$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.cer File: DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.cer (raw, json) Hash identifier: 9TN8/2jPxhQL5WPzp9XHJ0JWHpI9MI2m1PXGKxBu5sk= Subject key identifier: DF:77:06:1C:AE:F3:0A:8D:AF:6B:52:D8:A3:D9:FD:80:F3:72:0F:11 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2CA17BA8F231F7A18B56F8C177902DD2424A8CF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.mft caRepository: rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 27 Jun 2024 07:28:24 +0000 Certificate not after: Thu 26 Jun 2025 07:33:24 +0000 Subordinate resources: IP: 2001:df3:f840::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a1:7b:a8:f2:31:f7:a1:8b:56:f8:c1:77:90:2d:d2:42:4a:8c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 27 07:28:24 2024 GMT Not After : Jun 26 07:33:24 2025 GMT Subject: CN=DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:16:87:c7:2a:04:f4:de:a6:79:6f:47:b9:05: 42:a8:b2:14:55:24:5a:5f:84:14:fb:fd:ab:41:76: e2:75:aa:0b:89:14:e1:77:87:61:58:ca:91:a0:9b: 21:9b:6e:89:37:1c:ae:b7:54:d1:0e:17:cc:70:9e: 7c:2b:bf:db:62:3f:b1:50:57:98:54:0a:61:72:f4: 5f:41:c4:81:d5:0e:2a:06:1f:fc:44:e1:aa:72:10: 31:7f:fe:d0:62:5a:2d:0f:9d:d8:de:54:44:5f:a9: f7:6d:37:af:39:5f:e7:9a:73:c5:0d:e3:88:2a:67: 74:c6:d2:00:5e:f6:a7:93:b1:eb:8e:b0:fe:68:2a: 2b:a4:12:04:4d:fb:02:5b:2d:9c:2c:fc:23:b4:47: d0:36:6d:94:51:1f:6d:e6:57:dd:d7:da:e8:b3:8c: 65:20:5e:c9:8b:65:ef:c9:d5:66:af:7f:d3:0d:6c: 10:6d:29:dd:2f:1d:fc:99:af:c6:de:1d:d1:40:b2: 3b:9d:f8:8e:d7:10:e8:cf:dc:f0:26:ac:6d:20:7b: f5:c2:5a:5e:ab:49:38:5a:db:0f:a3:45:35:12:7d: 7f:9f:fa:17:3a:f1:d9:9c:c2:98:30:cc:0c:bd:20: c4:21:e3:3c:1f:ca:7b:3f:56:8a:19:83:c8:62:13: b3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:77:06:1C:AE:F3:0A:8D:AF:6B:52:D8:A3:D9:FD:80:F3:72:0F:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7a0210b3-cca2-43c5-89f9-5a9086a60703/1/DF77061CAEF30A8DAF6B52D8A3D9FD80F3720F11.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:f840::/48 Signature Algorithm: sha256WithRSAEncryption 1d:5b:8f:6f:2c:40:7d:ec:27:16:88:8a:a4:ed:46:91:3f:c9: 05:86:84:57:5a:ed:85:69:bb:5f:3a:83:3d:f4:8f:07:23:df: 23:f1:16:60:fc:7d:6a:db:bc:99:f3:a4:cc:5c:a9:1a:21:f2: c9:54:49:a2:c3:b5:8e:32:ac:54:ac:ea:9e:b9:df:d6:2c:d4: 5c:22:02:2b:dd:28:89:d6:2d:40:80:44:16:ec:32:fa:8c:f6: f7:95:f4:77:49:5e:a8:6a:5c:c3:cf:b6:5d:7f:26:0d:e2:33: 90:f0:09:2a:c9:7e:b4:a8:22:52:d5:e4:c7:da:63:0d:fc:65: c6:f3:1e:2f:b6:f8:8d:d8:62:45:fd:9f:32:21:ca:0d:ac:a8: 1a:04:db:ff:8d:b1:98:fb:40:98:b1:13:5d:87:6d:92:45:0b: 3e:92:0f:9e:13:0d:d9:70:53:57:de:41:01:01:b6:bb:7b:c8: 8d:22:64:53:03:c7:8e:f7:07:04:a8:2a:b0:19:cd:d3:80:8c: a6:c4:af:a1:e2:ed:0b:93:0f:d1:60:22:b1:e4:d2:bb:2c:ba: 4e:07:53:df:d2:17:69:d9:e6:b4:6e:c2:d4:06:0c:de:4b:51: 3d:e5:35:2b:6a:51:44:38:46:f9:f9:32:9c:5e:f3:1d:39:cb: f7:8e:66:51 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIULKF7qPIx96GLVvjBd5At0kJKjPcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyNzA3MjgyNFoX DTI1MDYyNjA3MzMyNFowMzExMC8GA1UEAxMoREY3NzA2MUNBRUYzMEE4REFGNkI1 MkQ4QTNEOUZEODBGMzcyMEYxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIWh8cqBPTepnlvR7kFQqiyFFUkWl+EFPv9q0F24nWqC4kU4XeHYVjKkaCb IZtuiTccrrdU0Q4XzHCefCu/22I/sVBXmFQKYXL0X0HEgdUOKgYf/EThqnIQMX/+ 0GJaLQ+d2N5URF+p9203rzlf55pzxQ3jiCpndMbSAF72p5Ox646w/mgqK6QSBE37 AlstnCz8I7RH0DZtlFEfbeZX3dfa6LOMZSBeyYtl78nVZq9/0w1sEG0p3S8d/Jmv xt4d0UCyO534jtcQ6M/c8CasbSB79cJaXqtJOFrbD6NFNRJ9f5/6Fzrx2ZzCmDDM DL0gxCHjPB/Kez9WihmDyGITsyECAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN93Bhyu8wqNr2tS2KPZ/YDzcg8RMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YTAyMTBiMy1jY2EyLTQzYzUtODlmOS01YTkwODZhNjA3MDMvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMDIxMGIz LWNjYTItNDNjNS04OWY5LTVhOTA4NmE2MDcwMy8xL0RGNzcwNjFDQUVGMzBBOERB RjZCNTJEOEEzRDlGRDgwRjM3MjBGMTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ3z+EAwDQYJKoZIhvcNAQELBQADggEBAB1bj28sQH3sJxaIiqTtRpE/yQWG hFda7YVpu186gz30jwcj3yPxFmD8fWrbvJnzpMxcqRoh8slUSaLDtY4yrFSs6p65 39Ys1FwiAivdKInWLUCARBbsMvqM9veV9HdJXqhqXMPPtl1/Jg3iM5DwCSrJfrSo IlLV5MfaYw38ZcbzHi+2+I3YYkX9nzIhyg2sqBoE2/+NsZj7QJixE12HbZJFCz6S D54TDdlwU1feQQEBtrt7yI0iZFMDx473BwSoKrAZzdOAjKbEr6Hi7QuTD9FgIrHk 0rssuk4HU9/SF2nZ5rRuwtQGDN5LUT3lNStqUUQ4Rvn5Mpxe8x05y/eOZlE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:31 2024 by rpki-client on console-fra.rpki-client.org