:13:a5:9c:c7:2f:65:19:76:5f: 9f:87:71:ad:f5:92:b9:f9:22:a7:0e:e2:b5:76:9c: 6e:a9:fc:c9:3b:65:b9:63:d7:11:e4:13:f8:fd:21: c8:e3:5c:d1:cd:c3:35:4c:b7:4a:32:35:0b:1e:58: b5:70:c6:a2:fc:e4:bf:65:78:1c:44:04:b3:c3:f7: 6a:36:5b:d7:8a:a4:93:26:b5:00:84:c7:ef:89:5d: 2e:0e:48:2d:26:43:3b:95:32:01:69:55:53:32:4e: 2c:b1:2f:84:2e:bc:e5:1c:d7:66:69:60:2a:04:75: 35:4d:25:93:1e:a8:9e:75:b7:ad:ab:25:0c:8f:03: 5a:8f:46:12:5c:0a:2f:3b:73:c5:2d:fa:b9:00:36: 90:49:76:2c:a2:20:bd:05:d8:54:cc:90:06:67:b8: 6e:35:c5:1b:5f:c6:ce:54:75:df:06:99:ce:f0:7a: 08:bc:11:e0:bf:b8:b8:3c:12:39:5c:c7:bd:27:f6: 1a:ed:48:1c:fd:93:99:99:4b:0f:44:cc:95:14:9c: a7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FA:30:FF:85:66:75:32:53:FB:BD:87:86:79:7F:E9:3F:B0:CF:62:AD X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/16da0e82-0764-45d3-aed9-fd258e72b6e2/0/FA30FF8566753253FBBD8786797FE93FB0CF62AD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.24.0/23 Signature Algorithm: sha256WithRSAEncryption 33:12:72:b6:73:93:2e:cb:bf:2c:71:6c:a4:fb:ae:19:5c:09: 1d:8b:ed:4c:2b:5f:61:5f:f3:f9:a1:1f:54:8e:c3:b1:5a:27: d6:47:d9:3a:b5:17:2b:28:fe:6e:f6:f4:b1:c6:3c:a7:1f:b9: 56:33:c1:a1:9c:3a:35:ad:12:eb:8d:ea:4c:5e:f8:4d:b0:44: 58:af:ab:bb:ab:4c:f0:a1:23:1e:5e:17:03:36:d2:79:0a:70: 05:c0:f4:91:71:25:5e:ef:5f:cc:ab:43:55:7d:2a:d1:5f:bd: 8e:bb:a9:73:bd:63:05:5a:7f:a1:ae:e7:dd:8a:89:5d:94:3b: 07:72:f0:4b:f3:f7:59:75:83:7e:71:28:87:61:44:2c:8e:d1: d5:20:b4:26:e1:46:30:3f:c3:d6:24:9d:76:a8:95:1f:22:27: e1:2d:22:ef:de:a6:7d:98:78:a5:fd:bb:87:46:e9:59:41:59: 1c:2f:4a:4e:cd:56:b4:a6:07:f6:52:5f:c7:9d:0d:c0:c6:f9: e8:3e:84:2b:52:c0:c2:2b:2f:10:69:87:98:62:d4:fd:16:94: 9a:c6:72:5b:d2:a7:d6:a4:0f:f2:f4:d2:f0:02:fb:48:73:4b: f3:20:cf:7a:c2:c8:19:eb:bf:69:17:b7:af:e3:ed:de:f7:c6: d4:0d:92:99 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULetJNQ/16u4DZvVVRusf/JjyEZowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYyNTE0MDczNloX DTI1MDYyNDE0MTIzNlowMzExMC8GA1UEAxMoRkEzMEZGODU2Njc1MzI1M0ZCQkQ4 Nzg2Nzk3RkU5M0ZCMENGNjJBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7ZnqOq4x92ZnMI3yat1FG1tOL3besqVeiAvlkMbtcVIqYLXlYMMhWZnNZD l1W4NL/tE6Wcxy9lGXZfn4dxrfWSufkipw7itXacbqn8yTtluWPXEeQT+P0hyONc 0c3DNUy3SjI1Cx5YtXDGovzkv2V4HEQEs8P3ajZb14qkkya1AITH74ldLg5ILSZD O5UyAWlVUzJOLLEvhC685RzXZmlgKgR1NU0lkx6onnW3raslDI8DWo9GElwKLztz xS36uQA2kEl2LKIgvQXYVMyQBme4bjXFG1/GzlR13waZzvB6CLwR4L+4uDwSOVzH vSf2Gu1IHP2TmZlLD0TMlRScpxsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPow/4VmdTJT+72Hhnl/6T+wz2KtMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNmRhMGU4Mi0wNzY0LTQ1ZDMtYWVkOS1mZDI1OGU3MmI2ZTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE2ZGEwZTgy LTA3NjQtNDVkMy1hZWQ5LWZkMjU4ZTcyYjZlMi8wL0ZBMzBGRjg1NjY3NTMyNTNG QkJEODc4Njc5N0ZFOTNGQjBDRjYyQUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFhgwDQYJKoZIhvcNAQELBQADggEBADMScrZzky7LvyxxbKT7rhlcCR2L7Uwr X2Ff8/mhH1SOw7FaJ9ZH2Tq1Fyso/m729LHGPKcfuVYzwaGcOjWtEuuN6kxe+E2w RFivq7urTPChIx5eFwM20nkKcAXA9JFxJV7vX8yrQ1V9KtFfvY67qXO9YwVaf6Gu 592KiV2UOwdy8Evz91l1g35xKIdhRCyO0dUgtCbhRjA/w9YknXaolR8iJ+EtIu/e pn2YeKX9u4dG6VlBWRwvSk7NVrSmB/ZSX8edDcDG+eg+hCtSwMIrLxBph5hi1P0W lJrGclvSp9akD/L00vAC+0hzS/Mgz3rCyBnrv2kXt6/j7d73xtQNkpk= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org