$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/5EC928AFD73AFC70F10C468E21482031920DF521.cer File: 5EC928AFD73AFC70F10C468E21482031920DF521.cer (raw, json) Hash identifier: YS2KzwXiWs7CX1cx4m/c3/Zs1ooiy4+WbpbF1TQU9HM= Subject key identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 73A6283E1EF6B2D17BE262392809F365990F4EB6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft caRepository: rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 18 Jan 2024 20:38:08 +0000 Certificate not after: Thu 16 Jan 2025 20:43:08 +0000 Subordinate resources: IP: 157.10.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a6:28:3e:1e:f6:b2:d1:7b:e2:62:39:28:09:f3:65:99:0f:4e:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 18 20:38:08 2024 GMT Not After : Jan 16 20:43:08 2025 GMT Subject: CN=5EC928AFD73AFC70F10C468E21482031920DF521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3e:da:ca:4a:1f:39:e4:1e:85:e8:60:22:49: 07:05:6d:1c:87:14:3c:dc:b6:e3:59:d0:6c:0a:66: 40:f5:e4:3e:45:30:ab:18:55:e8:80:9f:c6:e4:8c: 79:50:6d:2b:1c:6a:3e:3d:cb:4b:49:ed:99:60:18: 9e:79:6e:f8:5c:90:dd:13:c6:fc:49:e2:16:2a:62: 9b:66:dd:30:6b:f8:9d:21:c0:23:92:98:cd:8a:8c: c6:bf:32:64:c5:ab:d8:da:3d:46:c4:4c:6e:e1:13: 48:53:00:e4:6c:46:81:52:ed:34:80:0f:ad:cc:1c: c8:46:8b:56:2e:8f:1e:0c:9d:e3:dc:ce:b8:4d:60: e4:f4:10:5f:4b:0f:6b:c8:57:0b:a4:a4:04:5b:bd: 52:cd:44:d7:6a:70:86:30:28:d6:95:dc:fd:55:7a: 88:ad:d4:e2:fd:24:c1:d0:ff:87:93:e1:f0:27:90: 65:76:b2:22:15:75:09:1d:ec:01:c2:e2:ce:29:f2: fc:b9:6e:90:2a:5f:01:ee:cd:65:9a:e0:f2:d9:be: 4a:56:7b:3f:67:40:d4:30:a0:a9:c8:98:d6:42:da: eb:c0:af:56:4b:ad:32:d8:0b:41:f8:13:81:bf:ec: dc:54:b9:f2:d4:cf:a3:0f:3b:65:a3:e1:44:b5:00: 0d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5E:C9:28:AF:D7:3A:FC:70:F1:0C:46:8E:21:48:20:31:92:0D:F5:21 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ecf3f8c8-0406-4b38-a7a8-dcb15e41f2b7/0/5EC928AFD73AFC70F10C468E21482031920DF521.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.90.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:10:d7:cb:ca:c3:1b:90:63:ea:cf:47:4b:de:f8:39:24:3e: 6b:ec:bf:c4:63:40:27:17:a7:36:d8:48:ed:22:43:ae:d2:dc: f8:1d:e2:66:77:4f:f9:59:87:66:4a:25:ef:04:6b:93:13:81: 0a:03:f6:1a:4c:8f:5a:e6:1f:af:b0:a4:91:2b:cd:da:e3:89: e4:79:9a:c0:ab:09:23:71:de:89:49:9d:40:2c:44:ed:54:6b: 80:2c:75:2a:77:d5:b4:13:52:4c:01:f8:38:19:7f:08:db:82: 41:bb:f7:61:dc:27:37:ba:19:fb:4b:79:dc:e7:00:d8:93:5c: ff:52:84:73:49:37:9e:13:cb:0f:af:6b:dc:61:a7:97:d8:73: 5a:8f:14:50:13:dc:50:8b:b3:ac:a2:75:9b:44:f0:33:68:d3: c7:54:a0:4d:7a:c5:41:87:14:88:73:d3:cc:62:43:4b:f7:88: b1:0b:70:3f:30:e6:f9:df:3b:72:c9:78:2d:41:f9:8e:af:b3: e0:59:98:0e:71:ab:5f:1d:0d:bd:bd:a5:de:5f:06:08:bd:38: fe:70:27:e3:d2:2e:fc:91:d5:7c:e4:11:d0:56:ce:a6:7c:c1: 28:9e:5c:d4:ad:30:b1:a9:d3:01:2e:56:09:e9:bc:5e:51:2b: 24:f7:af:87 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUc6YoPh72stF74mI5KAnzZZkPTrYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDExODIwMzgwOFoX DTI1MDExNjIwNDMwOFowMzExMC8GA1UEAxMoNUVDOTI4QUZENzNBRkM3MEYxMEM0 NjhFMjE0ODIwMzE5MjBERjUyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALw+2spKHznkHoXoYCJJBwVtHIcUPNy241nQbApmQPXkPkUwqxhV6ICfxuSM eVBtKxxqPj3LS0ntmWAYnnlu+FyQ3RPG/EniFipim2bdMGv4nSHAI5KYzYqMxr8y ZMWr2No9RsRMbuETSFMA5GxGgVLtNIAPrcwcyEaLVi6PHgyd49zOuE1g5PQQX0sP a8hXC6SkBFu9Us1E12pwhjAo1pXc/VV6iK3U4v0kwdD/h5Ph8CeQZXayIhV1CR3s AcLiziny/LlukCpfAe7NZZrg8tm+SlZ7P2dA1DCgqciY1kLa68CvVkutMtgLQfgT gb/s3FS58tTPow87ZaPhRLUADccCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF7JKK/XOvxw8QxGjiFIIDGSDfUhMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lY2YzZjhjOC0wNDA2LTRiMzgtYTdhOC1kY2IxNWU0MWYyYjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjZjNmOGM4 LTA0MDYtNGIzOC1hN2E4LWRjYjE1ZTQxZjJiNy8wLzVFQzkyOEFGRDczQUZDNzBG MTBDNDY4RTIxNDgyMDMxOTIwREY1MjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdClowDQYJKoZIhvcNAQELBQADggEBAEoQ18vKwxuQY+rPR0ve+DkkPmvsv8Rj QCcXpzbYSO0iQ67S3Pgd4mZ3T/lZh2ZKJe8Ea5MTgQoD9hpMj1rmH6+wpJErzdrj ieR5msCrCSNx3olJnUAsRO1Ua4AsdSp31bQTUkwB+DgZfwjbgkG792HcJze6GftL edznANiTXP9ShHNJN54Tyw+va9xhp5fYc1qPFFAT3FCLs6yidZtE8DNo08dUoE16 xUGHFIhz08xiQ0v3iLELcD8w5vnfO3LJeC1B+Y6vs+BZmA5xq18dDb29pd5fBgi9 OP5wJ+PSLvyR1XzkEdBWzqZ8wSieXNStMLGp0wEuVgnpvF5RKyT3r4c= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org