$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/145856688D58EEB673E59CC02D21114CF78E87E5.cer File: 145856688D58EEB673E59CC02D21114CF78E87E5.cer (raw, json) Hash identifier: 58o8OLoCgwpT+k5TOLDDwaJ/AlaZKBc9HLcNl8c0Iko= Subject key identifier: 14:58:56:68:8D:58:EE:B6:73:E5:9C:C0:2D:21:11:4C:F7:8E:87:E5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0B125F05364D0DF80792595F7350E2DED96D9AF1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0/145856688D58EEB673E59CC02D21114CF78E87E5.mft caRepository: rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 23 Sep 2024 07:38:52 +0000 Certificate not after: Mon 22 Sep 2025 07:43:52 +0000 Subordinate resources: IP: 157.66.58.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:12:5f:05:36:4d:0d:f8:07:92:59:5f:73:50:e2:de:d9:6d:9a:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Sep 23 07:38:52 2024 GMT Not After : Sep 22 07:43:52 2025 GMT Subject: CN=145856688D58EEB673E59CC02D21114CF78E87E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d6:16:cd:8b:d7:1a:01:f1:21:05:93:72:73: d3:41:3d:07:37:96:28:10:07:5c:5a:e0:af:8f:3b: 3a:4c:7a:fa:b7:f3:22:99:de:3b:de:d8:d5:91:20: b5:b2:9e:10:31:43:e3:72:63:e6:1b:34:d1:78:f5: ea:58:fd:d2:87:a4:c8:25:c0:fd:dd:13:1f:96:e2: 7b:16:ce:74:05:24:e5:4b:91:21:3e:ed:20:89:67: 29:3a:4b:87:2f:a5:51:02:b0:0d:2d:80:6b:e1:cc: a9:5c:dd:cb:a7:2d:f9:6d:5e:78:fc:8e:96:88:0a: cc:f2:37:f7:e5:19:1e:23:72:f1:bb:c4:82:ce:66: f5:a7:44:fe:58:21:9c:25:cf:fa:a1:3b:63:ef:5c: 7f:79:dc:e0:6c:e9:10:47:4a:54:d7:38:51:12:e5: 97:93:a1:2e:43:19:c5:20:88:ba:f3:e4:52:6a:bf: 9d:96:01:11:b2:7c:ab:1d:b7:e0:34:a5:77:f7:44: af:34:ac:45:e3:f7:02:39:e7:12:ee:74:7c:1e:d0: b2:ed:e3:e1:88:3a:99:1e:d9:fb:83:21:af:0d:12: 16:2e:e5:14:89:d3:6a:17:d5:ad:36:31:c7:2c:3c: 4a:af:fd:a8:d6:97:c5:0f:cd:3b:a7:25:a7:52:e3: 3d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 14:58:56:68:8D:58:EE:B6:73:E5:9C:C0:2D:21:11:4C:F7:8E:87:E5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/46b05f36-e174-4dad-bc2a-08926c5dd046/0/145856688D58EEB673E59CC02D21114CF78E87E5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.58.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:c5:51:e8:2e:01:0f:b1:b0:8c:a9:ea:4a:0a:3a:79:f8:80: 14:27:b5:2f:d3:e4:ca:de:58:3e:6f:3a:59:9e:c6:22:b3:6b: 7d:c3:fc:ac:3d:41:e8:01:be:63:62:dd:4b:54:80:f0:d6:b0: fc:ed:2d:48:05:03:81:94:29:71:85:f9:a8:f7:d4:26:cc:99: 39:72:c0:1b:0b:90:e9:35:64:99:5f:91:bf:68:14:62:fc:04: a5:d4:dd:b6:0c:de:dd:83:8c:36:9e:02:45:a6:3f:f6:0a:86: a8:7d:0f:36:ee:23:dc:01:9b:33:77:9f:b9:67:c3:30:83:2f: eb:db:49:64:14:8a:ef:86:13:17:19:be:fd:53:a7:74:35:e5: 27:0a:0a:46:41:da:e4:7c:fa:fa:f8:b8:33:b8:ed:53:06:e5: 78:4e:01:c4:e0:cd:34:85:65:c7:b4:af:7a:51:c2:99:fc:cf: aa:e8:b8:28:ba:17:0f:c2:29:f3:ba:d5:f1:de:4e:f7:c6:7c: 15:a9:92:8d:e1:af:3c:4f:b3:cc:ae:3e:ef:39:83:40:5f:4e: b9:5b:7d:f2:47:0b:ee:8a:d5:45:85:6a:2f:4e:c9:23:d1:ca: 79:b4:3f:56:40:77:7c:6b:14:81:dd:eb:23:1f:47:37:ec:b3: e6:29:7d:eb -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCxJfBTZNDfgHkllfc1Di3tltmvEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDkyMzA3Mzg1MloX DTI1MDkyMjA3NDM1MlowMzExMC8GA1UEAxMoMTQ1ODU2Njg4RDU4RUVCNjczRTU5 Q0MwMkQyMTExNENGNzhFODdFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7WFs2L1xoB8SEFk3Jz00E9BzeWKBAHXFrgr487Okx6+rfzIpneO97Y1ZEg tbKeEDFD43Jj5hs00Xj16lj90oekyCXA/d0TH5biexbOdAUk5UuRIT7tIIlnKTpL hy+lUQKwDS2Aa+HMqVzdy6ct+W1eePyOlogKzPI39+UZHiNy8bvEgs5m9adE/lgh nCXP+qE7Y+9cf3nc4GzpEEdKVNc4URLll5OhLkMZxSCIuvPkUmq/nZYBEbJ8qx23 4DSld/dErzSsReP3AjnnEu50fB7Qsu3j4Yg6mR7Z+4Mhrw0SFi7lFInTahfVrTYx xyw8Sq/9qNaXxQ/NO6clp1LjPQsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBRYVmiNWO62c+WcwC0hEUz3joflMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NmIwNWYzNi1lMTc0LTRkYWQtYmMyYS0wODkyNmM1ZGQwNDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ2YjA1ZjM2 LWUxNzQtNGRhZC1iYzJhLTA4OTI2YzVkZDA0Ni8wLzE0NTg1NjY4OEQ1OEVFQjY3 M0U1OUNDMDJEMjExMTRDRjc4RTg3RTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQjowDQYJKoZIhvcNAQELBQADggEBADzFUeguAQ+xsIyp6koKOnn4gBQntS/T 5MreWD5vOlmexiKza33D/Kw9QegBvmNi3UtUgPDWsPztLUgFA4GUKXGF+aj31CbM mTlywBsLkOk1ZJlfkb9oFGL8BKXU3bYM3t2DjDaeAkWmP/YKhqh9DzbuI9wBmzN3 n7lnwzCDL+vbSWQUiu+GExcZvv1Tp3Q15ScKCkZB2uR8+vr4uDO47VMG5XhOAcTg zTSFZce0r3pRwpn8z6rouCi6Fw/CKfO61fHeTvfGfBWpko3hrzxPs8yuPu85g0Bf TrlbffJHC+6K1UWFai9OySPRynm0P1ZAd3xrFIHd6yMfRzfss+Ypfes= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:50 2024 by rpki-client on console-ams.rpki-client.org