$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.cer File: F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.cer (raw, json) Hash identifier: jnl0akBCRt41Ym6HfhWvrEezXFTUPW8OEH/6jjwmhik= Subject key identifier: F5:A4:53:4B:74:D0:CE:EE:CF:5A:05:F0:9B:C9:EF:45:22:FA:32:6C Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1A389FACFDE17D7815E38D1E30C69FCA78F20513 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.mft caRepository: rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 29 Jan 2024 07:30:17 +0000 Certificate not after: Mon 27 Jan 2025 07:35:17 +0000 Subordinate resources: IP: 157.10.252.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 04:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:38:9f:ac:fd:e1:7d:78:15:e3:8d:1e:30:c6:9f:ca:78:f2:05:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 29 07:30:17 2024 GMT Not After : Jan 27 07:35:17 2025 GMT Subject: CN=F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:d6:2a:a8:06:e9:78:5c:a0:53:0a:27:d8: e1:1d:e0:3d:b2:2f:69:f3:c6:9a:41:11:8e:1e:8d: 92:91:dd:2e:b1:3b:e9:f5:83:63:36:17:41:ee:ee: 25:92:00:5e:06:cc:2c:3d:24:86:40:62:47:6d:3e: 56:c2:f9:dc:72:fe:0a:af:6e:76:66:15:c8:9e:ad: 03:3f:4f:c9:e7:86:a0:6f:e5:5f:55:45:5f:25:61: 19:f7:fa:40:b9:21:ae:e6:d5:1b:b8:e4:d5:e6:ba: bc:2a:10:94:2e:63:b0:52:84:f2:81:81:7a:5a:3c: 75:74:4d:81:55:0b:a2:1d:ed:76:df:71:5d:6a:03: 58:fd:01:ef:a4:3a:d4:15:db:bc:ce:9b:f2:68:27: b5:2e:f0:1b:5d:95:e5:ea:ce:d1:3e:31:bf:cb:cb: c5:9f:8d:2b:12:78:08:ac:a9:1e:77:66:26:4d:9d: 4a:f8:1e:b7:bc:9b:13:16:ba:d8:77:ff:dd:3f:32: 27:34:33:95:e8:44:ba:6d:73:9c:f2:99:1b:17:66: 89:ce:eb:88:1f:5a:b5:1a:6c:c4:e9:0d:0a:b2:ae: 04:71:77:4d:42:56:cd:2d:af:e7:0e:dd:7f:b2:5b: b0:9c:0e:da:53:31:67:bc:55:b4:a2:4d:45:7b:0b: 11:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F5:A4:53:4B:74:D0:CE:EE:CF:5A:05:F0:9B:C9:EF:45:22:FA:32:6C X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d970e934-8751-4a61-9950-d4fa480cda41/0/F5A4534B74D0CEEECF5A05F09BC9EF4522FA326C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.252.0/23 Signature Algorithm: sha256WithRSAEncryption 66:bb:ad:a0:56:63:0f:01:3b:58:96:47:ea:da:d5:61:61:15: 27:04:72:12:4b:40:69:76:4a:ed:a5:ec:e0:47:e7:13:12:dd: 5d:2e:cb:36:a4:b9:43:38:d6:c4:25:ec:1a:e9:84:ee:47:a2: 85:cf:5e:50:64:66:c9:f3:d7:d5:19:67:57:85:81:7f:37:63: 8a:73:6c:85:29:da:05:91:04:ad:51:d4:cd:8e:7f:11:ce:2b: d1:f8:79:b7:e2:30:ca:37:9f:67:9b:36:41:fc:2e:14:17:cc: 31:4f:c0:ac:e1:28:4c:db:5a:8b:f8:fd:0a:23:44:7d:08:f6: d4:8f:7e:f6:e3:7c:74:44:a2:03:dd:ec:ea:44:04:e6:fd:60: df:bd:60:6f:55:2a:5e:d8:df:b8:f2:f4:e4:88:46:62:50:0c: 6b:7a:5d:60:9b:79:5b:f6:4e:5e:ff:80:e8:3b:0b:34:cf:ce: 7f:ea:28:00:7a:87:74:ee:1f:ff:cc:72:21:79:d1:59:f6:87: b0:7d:7d:da:42:cc:1a:3c:82:a3:3b:0e:a4:16:5d:07:c4:af: e5:31:5b:83:fa:b9:61:7b:6d:ec:58:34:7d:15:4c:89:d5:6d: 68:64:42:64:cd:a4:b9:00:19:16:fe:1e:87:97:57:bf:64:a2: 06:e9:a9:fc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGjifrP3hfXgV440eMMafynjyBRMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDEyOTA3MzAxN1oX DTI1MDEyNzA3MzUxN1owMzExMC8GA1UEAxMoRjVBNDUzNEI3NEQwQ0VFRUNGNUEw NUYwOUJDOUVGNDUyMkZBMzI2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMmE1iqoBul4XKBTCifY4R3gPbIvafPGmkERjh6NkpHdLrE76fWDYzYXQe7u JZIAXgbMLD0khkBiR20+VsL53HL+Cq9udmYVyJ6tAz9PyeeGoG/lX1VFXyVhGff6 QLkhrubVG7jk1ea6vCoQlC5jsFKE8oGBelo8dXRNgVULoh3tdt9xXWoDWP0B76Q6 1BXbvM6b8mgntS7wG12V5erO0T4xv8vLxZ+NKxJ4CKypHndmJk2dSvget7ybExa6 2Hf/3T8yJzQzlehEum1znPKZGxdmic7riB9atRpsxOkNCrKuBHF3TUJWzS2v5w7d f7JbsJwO2lMxZ7xVtKJNRXsLEeMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPWkU0t00M7uz1oF8JvJ70Ui+jJsMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kOTcwZTkzNC04NzUxLTRhNjEtOTk1MC1kNGZhNDgwY2RhNDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5NzBlOTM0 LTg3NTEtNGE2MS05OTUwLWQ0ZmE0ODBjZGE0MS8wL0Y1QTQ1MzRCNzREMENFRUVD RjVBMDVGMDlCQzlFRjQ1MjJGQTMyNkMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdCvwwDQYJKoZIhvcNAQELBQADggEBAGa7raBWYw8BO1iWR+ra1WFhFScEchJL QGl2Su2l7OBH5xMS3V0uyzakuUM41sQl7BrphO5HooXPXlBkZsnz19UZZ1eFgX83 Y4pzbIUp2gWRBK1R1M2OfxHOK9H4ebfiMMo3n2ebNkH8LhQXzDFPwKzhKEzbWov4 /QojRH0I9tSPfvbjfHREogPd7OpEBOb9YN+9YG9VKl7Y37jy9OSIRmJQDGt6XWCb eVv2Tl7/gOg7CzTPzn/qKAB6h3TuH//MciF50Vn2h7B9fdpCzBo8gqM7DqQWXQfE r+UxW4P6uWF7bexYNH0VTInVbWhkQmTNpLkAGRb+HoeXV79kogbpqfw= -----END CERTIFICATE-----Generated at Wed May 15 03:47:21 2024 by rpki-client on console-fra.rpki-client.org