$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer File: 4ED16B9231905A1C7A353DF749BF99487E69E313.cer (raw, json) Hash identifier: 1RRyHY9kyzKWTBe/amUNKJDfpEuzjSx/tKAazoDL62A= Subject key identifier: 4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 74C399690B134F83C26B0F8B8DBAAC3D676AF2D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft caRepository: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Apr 2024 07:24:44 +0000 Certificate not after: Tue 01 Apr 2025 07:29:44 +0000 Subordinate resources: IP: 157.20.100.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c3:99:69:0b:13:4f:83:c2:6b:0f:8b:8d:ba:ac:3d:67:6a:f2:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 2 07:24:44 2024 GMT Not After : Apr 1 07:29:44 2025 GMT Subject: CN=4ED16B9231905A1C7A353DF749BF99487E69E313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ba:df:fd:d0:83:03:34:e7:f9:25:b6:05:6e: 71:c6:80:9f:ba:0a:31:e4:94:ba:01:ad:68:da:40: bd:5e:4a:0d:d8:c0:ef:14:0e:20:20:0c:94:ed:ff: 6a:4f:39:52:93:fd:46:eb:01:53:df:85:65:2c:b4: 41:64:7b:07:4b:e6:23:ed:7a:f5:97:67:49:44:26: c9:71:78:b5:c7:8a:17:52:48:06:4a:c2:79:15:dd: fd:e5:7d:9c:ca:67:02:1a:27:fc:be:db:59:96:c7: be:79:ba:3b:bc:24:8e:4c:d7:05:f5:b0:fd:77:39: cc:4f:07:a6:42:c9:18:72:3f:ce:fe:4c:a4:3a:cd: e0:15:9c:3f:44:a6:04:fe:76:32:a4:ca:aa:c7:b9: 17:0a:7d:37:06:84:94:0e:87:02:81:13:aa:fe:72: a4:a9:e6:2d:83:31:e8:de:64:5e:ee:b8:66:9d:33: 7c:e2:dd:6e:f7:68:9b:0e:64:8d:16:53:ba:53:13: 76:00:1b:09:80:c0:3e:77:46:cb:b2:2f:ab:c3:84: fe:38:f5:07:e6:52:81:55:8e:0a:67:fc:aa:92:cf: 40:bf:5d:6a:57:a8:a3:a2:52:9e:ec:e9:71:2f:3f: f8:f3:57:a6:90:8c:f3:cc:05:79:81:55:8c:a1:5c: 9c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.100.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:e7:31:ab:59:b8:c6:2e:78:57:23:54:6d:66:3f:39:93:05: 4e:66:bc:78:55:fa:62:1c:6f:e2:a8:e8:d8:dd:c0:25:f9:1e: 2c:fe:f8:e5:0b:76:e5:a3:9d:e6:43:3f:72:9f:7b:f8:78:bf: 61:f9:3b:a0:c0:81:13:b5:f9:68:20:31:cd:d2:6b:1c:2b:18: 4c:25:63:6f:b0:53:b2:09:ae:47:6e:16:c7:87:23:5e:9d:f0: 41:e3:0f:9e:7b:5a:48:b2:24:12:d8:2e:68:f4:6d:48:c3:93: ab:14:21:30:a0:fe:52:55:1d:26:6c:2b:c9:84:05:7c:2e:cb: 5d:3e:45:ae:b4:ce:ca:69:ab:06:56:9c:62:a4:4e:4e:ff:f1: c6:58:10:08:a5:d7:63:ac:f5:56:35:ea:1b:a3:a7:d4:db:ba: 21:f3:1b:c5:7f:94:c3:81:69:41:a8:e7:e3:e5:4e:5c:c3:16: a3:01:cd:4c:be:d6:e9:ae:0d:f9:c2:6c:3d:61:42:0a:63:9b: 80:79:75:80:63:6c:a7:7e:97:91:8e:e1:58:5c:ee:54:45:9e: 36:d3:3e:5d:fa:20:ab:2e:99:aa:44:ad:54:c5:0e:e6:b1:d6: cc:2e:85:3b:4f:55:63:e1:ab:70:d7:6e:c8:ae:3e:67:4e:7b: 87:7d:51:87 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdMOZaQsTT4PCaw+LjbqsPWdq8tUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwMjA3MjQ0NFoX DTI1MDQwMTA3Mjk0NFowMzExMC8GA1UEAxMoNEVEMTZCOTIzMTkwNUExQzdBMzUz REY3NDlCRjk5NDg3RTY5RTMxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKe63/3QgwM05/kltgVuccaAn7oKMeSUugGtaNpAvV5KDdjA7xQOICAMlO3/ ak85UpP9RusBU9+FZSy0QWR7B0vmI+169ZdnSUQmyXF4tceKF1JIBkrCeRXd/eV9 nMpnAhon/L7bWZbHvnm6O7wkjkzXBfWw/Xc5zE8HpkLJGHI/zv5MpDrN4BWcP0Sm BP52MqTKqse5Fwp9NwaElA6HAoETqv5ypKnmLYMx6N5kXu64Zp0zfOLdbvdomw5k jRZTulMTdgAbCYDAPndGy7Ivq8OE/jj1B+ZSgVWOCmf8qpLPQL9daleoo6JSnuzp cS8/+PNXppCM88wFeYFVjKFcnC8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE7Ra5IxkFocejU990m/mUh+aeMTMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYjg4ZDJjYS0yMjliLTRhYWMtOWI1Yy00MmMxNTEwNWJiODIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FiODhkMmNh LTIyOWItNGFhYy05YjVjLTQyYzE1MTA1YmI4Mi8wLzRFRDE2QjkyMzE5MDVBMUM3 QTM1M0RGNzQ5QkY5OTQ4N0U2OUUzMTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdFGQwDQYJKoZIhvcNAQELBQADggEBAAvnMatZuMYueFcjVG1mPzmTBU5mvHhV +mIcb+Ko6NjdwCX5Hiz++OULduWjneZDP3Kfe/h4v2H5O6DAgRO1+WggMc3Saxwr GEwlY2+wU7IJrkduFseHI16d8EHjD557WkiyJBLYLmj0bUjDk6sUITCg/lJVHSZs K8mEBXwuy10+Ra60zsppqwZWnGKkTk7/8cZYEAil12Os9VY16hujp9TbuiHzG8V/ lMOBaUGo5+PlTlzDFqMBzUy+1umuDfnCbD1hQgpjm4B5dYBjbKd+l5GO4Vhc7lRF njbTPl36IKsumapErVTFDuax1swuhTtPVWPhq3DXbsiuPmdOe4d9UYc= -----END CERTIFICATE-----Generated at Fri Jun 21 21:25:33 2024 by rpki-client on console-ams.rpki-client.org