$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer File: 60AA01200D121EEEFE22CEFEE76B55720E8D9439.cer (raw, json) Hash identifier: zqqI0V2UF/169/JHSmrFRF9q48Mk1WyUOGpQNTUuifM= Subject key identifier: 60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6ADAA188B1FBCC96AD40455063419AE8F47D9219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.mft caRepository: rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 07 Dec 2023 10:00:17 +0000 Certificate not after: Thu 05 Dec 2024 10:05:17 +0000 Subordinate resources: IP: 103.168.44.0/24 IP: 103.179.84.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:da:a1:88:b1:fb:cc:96:ad:40:45:50:63:41:9a:e8:f4:7d:92:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 7 10:00:17 2023 GMT Not After : Dec 5 10:05:17 2024 GMT Subject: CN=60AA01200D121EEEFE22CEFEE76B55720E8D9439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d0:90:7a:c3:79:da:dc:b3:53:57:6c:77:2d: 7b:b6:5e:08:ab:f8:71:a1:fd:a0:52:35:31:c0:3d: 65:dc:f8:2b:c9:77:89:5d:d1:1a:23:75:89:e7:69: c2:1c:6d:33:4f:c4:32:66:5d:84:d7:26:fd:be:58: 95:9d:a7:c3:a1:54:83:83:86:cb:59:1e:e6:74:1c: 48:36:a3:d7:ec:5e:06:a2:28:14:d0:38:b6:ca:70: d8:92:08:41:ec:59:5c:b1:d8:72:aa:bb:47:b8:9d: b0:e1:5f:15:4f:ce:b5:a6:eb:5d:50:3f:56:e9:70: 20:5a:80:fe:ac:ec:38:26:ff:af:0e:b4:dd:26:b8: a8:7b:66:5f:c6:98:19:b2:62:ec:cf:6e:e2:a8:cb: 17:a9:71:75:35:17:43:e0:fe:08:d9:bf:e3:2c:4e: c8:7a:17:a8:4d:46:d7:ea:cc:a3:76:9f:bb:7f:42: f7:15:d2:68:b5:86:e1:71:0a:71:7d:f1:b4:57:94: 87:22:09:6c:bf:51:18:d3:1b:68:af:60:a8:87:83: 4c:e7:c5:fa:9b:8e:85:e6:d5:bf:6d:30:33:97:4e: ac:f3:02:85:b7:7f:74:00:93:43:aa:52:0b:8f:24: f8:50:c8:b5:2a:7b:1c:29:8a:86:57:e9:f7:e2:c6: 77:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 60:AA:01:20:0D:12:1E:EE:FE:22:CE:FE:E7:6B:55:72:0E:8D:94:39 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05f20b2e-a7a8-42fd-92f8-9496233b2c9e/0/60AA01200D121EEEFE22CEFEE76B55720E8D9439.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.44.0/24 103.179.84.0/24 Signature Algorithm: sha256WithRSAEncryption 55:95:ba:c6:2b:48:d3:e3:f1:c4:63:6e:4f:42:47:d1:83:f2: 84:2d:7a:be:24:7e:55:82:df:73:29:3a:84:f4:f2:16:d2:49: ba:e5:d3:ee:ae:ad:4f:2e:a0:eb:9d:cf:f9:60:2f:5b:75:ac: 9d:f5:ab:7f:93:8f:c8:3e:38:a0:ef:63:b9:ac:19:86:c3:40: 7d:2c:58:7c:62:1c:3a:17:a3:b0:3a:b2:2c:fa:78:c3:66:00: 7b:92:50:b3:3b:8a:7b:7c:91:49:83:a0:d1:30:27:c7:67:fd: 95:66:07:1a:6b:21:8a:66:69:97:a1:4e:56:12:e8:ea:9f:f5: c1:d0:e2:ef:ab:00:52:f6:1d:97:21:cb:e2:c6:11:51:98:59: 47:a8:e5:12:db:dd:4f:87:ee:eb:5a:73:fa:eb:d4:9e:51:22: 84:f2:40:5e:c7:cb:39:26:33:32:fa:b2:c2:0c:3f:d5:5e:fd: 6a:25:f7:2b:55:8e:14:8d:49:53:d1:a4:ce:a8:fd:51:40:d8: 71:52:83:4a:f2:79:c8:de:b1:7b:7c:14:7c:8c:a2:a6:78:22: e5:35:ae:b1:d8:0f:bd:b2:f9:32:2f:bf:34:f5:15:87:a7:77: fc:56:4b:38:ee:8f:8c:0f:f5:d3:33:10:e3:15:39:08:09:09: 9b:0f:a1:ae -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUatqhiLH7zJatQEVQY0Ga6PR9khkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwNzEwMDAxN1oX DTI0MTIwNTEwMDUxN1owMzExMC8GA1UEAxMoNjBBQTAxMjAwRDEyMUVFRUZFMjJD RUZFRTc2QjU1NzIwRThEOTQzOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnQkHrDedrcs1NXbHcte7ZeCKv4caH9oFI1McA9Zdz4K8l3iV3RGiN1iedp whxtM0/EMmZdhNcm/b5YlZ2nw6FUg4OGy1ke5nQcSDaj1+xeBqIoFNA4tspw2JII QexZXLHYcqq7R7idsOFfFU/OtabrXVA/VulwIFqA/qzsOCb/rw603Sa4qHtmX8aY GbJi7M9u4qjLF6lxdTUXQ+D+CNm/4yxOyHoXqE1G1+rMo3afu39C9xXSaLWG4XEK cX3xtFeUhyIJbL9RGNMbaK9gqIeDTOfF+puOhebVv20wM5dOrPMChbd/dACTQ6pS C48k+FDItSp7HCmKhlfp9+LGd8sCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGCqASANEh7u/iLO/udrVXIOjZQ5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNWYyMGIyZS1hN2E4LTQyZmQtOTJmOC05NDk2MjMzYjJjOWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZjIwYjJl LWE3YTgtNDJmZC05MmY4LTk0OTYyMzNiMmM5ZS8wLzYwQUEwMTIwMEQxMjFFRUVG RTIyQ0VGRUU3NkI1NTcyMEU4RDk0MzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BABnqCwDBABns1QwDQYJKoZIhvcNAQELBQADggEBAFWVusYrSNPj8cRjbk9CR9GD 8oQter4kflWC33MpOoT08hbSSbrl0+6urU8uoOudz/lgL1t1rJ31q3+Tj8g+OKDv Y7msGYbDQH0sWHxiHDoXo7A6siz6eMNmAHuSULM7int8kUmDoNEwJ8dn/ZVmBxpr IYpmaZehTlYS6Oqf9cHQ4u+rAFL2HZchy+LGEVGYWUeo5RLb3U+H7utac/rr1J5R IoTyQF7HyzkmMzL6ssIMP9Ve/Wol9ytVjhSNSVPRpM6o/VFA2HFSg0ryecjesXt8 FHyMoqZ4IuU1rrHYD72y+TIvvzT1FYend/xWSzjuj4wP9dMzEOMVOQgJCZsPoa4= -----END CERTIFICATE-----Generated at Wed May 8 09:50:30 2024 by rpki-client on console-fra.rpki-client.org