$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/3008AF948C4742A525201F3FDA7EFB1800D52D64.cer File: 3008AF948C4742A525201F3FDA7EFB1800D52D64.cer (raw, json) Hash identifier: oO9vtv1Mjlqo9VqGnqiRA0G1S8/qwD/8g+nlHwgq3HQ= Subject key identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7FB64BC3908B662A1037808709ABBDA52E1BE3FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft caRepository: rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 16 Feb 2024 07:11:47 +0000 Certificate not after: Fri 14 Feb 2025 07:16:47 +0000 Subordinate resources: IP: 157.15.46.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b6:4b:c3:90:8b:66:2a:10:37:80:87:09:ab:bd:a5:2e:1b:e3:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 16 07:11:47 2024 GMT Not After : Feb 14 07:16:47 2025 GMT Subject: CN=3008AF948C4742A525201F3FDA7EFB1800D52D64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ea:d5:ba:c8:eb:dd:49:9f:ac:bb:ca:37:78: 04:1f:e3:fb:f6:d9:d1:d2:75:2e:03:d4:3b:7c:31: 3b:5f:96:9b:d4:3e:a6:17:6f:f3:0f:40:7d:85:11: 17:75:dd:36:e5:58:bb:2c:1a:b6:1c:92:bb:ad:66: a8:95:65:bf:ae:19:24:75:e5:0e:0b:1f:85:d3:5a: 6a:fd:e9:86:df:06:0e:f2:67:e3:08:ff:30:c9:eb: 2d:69:b6:58:54:ba:b8:88:ed:df:22:b7:86:08:c0: a6:3a:a6:82:30:f3:10:12:4c:0a:9e:b0:b2:2a:c2: 0e:63:81:12:92:fc:a8:d4:ac:fe:bc:5f:3c:f4:79: 9e:32:de:96:70:2c:50:60:e2:09:1a:60:dd:93:81: 10:c5:72:6b:23:0d:ce:54:0f:3d:10:14:d0:f2:28: 32:38:6d:94:fd:ae:ef:86:e8:e8:3c:85:d1:ea:f5: d9:05:83:cb:76:34:4b:89:0e:3d:62:bb:47:d3:2d: 02:b7:ac:ff:63:4d:d6:0e:c1:69:de:c6:8c:1a:57: 39:86:77:02:f7:87:65:7a:47:21:38:e8:0e:35:65: 56:5d:89:2b:d8:32:63:b7:f0:5e:89:da:83:77:81: 4e:1a:09:3f:10:db:20:13:cf:12:af:6e:7f:b9:6e: 86:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 30:08:AF:94:8C:47:42:A5:25:20:1F:3F:DA:7E:FB:18:00:D5:2D:64 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dc34eed9-187e-4f46-a5bb-0ea8f669ae90/0/3008AF948C4742A525201F3FDA7EFB1800D52D64.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.46.0/23 Signature Algorithm: sha256WithRSAEncryption 04:55:07:56:36:c3:44:da:04:21:ec:33:87:48:07:00:32:93: 98:4e:4a:36:be:20:64:90:76:e1:ca:43:48:c8:a4:b7:c6:5a: 02:5d:95:ca:bf:0d:03:75:76:58:a5:0f:2c:3a:27:5e:4f:67: 01:f0:42:30:4e:8b:b1:7e:82:7f:e4:c8:01:58:c4:73:cd:fa: cf:98:6e:f6:e9:7e:ae:37:ad:12:60:2c:20:c0:5b:1b:7f:ac: 7b:86:68:b3:aa:a4:6a:0b:0a:4c:43:92:cc:a9:6a:17:12:92: d8:9f:3a:0b:0f:14:e5:57:8c:c1:f1:81:0f:cb:7c:96:be:fc: 13:01:e7:7d:12:a1:22:2a:1c:25:49:14:a6:82:37:99:39:73: 9f:46:a7:f7:19:d0:40:9b:d9:fb:b8:b1:1f:ff:31:30:d9:85: 3f:93:0e:97:f9:84:49:97:ee:d6:bd:5a:d5:bc:63:c9:20:76: cd:77:d0:ea:e8:ef:78:57:ce:80:9b:2c:28:2c:a3:f5:6d:ca: d6:54:5f:b8:61:ee:08:73:fa:d5:f6:59:30:24:04:8d:23:b7: dd:09:ec:69:7d:2f:97:62:c6:14:2b:bd:1b:7d:81:26:5b:9c: 09:60:2c:ad:21:27:64:13:6d:e3:2b:38:eb:9b:c0:47:09:15: 68:85:6a:d1 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUf7ZLw5CLZioQN4CHCau9pS4b4/8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxNjA3MTE0N1oX DTI1MDIxNDA3MTY0N1owMzExMC8GA1UEAxMoMzAwOEFGOTQ4QzQ3NDJBNTI1MjAx RjNGREE3RUZCMTgwMEQ1MkQ2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/q1brI691Jn6y7yjd4BB/j+/bZ0dJ1LgPUO3wxO1+Wm9Q+phdv8w9AfYUR F3XdNuVYuywathySu61mqJVlv64ZJHXlDgsfhdNaav3pht8GDvJn4wj/MMnrLWm2 WFS6uIjt3yK3hgjApjqmgjDzEBJMCp6wsirCDmOBEpL8qNSs/rxfPPR5njLelnAs UGDiCRpg3ZOBEMVyayMNzlQPPRAU0PIoMjhtlP2u74bo6DyF0er12QWDy3Y0S4kO PWK7R9MtAres/2NN1g7Bad7GjBpXOYZ3AveHZXpHITjoDjVlVl2JK9gyY7fwXona g3eBThoJPxDbIBPPEq9uf7luhrECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDAIr5SMR0KlJSAfP9p++xgA1S1kMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYzM0ZWVkOS0xODdlLTRmNDYtYTViYi0wZWE4ZjY2OWFlOTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjMzRlZWQ5 LTE4N2UtNGY0Ni1hNWJiLTBlYThmNjY5YWU5MC8wLzMwMDhBRjk0OEM0NzQyQTUy NTIwMUYzRkRBN0VGQjE4MDBENTJENjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdDy4wDQYJKoZIhvcNAQELBQADggEBAARVB1Y2w0TaBCHsM4dIBwAyk5hOSja+ IGSQduHKQ0jIpLfGWgJdlcq/DQN1dlilDyw6J15PZwHwQjBOi7F+gn/kyAFYxHPN +s+Ybvbpfq43rRJgLCDAWxt/rHuGaLOqpGoLCkxDksypahcSktifOgsPFOVXjMHx gQ/LfJa+/BMB530SoSIqHCVJFKaCN5k5c59Gp/cZ0ECb2fu4sR//MTDZhT+TDpf5 hEmX7ta9WtW8Y8kgds130Oro73hXzoCbLCgso/VtytZUX7hh7ghz+tX2WTAkBI0j t90J7Gl9L5dixhQrvRt9gSZbnAlgLK0hJ2QTbeMrOOubwEcJFWiFatE= -----END CERTIFICATE-----Generated at Fri Jun 21 22:04:31 2024 by rpki-client on console-fra.rpki-client.org