$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer File: 60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer (raw, json) Hash identifier: MexcuOzyWsjzWhkClxHimEoUs1ThHHuwWLJbqN7Xobk= Subject key identifier: 60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 477656FF7F9C496B21EC8A6B319DB63BD4190ADA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.mft caRepository: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 07 Nov 2024 13:51:15 +0000 Certificate not after: Thu 06 Nov 2025 13:56:15 +0000 Subordinate resources: IP: 103.168.44.0/24 IP: 103.179.84.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:76:56:ff:7f:9c:49:6b:21:ec:8a:6b:31:9d:b6:3b:d4:19:0a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 13:51:15 2024 GMT Not After : Nov 6 13:56:15 2025 GMT Subject: CN=60AA01200D121EEEFE22CEFEE76B55720E8D9439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:90:7a:c3:79:da:dc:b3:53:57:6c:77:2d: 7b:b6:5e:08:ab:f8:71:a1:fd:a0:52:35:31:c0:3d: 65:dc:f8:2b:c9:77:89:5d:d1:1a:23:75:89:e7:69: c2:1c:6d:33:4f:c4:32:66:5d:84:d7:26:fd:be:58: 95:9d:a7:c3:a1:54:83:83:86:cb:59:1e:e6:74:1c: 48:36:a3:d7:ec:5e:06:a2:28:14:d0:38:b6:ca:70: d8:92:08:41:ec:59:5c:b1:d8:72:aa:bb:47:b8:9d: b0:e1:5f:15:4f:ce:b5:a6:eb:5d:50:3f:56:e9:70: 20:5a:80:fe:ac:ec:38:26:ff:af:0e:b4:dd:26:b8: a8:7b:66:5f:c6:98:19:b2:62:ec:cf:6e:e2:a8:cb: 17:a9:71:75:35:17:43:e0:fe:08:d9:bf:e3:2c:4e: c8:7a:17:a8:4d:46:d7:ea:cc:a3:76:9f:bb:7f:42: f7:15:d2:68:b5:86:e1:71:0a:71:7d:f1:b4:57:94: 87:22:09:6c:bf:51:18:d3:1b:68:af:60:a8:87:83: 4c:e7:c5:fa:9b:8e:85:e6:d5:bf:6d:30:33:97:4e: ac:f3:02:85:b7:7f:74:00:93:43:aa:52:0b:8f:24: f8:50:c8:b5:2a:7b:1c:29:8a:86:57:e9:f7:e2:c6: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.44.0/24 103.179.84.0/24 Signature Algorithm: sha256WithRSAEncryption 59:78:09:69:96:d7:bf:12:be:49:a0:ec:61:a4:35:35:2a:bb: ea:e2:74:26:fd:6e:ea:83:7f:68:f6:7a:cf:b3:37:4a:3f:0c: 35:87:d4:f7:5d:69:88:65:1f:49:39:90:41:d4:7c:3a:e2:78: ee:3c:ee:3c:66:d0:b4:18:c4:c3:19:ef:62:80:f0:ab:b6:fe: 19:23:29:38:2f:ce:a1:1f:35:70:94:d1:fb:0c:a1:5a:ea:32: bb:ee:8d:7a:9d:c7:0a:f3:09:1a:c6:65:db:8a:bf:8a:c4:6c: b9:60:bc:6d:97:4d:cd:b1:75:d3:81:55:54:04:7d:2e:90:bb: 31:7d:c2:e4:d9:6d:41:4e:11:92:00:a7:38:76:a2:1b:ec:c6: 9f:54:69:b7:de:38:c0:b9:a5:05:0e:03:df:4e:05:47:22:a8: 38:6f:7b:1c:2f:33:ab:e3:50:eb:67:3d:17:71:97:e7:64:aa: ba:0e:21:cd:28:e6:34:45:22:a1:38:2c:74:1e:9f:76:43:bf: 47:89:05:c8:0e:e6:ba:2c:b0:cc:b5:e4:eb:d0:4e:33:c4:d6: 8e:28:60:5c:19:d9:4a:a4:10:86:38:48:90:82:a4:bc:64:2a: df:30:78:97:6d:78:bb:25:f1:cd:41:56:4b:d0:11:5f:51:55: 5b:5b:ac:97 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUR3ZW/3+cSWsh7IprMZ22O9QZCtowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNzEzNTExNVoX DTI1MTEwNjEzNTYxNVowMzExMC8GA1UEAxMoNjBBQTAxMjAwRDEyMUVFRUZFMjJD RUZFRTc2QjU1NzIwRThEOTQzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnQkHrDedrcs1NXbHcte7ZeCKv4caH9oFI1McA9Zdz4K8l3iV3RGiN1iedp whxtM0/EMmZdhNcm/b5YlZ2nw6FUg4OGy1ke5nQcSDaj1+xeBqIoFNA4tspw2JII QexZXLHYcqq7R7idsOFfFU/OtabrXVA/VulwIFqA/qzsOCb/rw603Sa4qHtmX8aY GbJi7M9u4qjLF6lxdTUXQ+D+CNm/4yxOyHoXqE1G1+rMo3afu39C9xXSaLWG4XEK cX3xtFeUhyIJbL9RGNMbaK9gqIeDTOfF+puOhebVv20wM5dOrPMChbd/dACTQ6pS C48k+FDItSp7HCmKhlfp9+LGd8sCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGCqASANEh7u/iLO/udrVXIOjZQ5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNWYyMGIyZS1hN2E4LTQyZmQtOTJmOC05NDk2MjMzYjJjOWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZjIwYjJl LWE3YTgtNDJmZC05MmY4LTk0OTYyMzNiMmM5ZS8wLzYwQUEwMTIwMEQxMjFFRUVG RTIyQ0VGRUU3NkI1NTcyMEU4RDk0MzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BABnqCwDBABns1QwDQYJKoZIhvcNAQELBQADggEBAFl4CWmW178Svkmg7GGkNTUq u+ridCb9buqDf2j2es+zN0o/DDWH1PddaYhlH0k5kEHUfDrieO487jxm0LQYxMMZ 72KA8Ku2/hkjKTgvzqEfNXCU0fsMoVrqMrvujXqdxwrzCRrGZduKv4rEbLlgvG2X Tc2xddOBVVQEfS6QuzF9wuTZbUFOEZIApzh2ohvsxp9UabfeOMC5pQUOA99OBUci qDhvexwvM6vjUOtnPRdxl+dkqroOIc0o5jRFIqE4LHQen3ZDv0eJBcgO5rossMy1 5OvQTjPE1o4oYFwZ2UqkEIY4SJCCpLxkKt8weJdteLsl8c1BVkvQEV9RVVtbrJc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:42 2024 by rpki-client on console-ams.rpki-client.org