$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/676E12EDA912B67493E88316A428CFDBCAB51941.cer File: 676E12EDA912B67493E88316A428CFDBCAB51941.cer (raw, json) Hash identifier: eHghRQOx7PEyvHeypUGk6/CLEPFHHkqLj8/S3L+qu6E= Subject key identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 1DB1FBB5920DD9FA712FB09EE7D460558642623B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft caRepository: rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 01 Jun 2024 03:28:52 +0000 Certificate not after: Sat 31 May 2025 03:33:52 +0000 Subordinate resources: IP: 157.66.4.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b1:fb:b5:92:0d:d9:fa:71:2f:b0:9e:e7:d4:60:55:86:42:62:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 1 03:28:52 2024 GMT Not After : May 31 03:33:52 2025 GMT Subject: CN=676E12EDA912B67493E88316A428CFDBCAB51941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:29:9e:74:3d:75:c7:52:7f:a5:cd:6c:e6:be: a8:77:f0:26:4e:7f:60:c5:e0:74:ac:8e:9c:81:a9: 42:07:e9:3a:a3:15:8b:78:89:42:a8:06:b9:d4:38: db:15:35:96:a9:88:c1:b5:01:e8:ee:5c:8e:23:f6: 7e:db:6c:16:0a:a6:c0:0b:ea:87:3c:8c:64:8e:5a: 94:20:f9:0e:7f:4a:64:11:49:55:1b:a2:af:a2:d1: de:57:35:ab:db:c8:2a:20:be:a1:3b:33:0c:92:78: ee:71:e2:b0:83:85:04:2c:30:99:65:bc:23:13:76: bd:de:1e:b9:a5:4f:b6:25:91:ec:64:20:a7:57:d4: 48:be:94:f5:9b:6e:8e:fa:8b:84:23:57:5d:73:79: 0d:51:64:3d:36:77:89:ab:4f:e0:be:ce:71:74:a6: e5:ef:7f:7f:44:97:95:2f:ff:6b:9e:dc:eb:0c:f4: 4c:55:61:3f:15:7b:ad:c6:1f:7a:6c:0e:3e:9f:40: 48:d3:ca:da:6c:c6:c1:11:14:38:f3:70:8d:16:c6: 8d:c9:55:81:72:ab:f7:5e:eb:9c:5b:c3:3e:95:b1: 89:fc:80:71:97:02:d4:b1:28:56:ed:42:9a:84:ee: 88:01:7e:92:b0:87:12:c3:8e:ff:48:40:ae:b9:a4: e1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 67:6E:12:ED:A9:12:B6:74:93:E8:83:16:A4:28:CF:DB:CA:B5:19:41 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b264bfb2-d41d-4317-b92d-bb9441fd0dcf/0/676E12EDA912B67493E88316A428CFDBCAB51941.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.4.0/23 Signature Algorithm: sha256WithRSAEncryption 16:1e:ad:1e:f5:d5:be:75:3e:a4:35:7f:7a:cc:de:15:9c:0c: 3e:80:34:17:de:3a:16:58:7b:5c:4c:64:e6:7b:f2:35:c5:cb: a5:71:75:5f:fb:9d:93:f0:78:56:cc:ff:05:c9:2c:c1:88:b7: a8:22:1e:54:90:16:b7:96:68:1a:65:85:39:18:43:ef:60:73: 48:9a:96:71:ee:e1:8f:6f:35:28:3f:5f:4a:6f:48:dd:ec:65: 71:fb:86:12:04:64:60:a8:b0:20:90:bb:23:fc:6c:8c:94:96: 02:e5:00:26:89:1d:bc:83:02:27:e9:55:fd:ad:a0:c7:4e:7a: e9:d9:38:ea:5c:1f:20:8a:f0:64:a0:60:3c:b3:58:2c:50:7b: fc:d6:52:b0:3f:f7:59:0b:aa:81:75:19:c1:2a:d5:6e:0b:04: 86:4c:fd:0a:7d:51:00:e5:64:27:67:40:92:b2:13:ad:eb:87: 35:92:76:04:16:44:c6:7f:07:00:82:9b:de:56:44:ac:76:55: a3:04:cf:c5:ab:27:4c:57:90:ca:0a:92:14:81:c0:1a:8e:e4: 11:f6:5f:7a:a9:52:e8:3c:79:af:a8:1b:7c:88:41:6f:32:8b: a1:5f:df:d8:7c:5d:67:91:6f:e7:6d:68:41:b9:6b:06:22:4c: b5:cc:50:8b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHbH7tZIN2fpxL7Ce59RgVYZCYjswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYwMTAzMjg1MloX DTI1MDUzMTAzMzM1MlowMzExMC8GA1UEAxMoNjc2RTEyRURBOTEyQjY3NDkzRTg4 MzE2QTQyOENGREJDQUI1MTk0MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALwpnnQ9dcdSf6XNbOa+qHfwJk5/YMXgdKyOnIGpQgfpOqMVi3iJQqgGudQ4 2xU1lqmIwbUB6O5cjiP2fttsFgqmwAvqhzyMZI5alCD5Dn9KZBFJVRuir6LR3lc1 q9vIKiC+oTszDJJ47nHisIOFBCwwmWW8IxN2vd4euaVPtiWR7GQgp1fUSL6U9Ztu jvqLhCNXXXN5DVFkPTZ3iatP4L7OcXSm5e9/f0SXlS//a57c6wz0TFVhPxV7rcYf emwOPp9ASNPK2mzGwREUOPNwjRbGjclVgXKr917rnFvDPpWxifyAcZcC1LEoVu1C moTuiAF+krCHEsOO/0hArrmk4aUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGduEu2pErZ0k+iDFqQoz9vKtRlBMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iMjY0YmZiMi1kNDFkLTQzMTctYjkyZC1iYjk0NDFmZDBkY2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IyNjRiZmIy LWQ0MWQtNDMxNy1iOTJkLWJiOTQ0MWZkMGRjZi8wLzY3NkUxMkVEQTkxMkI2NzQ5 M0U4ODMxNkE0MjhDRkRCQ0FCNTE5NDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQgQwDQYJKoZIhvcNAQELBQADggEBABYerR711b51PqQ1f3rM3hWcDD6ANBfe OhZYe1xMZOZ78jXFy6VxdV/7nZPweFbM/wXJLMGIt6giHlSQFreWaBplhTkYQ+9g c0ialnHu4Y9vNSg/X0pvSN3sZXH7hhIEZGCosCCQuyP8bIyUlgLlACaJHbyDAifp Vf2toMdOeunZOOpcHyCK8GSgYDyzWCxQe/zWUrA/91kLqoF1GcEq1W4LBIZM/Qp9 UQDlZCdnQJKyE63rhzWSdgQWRMZ/BwCCm95WRKx2VaMEz8WrJ0xXkMoKkhSBwBqO 5BH2X3qpUug8ea+oG3yIQW8yi6Ff39h8XWeRb+dtaEG5awYiTLXMUIs= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org