$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer File: 0EAF2A0CD22523DB087375417038E4165075CA3E.cer (raw, json) Hash identifier: G82UvBIs+PaCeLMYEqUxWXbe91AjuSryfiEj+uMrUl8= Subject key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 61F6A012D0E947B670D111D98036AAA339F2C01F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft caRepository: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 08 May 2024 07:11:13 +0000 Certificate not after: Wed 07 May 2025 07:16:13 +0000 Subordinate resources: IP: 157.20.44.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f6:a0:12:d0:e9:47:b6:70:d1:11:d9:80:36:aa:a3:39:f2:c0:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 8 07:11:13 2024 GMT Not After : May 7 07:16:13 2025 GMT Subject: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:b9:cb:5a:02:e3:d4:45:a9:67:49:b1:ed: 38:d7:86:a9:50:70:64:32:af:d4:47:52:4b:96:a5: 1d:9d:7d:71:0a:47:77:83:7e:e1:35:0a:55:a4:3c: 91:7d:cd:df:5e:2a:ee:92:2e:10:1a:95:62:42:97: 41:ea:bf:9c:ef:98:53:02:56:3b:ee:32:72:b9:af: fd:47:b9:73:ba:d8:d3:0b:53:f9:25:cf:87:0c:d2: 7e:e7:25:30:f8:cd:44:b4:c3:22:dd:22:58:42:39: fb:55:51:04:45:d8:0b:5d:c6:14:6e:62:bb:8e:ca: 04:87:dd:c7:23:18:71:35:58:7b:34:ce:e5:84:38: 55:de:17:18:14:ee:40:4a:9f:e4:0b:bb:60:8d:b8: 7f:e7:6a:ed:42:87:67:81:0e:80:6c:14:55:7b:a5: 56:fb:d7:57:27:64:fa:93:21:0e:dd:40:d3:6b:b5: 39:76:d4:c1:4b:d1:1c:f1:47:b1:ec:7b:fa:67:ed: 9b:25:6e:c8:6c:09:6c:1b:0e:db:7c:91:b8:3a:40: 52:ce:a9:c4:fb:6b:67:bf:49:5d:24:25:4b:b9:b2: 3f:46:a5:7e:f5:e3:4a:05:8b:19:4d:73:44:95:86: aa:99:8a:bb:e8:8c:2e:1e:53:5d:67:1d:3b:42:12: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.44.0/23 Signature Algorithm: sha256WithRSAEncryption 06:8c:d9:44:6a:b4:9f:4b:52:e1:8b:75:58:b4:8a:97:c5:56: 50:40:68:25:f7:7f:d1:4b:5e:52:9e:23:2b:c7:de:fb:74:9d: c2:8a:93:0c:d0:ef:16:be:36:2d:71:6c:f9:f1:e6:27:37:ae: a2:33:44:ec:d1:3f:3c:04:0b:a1:bd:9c:53:3f:4c:01:26:4d: 96:2b:46:7e:05:cd:8b:c7:35:80:51:37:28:7d:06:a3:2c:86: e3:9d:02:d3:cb:be:78:50:05:f1:f8:3e:22:99:ed:2a:ee:42: 92:98:fb:5a:2f:1e:00:3f:93:b9:c6:0a:bb:a3:a5:3d:ca:dd: 4d:39:56:74:35:f0:97:70:9d:f1:80:6f:b3:cb:84:50:ae:30: 88:07:bb:03:86:92:65:d8:cc:f2:99:86:f0:be:95:49:ba:1c: e9:ef:48:08:59:bd:8f:6d:92:b8:97:c7:04:ba:99:c2:3b:9e: 11:87:f2:62:58:44:37:fc:49:b4:e8:c6:65:df:2f:aa:df:f8: 22:20:a5:0d:12:e8:8e:90:6b:36:4f:a8:3e:0e:56:55:50:d5: 26:36:01:bc:da:7d:e5:7a:db:7d:23:11:de:48:5d:60:2b:46: a5:f1:29:80:cd:de:d3:cb:13:29:08:22:fd:b8:8e:41:bc:1d: fd:0a:05:4f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYfagEtDpR7Zw0RHZgDaqoznywB8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUwODA3MTExM1oX DTI1MDUwNzA3MTYxM1owMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3 NTQxNzAzOEU0MTY1MDc1Q0EzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1EuctaAuPURalnSbHtONeGqVBwZDKv1EdSS5alHZ19cQpHd4N+4TUKVaQ8 kX3N314q7pIuEBqVYkKXQeq/nO+YUwJWO+4ycrmv/Ue5c7rY0wtT+SXPhwzSfucl MPjNRLTDIt0iWEI5+1VRBEXYC13GFG5iu47KBIfdxyMYcTVYezTO5YQ4Vd4XGBTu QEqf5Au7YI24f+dq7UKHZ4EOgGwUVXulVvvXVydk+pMhDt1A02u1OXbUwUvRHPFH sex7+mftmyVuyGwJbBsO23yRuDpAUs6pxPtrZ79JXSQlS7myP0alfvXjSgWLGU1z RJWGqpmKu+iMLh5TXWcdO0ISUP0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA6vKgzSJSPbCHN1QXA45BZQdco+MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3 LTZhOTItNDI5My04ODAwLWI1M2UyYTkxOGFjYS8wLzBFQUYyQTBDRDIyNTIzREIw ODczNzU0MTcwMzhFNDE2NTA3NUNBM0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFCwwDQYJKoZIhvcNAQELBQADggEBAAaM2URqtJ9LUuGLdVi0ipfFVlBAaCX3 f9FLXlKeIyvH3vt0ncKKkwzQ7xa+Ni1xbPnx5ic3rqIzROzRPzwEC6G9nFM/TAEm TZYrRn4FzYvHNYBRNyh9BqMshuOdAtPLvnhQBfH4PiKZ7SruQpKY+1ovHgA/k7nG CrujpT3K3U05VnQ18JdwnfGAb7PLhFCuMIgHuwOGkmXYzPKZhvC+lUm6HOnvSAhZ vY9tkriXxwS6mcI7nhGH8mJYRDf8SbToxmXfL6rf+CIgpQ0S6I6QazZPqD4OVlVQ 1SY2AbzafeV6230jEd5IXWArRqXxKYDN3tPLEykIIv24jkG8Hf0KBU8= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org