$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer File: 350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer (raw, json) Hash identifier: lPbOTjQT34FbDJOzRcS3uSDGiigJ00K0ETlaSgV6QOA= Subject key identifier: 35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 13519B1AF9365DF97FFFE25EB0E4B3C4A89F2CAA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.mft caRepository: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 19 Feb 2024 05:40:03 +0000 Certificate not after: Mon 17 Feb 2025 05:45:03 +0000 Subordinate resources: IP: 157.15.66.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:51:9b:1a:f9:36:5d:f9:7f:ff:e2:5e:b0:e4:b3:c4:a8:9f:2c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 19 05:40:03 2024 GMT Not After : Feb 17 05:45:03 2025 GMT Subject: CN=350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:40:51:59:c9:db:9e:5b:8c:d7:25:84:57:be: 74:df:e1:51:c4:ae:19:94:8b:0f:d3:17:60:e9:54: d6:41:fa:c5:67:fd:e1:38:32:34:cb:98:90:ef:d2: 0d:8a:b3:b7:e2:30:13:04:1f:0b:4b:7a:57:3d:52: 50:b6:96:3d:f3:c7:87:ef:5d:58:ac:ad:14:5d:43: ce:31:49:df:69:d0:5f:1b:43:15:4f:d3:b8:47:99: a3:2a:9f:89:47:08:b7:02:3e:da:e1:89:19:bb:f4: 60:c9:f7:c6:d6:a5:72:9b:8a:a0:50:90:8e:93:2e: 85:b8:b4:1d:00:a0:cd:26:e5:90:56:55:15:a5:7e: de:7c:d7:1c:e3:16:f9:ed:7a:ba:4b:ec:00:93:32: 6d:50:af:3c:e0:94:c0:73:57:c3:45:1f:59:9c:1c: 71:2a:be:46:76:18:a5:0c:5e:71:c5:d1:75:82:e0: a2:de:54:73:79:78:c6:2c:f7:3e:5e:24:ee:fb:32: fa:b3:c3:ac:0d:dd:91:e8:17:45:47:aa:32:6b:82: 68:ed:2c:5d:b4:fe:a2:df:bb:d4:ce:fc:02:53:0d: a9:26:d9:42:6f:77:4d:80:86:a4:c9:36:61:e2:bb: e0:3d:2c:3b:00:8c:fc:6f:b0:6e:ed:e4:25:38:c2: 13:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.66.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:91:7b:39:19:17:3f:ff:aa:62:64:1c:e5:76:4b:12:32:3d: 10:bc:3b:38:93:d9:eb:12:48:76:33:df:9a:51:b8:e5:ef:df: 2a:8a:89:ee:1a:e0:d9:3f:79:93:b4:cd:19:65:5e:05:da:34: 10:c2:d3:de:24:28:cf:12:15:c5:71:8c:47:94:b7:df:e0:fc: 06:1a:1b:1f:32:b1:fe:21:90:63:5d:c5:97:cc:44:26:aa:ee: 0f:c2:59:0c:9e:fd:3e:d2:b0:25:04:cd:81:90:32:ff:15:df: ae:1a:8d:e5:1d:8c:af:f9:ac:4e:ce:72:01:9e:7c:04:b7:b4: 5f:cf:35:2e:1a:36:e0:47:53:be:36:fe:03:a1:25:f1:78:30: d9:3f:91:3c:a9:08:6d:f5:5d:67:e0:94:7b:01:95:94:4f:16: ff:ee:45:58:87:82:5e:4a:37:2c:59:4f:2e:79:c5:d4:b9:10: 4a:32:86:88:21:c9:50:79:97:68:db:a2:42:c5:ff:e2:47:a4: 23:61:f5:ae:c3:ff:ac:df:08:a2:7c:9a:3f:f0:87:45:8e:6a: 1e:b7:2f:14:81:0d:f8:36:61:61:32:2f:d9:3c:e6:69:ce:d4: 68:95:08:97:b5:90:fe:63:a0:c8:c8:70:34:ae:1d:7d:a5:d8: 23:ea:c1:b1 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUE1GbGvk2Xfl//+JesOSzxKifLKowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxOTA1NDAwM1oX DTI1MDIxNzA1NDUwM1owMzExMC8GA1UEAxMoMzUwQkFFODZDQTdCNTRGMUI5RTUz QUM2MEVFMkJBQTUxNTYzRjY3QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN5AUVnJ255bjNclhFe+dN/hUcSuGZSLD9MXYOlU1kH6xWf94TgyNMuYkO/S DYqzt+IwEwQfC0t6Vz1SULaWPfPHh+9dWKytFF1DzjFJ32nQXxtDFU/TuEeZoyqf iUcItwI+2uGJGbv0YMn3xtalcpuKoFCQjpMuhbi0HQCgzSblkFZVFaV+3nzXHOMW +e16ukvsAJMybVCvPOCUwHNXw0UfWZwccSq+RnYYpQxeccXRdYLgot5Uc3l4xiz3 Pl4k7vsy+rPDrA3dkegXRUeqMmuCaO0sXbT+ot+71M78AlMNqSbZQm93TYCGpMk2 YeK74D0sOwCM/G+wbu3kJTjCEyECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDULrobKe1TxueU6xg7iuqUVY/Z7MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ODRlODc5Zi0zYTU2LTRkOGQtODNlOC0wZTljYzY1NzcwZWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ4NGU4Nzlm LTNhNTYtNGQ4ZC04M2U4LTBlOWNjNjU3NzBlYS8wLzM1MEJBRTg2Q0E3QjU0RjFC OUU1M0FDNjBFRTJCQUE1MTU2M0Y2N0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdD0IwDQYJKoZIhvcNAQELBQADggEBADqRezkZFz//qmJkHOV2SxIyPRC8OziT 2esSSHYz35pRuOXv3yqKie4a4Nk/eZO0zRllXgXaNBDC094kKM8SFcVxjEeUt9/g /AYaGx8ysf4hkGNdxZfMRCaq7g/CWQye/T7SsCUEzYGQMv8V364ajeUdjK/5rE7O cgGefAS3tF/PNS4aNuBHU742/gOhJfF4MNk/kTypCG31XWfglHsBlZRPFv/uRViH gl5KNyxZTy55xdS5EEoyhoghyVB5l2jbokLF/+JHpCNh9a7D/6zfCKJ8mj/wh0WO ah63LxSBDfg2YWEyL9k85mnO1GiVCJe1kP5joMjIcDSuHX2l2CPqwbE= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org