$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8920EB690658C013C7B4AAC28EC6B511B39DAE3E.cer File: 8920EB690658C013C7B4AAC28EC6B511B39DAE3E.cer (raw, json) Hash identifier: i4VPPEJPHfYiPFj5WqndJSmiZ/C3nTRGQ/12rNSMrZ0= Subject key identifier: 89:20:EB:69:06:58:C0:13:C7:B4:AA:C2:8E:C6:B5:11:B3:9D:AE:3E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 780D566C0F72DC38D61EFD75C3FD4BC1F98F1DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/1/8920EB690658C013C7B4AAC28EC6B511B39DAE3E.mft caRepository: rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 22 Oct 2024 03:30:15 +0000 Certificate not after: Tue 21 Oct 2025 03:35:15 +0000 Subordinate resources: IP: 2001:df4:6dc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:0d:56:6c:0f:72:dc:38:d6:1e:fd:75:c3:fd:4b:c1:f9:8f:1d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 22 03:30:15 2024 GMT Not After : Oct 21 03:35:15 2025 GMT Subject: CN=8920EB690658C013C7B4AAC28EC6B511B39DAE3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:10:8f:9e:65:4d:e7:1b:38:7b:e8:74:93:07: 98:3b:9e:94:13:be:4f:f6:d9:a4:99:99:09:0f:27: 16:39:82:bb:a3:d4:c4:db:d0:3a:64:1f:ad:5d:ef: 1a:3e:5d:4c:6d:99:49:c2:5a:a3:f9:b9:c7:eb:9d: 23:84:dd:72:17:4d:27:b7:83:cb:92:cf:83:1d:e3: cd:c2:c9:d2:ce:eb:a6:99:d3:cf:91:5d:81:fe:d0: d1:6f:1c:74:e7:5c:ee:9d:ea:e8:36:6a:1c:9a:db: f8:2a:9d:48:bc:be:7d:95:55:a8:4e:49:48:11:54: 30:ba:8c:1e:fc:85:12:97:8a:d2:3a:d2:80:fc:bb: 64:90:99:f3:e2:49:08:d0:c9:c9:10:54:2a:89:60: 01:e5:3c:4c:b8:1c:6d:bc:41:74:06:f6:2e:0f:d0: a4:50:a3:1a:d0:01:f8:d4:16:22:a5:cd:a1:8e:d6: 72:f4:46:bc:78:4a:07:4f:fa:58:57:d2:5f:28:95: 47:3a:90:eb:ff:69:bd:6d:60:40:0a:e4:f1:6f:4d: f0:0c:a6:af:ec:87:4c:21:86:74:ee:34:24:6f:85: 63:e7:83:64:ba:34:4f:b9:de:9b:0a:cd:6e:61:55: 2b:a2:e0:ea:ad:a2:d1:f1:b0:e9:2e:06:be:7a:ca: 49:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:20:EB:69:06:58:C0:13:C7:B4:AA:C2:8E:C6:B5:11:B3:9D:AE:3E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/20396388-2d6b-476e-963d-1cc381374b1c/1/8920EB690658C013C7B4AAC28EC6B511B39DAE3E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:6dc0::/48 Signature Algorithm: sha256WithRSAEncryption 56:ed:15:47:d8:17:53:3d:61:99:54:67:ce:ae:30:18:42:fe: db:aa:d6:a4:e3:b8:2a:a0:ce:d4:e5:c5:b8:d4:b6:a4:03:0a: 68:80:f4:25:af:57:cf:78:19:2d:ad:3a:b8:74:b7:bb:21:27: 7c:14:2f:b3:e8:a8:12:ae:de:a2:ff:7c:dc:b7:74:b7:c4:81: ee:74:c2:31:5d:6b:81:06:a2:31:5a:9b:c3:af:93:ea:88:38: 87:b0:b3:11:05:2f:53:65:0f:39:68:94:b9:11:97:f7:34:36: af:c1:21:69:82:a5:1e:87:ae:10:4b:74:87:34:c0:48:98:6d: 17:a6:5f:0e:66:3b:79:6b:bd:69:a2:50:b2:cb:1f:35:26:e8: cf:9d:4e:8e:3d:76:87:e6:4b:a0:c4:45:87:3c:3e:28:3b:1b: 08:8a:38:44:1e:d3:16:ad:c3:d6:da:15:93:50:bf:af:4b:01: b5:d2:f8:20:25:39:08:8a:ab:ec:51:46:ad:bb:33:94:72:f4: a1:26:5e:c6:8f:48:1d:49:a6:07:53:00:7d:c7:23:bb:10:ae: 53:59:5f:78:d3:6b:8c:77:dc:ef:c8:37:f4:ed:15:d3:ef:fd: f4:fe:20:df:a3:5e:9d:4b:cc:06:35:ba:99:da:4a:36:2d:d0: af:8f:01:74 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUeA1WbA9y3DjWHv11w/1LwfmPHfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyMjAzMzAxNVoX DTI1MTAyMTAzMzUxNVowMzExMC8GA1UEAxMoODkyMEVCNjkwNjU4QzAxM0M3QjRB QUMyOEVDNkI1MTFCMzlEQUUzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcQj55lTecbOHvodJMHmDuelBO+T/bZpJmZCQ8nFjmCu6PUxNvQOmQfrV3v Gj5dTG2ZScJao/m5x+udI4TdchdNJ7eDy5LPgx3jzcLJ0s7rppnTz5Fdgf7Q0W8c dOdc7p3q6DZqHJrb+CqdSLy+fZVVqE5JSBFUMLqMHvyFEpeK0jrSgPy7ZJCZ8+JJ CNDJyRBUKolgAeU8TLgcbbxBdAb2Lg/QpFCjGtAB+NQWIqXNoY7WcvRGvHhKB0/6 WFfSXyiVRzqQ6/9pvW1gQArk8W9N8Aymr+yHTCGGdO40JG+FY+eDZLo0T7nemwrN bmFVK6Lg6q2i0fGw6S4GvnrKSbUCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIkg62kGWMATx7Sqwo7GtRGzna4+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yMDM5NjM4OC0yZDZiLTQ3NmUtOTYzZC0xY2MzODEzNzRiMWMvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwMzk2Mzg4 LTJkNmItNDc2ZS05NjNkLTFjYzM4MTM3NGIxYy8xLzg5MjBFQjY5MDY1OEMwMTND N0I0QUFDMjhFQzZCNTExQjM5REFFM0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ30bcAwDQYJKoZIhvcNAQELBQADggEBAFbtFUfYF1M9YZlUZ86uMBhC/tuq 1qTjuCqgztTlxbjUtqQDCmiA9CWvV894GS2tOrh0t7shJ3wUL7PoqBKu3qL/fNy3 dLfEge50wjFda4EGojFam8Ovk+qIOIewsxEFL1NlDzlolLkRl/c0Nq/BIWmCpR6H rhBLdIc0wEiYbRemXw5mO3lrvWmiULLLHzUm6M+dTo49dofmS6DERYc8Pig7GwiK OEQe0xatw9baFZNQv69LAbXS+CAlOQiKq+xRRq27M5Ry9KEmXsaPSB1JpgdTAH3H I7sQrlNZX3jTa4x33O/IN/TtFdPv/fT+IN+jXp1LzAY1upnaSjYt0K+PAXQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:44 2024 by rpki-client on console-ams.rpki-client.org