$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer File: 6428361522977EC74FA3D4ECB6009CCF78C9BC28.cer (raw, json) Hash identifier: 4hgl1XNzcnAxPaIK8aO6T2fBuJdprkbPwvV8nZL7wJI= Subject key identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 45EBAFD364B657B1DB23CEEDB609A4889A27FEC4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft caRepository: rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Jul 2024 01:08:47 +0000 Certificate not after: Fri 04 Jul 2025 01:13:47 +0000 Subordinate resources: IP: 157.66.18.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:eb:af:d3:64:b6:57:b1:db:23:ce:ed:b6:09:a4:88:9a:27:fe:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 5 01:08:47 2024 GMT Not After : Jul 4 01:13:47 2025 GMT Subject: CN=6428361522977EC74FA3D4ECB6009CCF78C9BC28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:76:b0:98:f0:ba:05:f9:96:7d:7e:65:af:6f: 1b:1b:80:18:f8:b3:18:a9:62:8a:bf:cc:33:96:79: 0f:78:21:1c:62:ec:61:81:d8:16:7e:6d:d4:0b:f2: b9:02:5c:31:4f:4f:12:99:3c:5a:a5:e9:b8:7d:e6: 2e:4f:68:6d:72:04:1f:0a:39:63:7e:9c:43:7a:22: b9:92:00:2d:02:d9:d3:11:4a:11:1b:49:fa:dc:98: f3:b6:ee:75:52:f1:8d:16:2e:ae:0a:21:b3:d1:27: 2e:b0:a7:8b:54:9f:bb:ae:a0:c6:f1:b2:22:c4:c6: 88:70:19:51:73:02:b0:e0:c3:18:9b:5c:83:10:18: c4:e8:98:d0:b7:66:26:9a:32:5d:44:c0:9c:fc:e7: 7d:f6:67:5c:9c:67:bb:f9:8e:09:13:06:bc:df:e5: 47:a0:ac:b8:18:b3:32:c9:d8:56:78:d3:31:37:e8: df:fb:f2:19:93:3b:e4:fd:bb:f1:66:9b:4b:56:db: cf:7f:af:d4:af:ca:0a:d8:eb:57:8f:49:01:56:1c: 90:4c:12:a8:f4:de:d3:4a:ad:d5:3c:1f:35:d4:fe: 92:fc:aa:b1:11:e0:0c:90:cf:f5:14:2a:a9:02:d8: be:f0:53:c3:db:96:6e:ad:56:4d:69:dd:95:52:8c: cd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:28:36:15:22:97:7E:C7:4F:A3:D4:EC:B6:00:9C:CF:78:C9:BC:28 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/37446563-09bc-491b-8fb9-fd39f091669d/0/6428361522977EC74FA3D4ECB6009CCF78C9BC28.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.18.0/23 Signature Algorithm: sha256WithRSAEncryption 70:34:fa:ef:c1:6e:bc:82:c7:4c:1f:75:16:21:27:bf:b6:36: d7:ed:8c:00:fe:94:c9:cc:e7:7b:4d:38:d2:68:23:35:43:83: b4:b1:32:d5:f2:7a:fd:09:8e:4d:67:be:db:1a:79:37:9c:63: 0f:72:99:02:e5:13:0d:f6:d5:20:1f:cf:0c:55:c8:87:e4:31: 72:0c:61:6a:ad:46:f1:8b:16:79:d0:e0:7b:8a:2c:ae:36:ec: 18:d8:ac:2b:80:de:fa:9c:97:b8:50:8d:a4:2f:04:49:16:13: 41:c8:2a:e7:ae:bf:d0:52:47:ab:74:8c:4f:84:52:02:b7:b5: 31:95:10:ca:ee:11:cb:b7:44:1e:5a:a8:10:b4:1e:5a:fe:39: f8:17:08:94:a1:be:f7:86:5d:06:c0:1f:f5:cf:f2:2b:39:a4: 59:6c:e8:d8:79:dd:4a:58:e3:2a:9f:92:e9:1f:48:4e:8c:79: ed:3c:ba:05:95:4e:42:b3:11:c3:01:ce:6d:6b:11:32:7e:d8: 77:13:8e:e6:44:97:21:44:86:70:cb:46:17:0c:e5:30:cb:1f: a0:39:2e:00:f2:54:12:74:bd:34:76:3a:ed:a9:58:1a:85:07: 9f:3e:6f:15:8d:e1:28:03:9d:68:2a:08:f2:d3:cf:0b:f9:ba: af:20:4e:82 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUReuv02S2V7HbI87ttgmkiJon/sQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcwNTAxMDg0N1oX DTI1MDcwNDAxMTM0N1owMzExMC8GA1UEAxMoNjQyODM2MTUyMjk3N0VDNzRGQTNE NEVDQjYwMDlDQ0Y3OEM5QkMyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL92sJjwugX5ln1+Za9vGxuAGPizGKliir/MM5Z5D3ghHGLsYYHYFn5t1Avy uQJcMU9PEpk8WqXpuH3mLk9obXIEHwo5Y36cQ3oiuZIALQLZ0xFKERtJ+tyY87bu dVLxjRYurgohs9EnLrCni1Sfu66gxvGyIsTGiHAZUXMCsODDGJtcgxAYxOiY0Ldm JpoyXUTAnPznffZnXJxnu/mOCRMGvN/lR6CsuBizMsnYVnjTMTfo3/vyGZM75P27 8WabS1bbz3+v1K/KCtjrV49JAVYckEwSqPTe00qt1TwfNdT+kvyqsRHgDJDP9RQq qQLYvvBTw9uWbq1WTWndlVKMzakCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGQoNhUil37HT6PU7LYAnM94ybwoMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNzQ0NjU2My0wOWJjLTQ5MWItOGZiOS1mZDM5ZjA5MTY2OWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3NDQ2NTYz LTA5YmMtNDkxYi04ZmI5LWZkMzlmMDkxNjY5ZC8wLzY0MjgzNjE1MjI5NzdFQzc0 RkEzRDRFQ0I2MDA5Q0NGNzhDOUJDMjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQhIwDQYJKoZIhvcNAQELBQADggEBAHA0+u/BbryCx0wfdRYhJ7+2NtftjAD+ lMnM53tNONJoIzVDg7SxMtXyev0Jjk1nvtsaeTecYw9ymQLlEw321SAfzwxVyIfk MXIMYWqtRvGLFnnQ4HuKLK427BjYrCuA3vqcl7hQjaQvBEkWE0HIKueuv9BSR6t0 jE+EUgK3tTGVEMruEcu3RB5aqBC0Hlr+OfgXCJShvveGXQbAH/XP8is5pFls6Nh5 3UpY4yqfkukfSE6Mee08ugWVTkKzEcMBzm1rETJ+2HcTjuZElyFEhnDLRhcM5TDL H6A5LgDyVBJ0vTR2Ou2pWBqFB58+bxWN4SgDnWgqCPLTzwv5uq8gToI= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org