$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/172EF26B46332C842D6DD562C82C8CDBC927C3F5.cer File: 172EF26B46332C842D6DD562C82C8CDBC927C3F5.cer (raw, json) Hash identifier: WngfWzKleVX/8xjMOu/qoo++K4o0h0PwBV3eTYjvtkw= Subject key identifier: 17:2E:F2:6B:46:33:2C:84:2D:6D:D5:62:C8:2C:8C:DB:C9:27:C3:F5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1D70DE0088D1C491F906452BCE4B6CEC702C9D71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0/172EF26B46332C842D6DD562C82C8CDBC927C3F5.mft caRepository: rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 21 May 2024 18:13:03 +0000 Certificate not after: Tue 20 May 2025 18:18:03 +0000 Subordinate resources: IP: 157.20.46.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:70:de:00:88:d1:c4:91:f9:06:45:2b:ce:4b:6c:ec:70:2c:9d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 21 18:13:03 2024 GMT Not After : May 20 18:18:03 2025 GMT Subject: CN=172EF26B46332C842D6DD562C82C8CDBC927C3F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:02:d4:90:e2:d8:27:e9:37:4a:2a:5c:8f: be:5f:3b:d7:34:15:c8:37:c8:91:88:7b:b9:6e:aa: 01:b0:f2:9b:ed:58:b7:37:34:06:35:17:f8:dc:40: fe:2b:ec:4b:29:31:58:32:dc:bd:09:65:b8:de:00: c7:e6:62:0b:9f:dd:4d:0c:89:0e:62:d6:12:89:ec: bb:fd:ac:12:ec:47:c9:0e:55:17:94:ac:04:37:69: 2e:51:9a:e0:bb:8e:0e:fc:70:6c:fe:da:10:b8:2b: b6:15:75:38:44:55:b5:b0:ab:9d:c6:9e:27:f8:57: 47:a8:54:db:c7:b6:f7:13:9e:fd:33:24:d5:3f:dd: 0b:7f:9c:35:d7:35:fa:09:da:25:f2:e0:2a:67:a6: 13:dd:32:b7:f8:2b:aa:8e:db:75:ab:af:ac:b9:e3: 2f:96:a5:78:0e:99:96:4f:f5:b8:be:a1:d0:06:5f: 9b:31:62:69:f1:ad:12:be:21:3a:75:00:0d:cf:60: 42:94:ce:3d:a9:66:56:c4:5f:ec:96:0f:fc:90:18: c1:9c:e7:fe:53:9f:88:bc:00:6b:f3:09:92:c0:60: 44:44:d0:15:08:14:23:5c:20:50:2c:ce:ef:58:33: fd:0b:ac:8d:81:d7:51:56:20:bf:b2:4d:fb:64:ff: de:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 17:2E:F2:6B:46:33:2C:84:2D:6D:D5:62:C8:2C:8C:DB:C9:27:C3:F5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0/172EF26B46332C842D6DD562C82C8CDBC927C3F5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.46.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:8d:94:af:41:11:b0:76:1d:68:1e:5e:09:73:33:fd:18:76: ca:08:ed:29:61:a9:61:15:49:cb:e4:92:3f:60:dd:ba:1b:66: a2:66:ce:5c:3f:dc:59:f5:27:9a:7c:c6:e8:c3:1e:a5:1c:bb: 80:e9:92:03:95:6e:0a:1a:c0:7c:eb:02:d1:89:15:fe:2f:13: 5f:75:c3:9e:47:52:b0:73:94:a6:d0:32:0c:f7:e0:c6:86:25: 1e:2c:6d:02:30:90:47:de:16:fe:a2:3a:ba:89:65:16:0e:3a: b4:57:e5:22:3d:74:64:7b:f5:16:a3:ea:94:52:34:2c:d9:75: 03:98:14:ad:f5:ae:72:05:87:36:c1:08:c8:30:a0:3a:89:d5: 12:8b:eb:05:ea:66:07:c7:a2:1c:a7:cb:cb:63:84:ac:de:0b: 1c:4b:81:a1:59:db:14:2a:84:bd:36:ae:7b:a2:43:55:30:1c: 43:a1:9a:00:0f:62:db:24:f9:1a:d3:c6:fa:6d:e3:52:cc:22: 2b:0b:90:20:0d:9e:fa:d6:22:62:0e:ea:10:2e:58:95:c7:22: 31:e4:57:f0:3b:8e:68:05:6c:ff:9a:9f:a6:7c:0c:a2:5c:22: 89:47:3a:f0:ff:92:54:ed:1f:d6:a9:56:7e:ba:92:ca:e2:d8: 36:f8:9e:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHXDeAIjRxJH5BkUrzkts7HAsnXEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUyMTE4MTMwM1oX DTI1MDUyMDE4MTgwM1owMzExMC8GA1UEAxMoMTcyRUYyNkI0NjMzMkM4NDJENkRE NTYyQzgyQzhDREJDOTI3QzNGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWwAtSQ4tgn6TdKKlyPvl871zQVyDfIkYh7uW6qAbDym+1Ytzc0BjUX+NxA /ivsSykxWDLcvQlluN4Ax+ZiC5/dTQyJDmLWEonsu/2sEuxHyQ5VF5SsBDdpLlGa 4LuODvxwbP7aELgrthV1OERVtbCrncaeJ/hXR6hU28e29xOe/TMk1T/dC3+cNdc1 +gnaJfLgKmemE90yt/grqo7bdauvrLnjL5aleA6Zlk/1uL6h0AZfmzFiafGtEr4h OnUADc9gQpTOPalmVsRf7JYP/JAYwZzn/lOfiLwAa/MJksBgRETQFQgUI1wgUCzO 71gz/QusjYHXUVYgv7JN+2T/3vkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBcu8mtGMyyELW3VYsgsjNvJJ8P1MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jODJiOGY1Ni04ZTgyLTQ2NDQtYjA0OS0yYzVjMmZmYjRkOTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MmI4ZjU2 LThlODItNDY0NC1iMDQ5LTJjNWMyZmZiNGQ5OS8wLzE3MkVGMjZCNDYzMzJDODQy RDZERDU2MkM4MkM4Q0RCQzkyN0MzRjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFC4wDQYJKoZIhvcNAQELBQADggEBAF2NlK9BEbB2HWgeXglzM/0YdsoI7Slh qWEVScvkkj9g3bobZqJmzlw/3Fn1J5p8xujDHqUcu4DpkgOVbgoawHzrAtGJFf4v E191w55HUrBzlKbQMgz34MaGJR4sbQIwkEfeFv6iOrqJZRYOOrRX5SI9dGR79Raj 6pRSNCzZdQOYFK31rnIFhzbBCMgwoDqJ1RKL6wXqZgfHohyny8tjhKzeCxxLgaFZ 2xQqhL02rnuiQ1UwHEOhmgAPYtsk+RrTxvpt41LMIisLkCANnvrWImIO6hAuWJXH IjHkV/A7jmgFbP+an6Z8DKJcIolHOvD/klTtH9apVn66ksri2Db4npY= -----END CERTIFICATE-----Generated at Fri Jun 21 21:25:33 2024 by rpki-client on console-ams.rpki-client.org