$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/065943D1744CF4841A6D3D50944D2A4DB537A128.cer File: 065943D1744CF4841A6D3D50944D2A4DB537A128.cer (raw, json) Hash identifier: nle8wydmPah9NBUBcQIi2fAe8AdjqrLWbJy8AS7FUeQ= Subject key identifier: 06:59:43:D1:74:4C:F4:84:1A:6D:3D:50:94:4D:2A:4D:B5:37:A1:28 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7515ED67897A1A67329C1B647208EE77B33448DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0/065943D1744CF4841A6D3D50944D2A4DB537A128.mft caRepository: rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 19 Feb 2024 02:08:16 +0000 Certificate not after: Mon 17 Feb 2025 02:13:16 +0000 Subordinate resources: IP: 157.15.77.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:15:ed:67:89:7a:1a:67:32:9c:1b:64:72:08:ee:77:b3:34:48:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 19 02:08:16 2024 GMT Not After : Feb 17 02:13:16 2025 GMT Subject: CN=065943D1744CF4841A6D3D50944D2A4DB537A128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f1:00:03:2e:c8:b4:2b:07:69:63:4b:02:cf: 68:09:bc:59:1e:6b:57:78:5e:c2:0d:52:f5:8a:ee: d8:e9:45:94:73:68:42:f8:ca:15:be:af:3c:1a:ff: 39:60:de:f3:3f:ea:1d:cd:d7:46:80:e5:70:03:9d: 65:ca:10:77:10:a8:ec:a1:ac:29:2f:f9:80:9a:93: 34:f6:eb:c3:45:e8:38:48:53:e4:9a:ec:dc:8d:94: 5e:6b:41:91:69:ac:31:1a:0f:b9:28:64:42:b6:3f: 65:a8:8b:36:ee:f1:18:9a:13:ad:5e:70:20:01:6e: 9f:6e:a6:5b:ac:ce:3b:b5:9e:a7:e4:9d:3f:d2:65: 37:b6:a7:e6:c6:63:0c:b8:e1:27:a0:74:e7:23:e5: 79:67:d9:01:be:04:c0:d7:a1:eb:9d:59:e8:9d:9b: 9c:ed:c5:4a:d9:ba:bf:65:8a:e4:c4:81:04:f7:45: f3:95:28:47:96:f6:03:18:a5:0e:8c:98:38:a7:87: 22:c4:98:3c:1a:ff:a4:c1:41:d2:41:9e:4a:de:d5: d8:bb:a6:9b:d4:68:38:a6:29:d3:21:c8:aa:ab:ac: f5:71:62:dc:97:77:e6:d5:ce:c3:a7:b0:95:74:5c: fc:b5:1f:61:4f:ba:d0:4c:0b:ac:9c:80:85:9d:97: fc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 06:59:43:D1:74:4C:F4:84:1A:6D:3D:50:94:4D:2A:4D:B5:37:A1:28 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/757e11dc-ff71-4ed7-a695-834922e0e361/0/065943D1744CF4841A6D3D50944D2A4DB537A128.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.77.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:18:f1:2c:0f:d7:13:5b:d8:93:ac:8f:ef:57:78:6d:0c:9d: 4e:01:84:20:d9:ca:30:d2:c8:93:31:e7:79:32:eb:2f:f8:e9: 65:3f:4b:27:4d:40:9a:93:50:96:67:0d:a5:4b:17:59:2c:61: d7:43:63:8e:d0:98:3b:ac:25:a6:06:39:e8:61:2d:da:0c:c6: 64:53:2b:46:6f:85:a9:ab:9c:48:86:97:1f:da:19:da:0e:51: 79:ac:5c:d0:f2:e3:73:8d:c2:28:a6:0a:a8:b2:e4:92:d7:b5: fa:10:d1:8c:3f:d2:c7:6a:d9:52:95:45:08:2e:9a:f7:d8:f3: c2:2f:69:a1:2a:2a:01:da:41:1f:35:35:ca:2f:ca:a2:1e:08: f0:af:24:ee:5f:07:90:8e:c2:5a:17:f7:3a:f0:02:14:c1:15: 8e:08:a1:c6:7c:c9:15:e4:81:af:98:7a:60:85:f8:7b:91:2d: cc:08:67:bb:09:eb:bb:d9:74:2e:8b:d0:e2:5a:fc:10:4f:58: ad:73:f1:61:68:c3:3a:59:05:77:d4:70:c6:85:e4:1a:08:c0: 51:63:3b:fe:d6:4f:80:d9:f7:54:39:4d:81:e4:56:76:ae:4e: cd:6f:96:67:a8:e5:90:b6:49:7c:98:8e:73:cb:fa:f7:7a:3c: 10:40:41:71 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdRXtZ4l6GmcynBtkcgjud7M0SNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxOTAyMDgxNloX DTI1MDIxNzAyMTMxNlowMzExMC8GA1UEAxMoMDY1OTQzRDE3NDRDRjQ4NDFBNkQz RDUwOTQ0RDJBNERCNTM3QTEyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7xAAMuyLQrB2ljSwLPaAm8WR5rV3hewg1S9Yru2OlFlHNoQvjKFb6vPBr/ OWDe8z/qHc3XRoDlcAOdZcoQdxCo7KGsKS/5gJqTNPbrw0XoOEhT5Jrs3I2UXmtB kWmsMRoPuShkQrY/ZaiLNu7xGJoTrV5wIAFun26mW6zOO7Wep+SdP9JlN7an5sZj DLjhJ6B05yPleWfZAb4EwNeh651Z6J2bnO3FStm6v2WK5MSBBPdF85UoR5b2Axil DoyYOKeHIsSYPBr/pMFB0kGeSt7V2Lumm9RoOKYp0yHIqqus9XFi3Jd35tXOw6ew lXRc/LUfYU+60EwLrJyAhZ2X/DkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAZZQ9F0TPSEGm09UJRNKk21N6EoMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NTdlMTFkYy1mZjcxLTRlZDctYTY5NS04MzQ5MjJlMGUzNjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc1N2UxMWRj LWZmNzEtNGVkNy1hNjk1LTgzNDkyMmUwZTM2MS8wLzA2NTk0M0QxNzQ0Q0Y0ODQx QTZEM0Q1MDk0NEQyQTREQjUzN0ExMjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdD00wDQYJKoZIhvcNAQELBQADggEBAH8Y8SwP1xNb2JOsj+9XeG0MnU4BhCDZ yjDSyJMx53ky6y/46WU/SydNQJqTUJZnDaVLF1ksYddDY47QmDusJaYGOehhLdoM xmRTK0ZvhamrnEiGlx/aGdoOUXmsXNDy43ONwiimCqiy5JLXtfoQ0Yw/0sdq2VKV RQgumvfY88IvaaEqKgHaQR81NcovyqIeCPCvJO5fB5COwloX9zrwAhTBFY4IocZ8 yRXkga+YemCF+HuRLcwIZ7sJ67vZdC6L0OJa/BBPWK1z8WFowzpZBXfUcMaF5BoI wFFjO/7WT4DZ91Q5TYHkVnauTs1vlmeo5ZC2SXyYjnPL+vd6PBBAQXE= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org