$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer File: 7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer (raw, json) Hash identifier: 3rzSXMBgDpWV8NmKYjrQv1fwkD4kNwzx3IlySNclJkM= Subject key identifier: 7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5FE5D51FA571004278013F908CDE7B531C93F43B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.mft caRepository: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 19 Jul 2024 02:20:06 +0000 Certificate not after: Fri 18 Jul 2025 02:25:06 +0000 Subordinate resources: IP: 157.66.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e5:d5:1f:a5:71:00:42:78:01:3f:90:8c:de:7b:53:1c:93:f4:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jul 19 02:20:06 2024 GMT Not After : Jul 18 02:25:06 2025 GMT Subject: CN=7ABD31DD828DD58C9D91180021903EA04D8EB58E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:02:26:98:08:6f:e7:a7:02:17:7e:9e:2d:00: 19:ff:df:6c:57:66:e1:7d:a0:5e:14:d5:02:0a:13: 7e:26:ad:2d:3a:12:61:42:bc:80:2b:cb:11:cd:84: 5b:c3:5e:20:51:af:c5:40:2e:2b:54:52:18:9f:3e: 12:de:08:95:53:3a:d0:f9:62:53:81:e3:4a:0c:76: 2d:24:7b:7b:23:cc:5b:ea:b5:ad:e9:8a:70:b3:a6: 56:a2:72:d7:ff:e0:60:a7:ac:f4:53:20:5e:0d:48: 84:3e:91:71:0d:a7:52:46:4b:e4:e4:9a:b9:a2:83: 29:6a:4c:28:c0:37:2a:53:69:b4:24:9f:f7:94:43: 74:e5:62:0e:fb:c1:e8:4a:54:da:73:bd:6e:b1:2f: 53:2e:42:01:2a:05:c0:04:43:c0:8d:e8:1e:b4:40: eb:c0:32:95:15:e2:a9:50:0f:71:fa:a4:cd:22:9b: d0:39:9b:c2:bd:ae:e3:0b:eb:d5:83:a0:be:ad:ee: 74:8c:98:11:59:d6:eb:ed:70:57:8a:85:aa:52:b5: d6:58:40:8d:92:79:69:56:8f:14:88:b5:10:99:36: 09:46:de:8a:4d:33:6b:c5:44:a6:32:0a:98:58:68: a5:57:7d:7e:f3:11:70:88:b9:48:c8:fa:92:cd:e0: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.20.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:05:c2:cc:89:f2:d8:36:fb:ee:92:84:04:c2:94:34:0f:95: 94:a9:d9:0b:ad:ea:b3:85:f2:1c:4a:c2:74:c9:8b:e9:4c:78: 5d:bb:c5:01:a7:bf:fc:85:5a:0f:63:e1:76:b0:8e:87:7c:82: c6:08:eb:80:87:9d:eb:ad:de:e3:08:d7:4e:93:bb:7b:8f:87: 01:10:4e:88:ce:9a:5a:44:07:2d:5e:e6:10:4a:cf:0f:78:63: 97:2c:b8:4f:5f:48:c8:dc:b1:93:97:13:c0:76:48:54:7a:52: e7:96:bf:88:a9:44:51:c9:77:a6:a9:05:27:2b:44:3b:56:6d: 8a:2a:0b:a8:8d:60:ec:47:76:38:0c:f4:4a:cc:2b:9e:a3:4c: da:b6:e7:e3:31:89:fb:e6:b1:38:85:23:81:be:54:0a:a6:70: e6:4d:fa:73:1d:94:8f:87:f9:44:6f:3f:2a:58:82:20:04:02: b9:b2:ec:3e:92:73:15:3f:66:83:23:ec:11:33:99:0b:5d:eb: da:4d:ad:ea:2f:8f:16:7a:0b:0f:df:ed:77:49:bf:79:08:df: 18:ea:9a:93:85:b5:41:7f:ba:35:ab:48:4a:0a:4c:03:0f:12: ad:a6:5c:96:9d:89:ce:6d:43:6e:0e:fc:b6:80:35:d9:6e:86: e9:09:83:47 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUX+XVH6VxAEJ4AT+QjN57UxyT9DswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDcxOTAyMjAwNloX DTI1MDcxODAyMjUwNlowMzExMC8GA1UEAxMoN0FCRDMxREQ4MjhERDU4QzlEOTEx ODAwMjE5MDNFQTA0RDhFQjU4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgCJpgIb+enAhd+ni0AGf/fbFdm4X2gXhTVAgoTfiatLToSYUK8gCvLEc2E W8NeIFGvxUAuK1RSGJ8+Et4IlVM60PliU4HjSgx2LSR7eyPMW+q1remKcLOmVqJy 1//gYKes9FMgXg1IhD6RcQ2nUkZL5OSauaKDKWpMKMA3KlNptCSf95RDdOViDvvB 6EpU2nO9brEvUy5CASoFwARDwI3oHrRA68AylRXiqVAPcfqkzSKb0Dmbwr2u4wvr 1YOgvq3udIyYEVnW6+1wV4qFqlK11lhAjZJ5aVaPFIi1EJk2CUbeik0za8VEpjIK mFhopVd9fvMRcIi5SMj6ks3gZSsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHq9Md2CjdWMnZEYACGQPqBNjrWOMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNWY1ZWYxOC02ZmZhLTRkNjktOGMwYy0zNTE4Y2ZhODc1OGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1ZjVlZjE4 LTZmZmEtNGQ2OS04YzBjLTM1MThjZmE4NzU4ZS8wLzdBQkQzMUREODI4REQ1OEM5 RDkxMTgwMDIxOTAzRUEwNEQ4RUI1OEUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQhQwDQYJKoZIhvcNAQELBQADggEBAGwFwsyJ8tg2++6ShATClDQPlZSp2Qut 6rOF8hxKwnTJi+lMeF27xQGnv/yFWg9j4Xawjod8gsYI64CHneut3uMI106Tu3uP hwEQTojOmlpEBy1e5hBKzw94Y5csuE9fSMjcsZOXE8B2SFR6UueWv4ipRFHJd6ap BScrRDtWbYoqC6iNYOxHdjgM9ErMK56jTNq25+MxifvmsTiFI4G+VAqmcOZN+nMd lI+H+URvPypYgiAEArmy7D6ScxU/ZoMj7BEzmQtd69pNreovjxZ6Cw/f7XdJv3kI 3xjqmpOFtUF/ujWrSEoKTAMPEq2mXJadic5tQ24O/LaANdluhukJg0c= -----END CERTIFICATE-----Generated at Fri Sep 27 06:07:28 2024 by rpki-client on console-fra.rpki-client.org