$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/78702A768CA1E1867D543013BB6186EDA3C06C16.cer File: 78702A768CA1E1867D543013BB6186EDA3C06C16.cer (raw, json) Hash identifier: mhBD6mK9sGlhr9fo68aaTPNDFtZfuMxXQ1/irrLxEX8= Subject key identifier: 78:70:2A:76:8C:A1:E1:86:7D:54:30:13:BB:61:86:ED:A3:C0:6C:16 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4422449C45CC84FE72A862BE96C1E8C88B09F246 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.mft caRepository: rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 17 Oct 2024 08:48:48 +0000 Certificate not after: Thu 16 Oct 2025 08:53:48 +0000 Subordinate resources: IP: 157.66.140.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:22:44:9c:45:cc:84:fe:72:a8:62:be:96:c1:e8:c8:8b:09:f2:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Oct 17 08:48:48 2024 GMT Not After : Oct 16 08:53:48 2025 GMT Subject: CN=78702A768CA1E1867D543013BB6186EDA3C06C16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:0a:6a:22:e0:eb:40:5f:8a:95:0f:5a:ba: 63:0f:5a:51:73:e3:01:46:73:63:38:e4:90:2a:2c: ae:b3:0c:af:0b:fe:4d:86:89:5f:fa:83:f3:f4:fa: 99:02:4f:3f:e1:25:9b:5c:2c:3b:0c:08:c7:9a:78: f8:b1:05:e7:28:0e:a8:a4:f4:e2:83:56:e2:75:3b: e2:43:22:64:54:cd:b7:82:ce:2e:6c:66:b8:97:e1: 80:b4:f9:dd:82:bd:53:f3:df:93:f6:7c:b7:d9:9d: a2:81:4c:4e:1c:b5:5f:3a:3f:27:09:8e:6d:43:ea: 5d:7b:72:b1:7c:fc:05:be:62:3a:fd:14:27:33:70: 65:71:15:b5:e3:cd:d7:4f:b7:39:34:ad:a0:28:a6: 07:62:ee:cd:5a:e4:a5:a9:19:38:d6:4d:1a:44:24: c8:e7:0e:98:f5:94:ef:65:f3:e6:68:47:70:fe:88: b7:ec:2a:42:41:fb:01:58:88:87:78:34:8b:82:ce: 35:18:54:5f:bf:97:4e:c2:d1:2c:6f:e3:7e:73:ce: 8a:58:49:2d:5d:1e:7a:6a:0d:d9:5e:9f:94:b2:50: be:ff:2b:fb:c0:af:20:0e:d9:6b:94:b8:35:77:78: 71:91:c5:d6:75:36:52:7c:fe:49:7c:67:82:e6:24: 7a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 78:70:2A:76:8C:A1:E1:86:7D:54:30:13:BB:61:86:ED:A3:C0:6C:16 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dba9f4e2-c73b-4427-9829-1da1baab870b/0/78702A768CA1E1867D543013BB6186EDA3C06C16.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.140.0/23 Signature Algorithm: sha256WithRSAEncryption 93:db:2b:7a:22:a5:76:0a:97:a0:76:54:e7:84:03:86:07:14: 8d:57:a3:6c:17:7a:64:3a:a8:40:21:77:38:14:41:74:1d:c4: 37:a2:b3:a6:76:0a:c3:f5:39:3a:39:3f:65:2f:84:e5:3e:83: ab:f3:38:86:b5:92:a2:04:b0:eb:61:71:36:e1:d3:8e:f2:84: da:6e:19:cf:dd:9b:ee:24:ea:59:a1:05:d9:fe:f3:48:0e:ad: d3:f9:f4:3a:18:b9:53:2f:27:ff:27:41:73:3f:21:24:0c:68: 97:3a:b9:6a:ab:ba:7f:f8:62:46:e4:5d:17:cb:3b:76:20:58: cc:d0:ed:ff:eb:8d:c7:52:54:8e:a5:02:8a:6d:65:8f:c0:36: 4a:61:8c:75:9e:ed:76:eb:01:66:33:de:25:e9:a2:41:9e:f3: 9c:8e:12:42:65:b5:3f:ab:af:98:90:53:b5:f9:d3:de:0b:a4: 08:46:22:81:f7:24:d7:33:a4:62:da:28:c4:ce:bd:9e:76:92: e2:a8:7c:cb:1d:34:f7:61:b0:17:f1:b7:2f:74:6c:8f:79:d0: f1:96:db:4e:9e:54:20:3f:8e:d7:17:b8:a1:8c:80:92:ee:bf: af:a1:21:8a:d4:be:64:b7:fb:14:a7:0e:47:b7:55:6c:63:0e: dc:ee:fc:9b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURCJEnEXMhP5yqGK+lsHoyIsJ8kYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MTAxNzA4NDg0OFoX DTI1MTAxNjA4NTM0OFowMzExMC8GA1UEAxMoNzg3MDJBNzY4Q0ExRTE4NjdENTQz MDEzQkI2MTg2RURBM0MwNkMxNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMBqCmoi4OtAX4qVD1q6Yw9aUXPjAUZzYzjkkCosrrMMrwv+TYaJX/qD8/T6 mQJPP+Elm1wsOwwIx5p4+LEF5ygOqKT04oNW4nU74kMiZFTNt4LOLmxmuJfhgLT5 3YK9U/Pfk/Z8t9mdooFMThy1Xzo/JwmObUPqXXtysXz8Bb5iOv0UJzNwZXEVtePN 10+3OTStoCimB2LuzVrkpakZONZNGkQkyOcOmPWU72Xz5mhHcP6It+wqQkH7AViI h3g0i4LONRhUX7+XTsLRLG/jfnPOilhJLV0eemoN2V6flLJQvv8r+8CvIA7Za5S4 NXd4cZHF1nU2Unz+SXxnguYkeh0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHhwKnaMoeGGfVQwE7thhu2jwGwWMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYmE5ZjRlMi1jNzNiLTQ0MjctOTgyOS0xZGExYmFhYjg3MGIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiYTlmNGUy LWM3M2ItNDQyNy05ODI5LTFkYTFiYWFiODcwYi8wLzc4NzAyQTc2OENBMUUxODY3 RDU0MzAxM0JCNjE4NkVEQTNDMDZDMTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQowwDQYJKoZIhvcNAQELBQADggEBAJPbK3oipXYKl6B2VOeEA4YHFI1Xo2wX emQ6qEAhdzgUQXQdxDeis6Z2CsP1OTo5P2UvhOU+g6vzOIa1kqIEsOthcTbh047y hNpuGc/dm+4k6lmhBdn+80gOrdP59DoYuVMvJ/8nQXM/ISQMaJc6uWqrun/4Ykbk XRfLO3YgWMzQ7f/rjcdSVI6lAoptZY/ANkphjHWe7XbrAWYz3iXpokGe85yOEkJl tT+rr5iQU7X5094LpAhGIoH3JNczpGLaKMTOvZ52kuKofMsdNPdhsBfxty90bI95 0PGW206eVCA/jtcXuKGMgJLuv6+hIYrUvmS3+xSnDke3VWxjDtzu/Js= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org