$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer File: 85735A4922D529215199E6F4D6829DF68512E117.cer (raw, json) Hash identifier: rVWx93UgBAmkpwE4Avs0qE24+Pfyd2yeepEFr1jRa3o= Subject key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 05EBBA0E75703B652460F2CB1CE07EA2991FF435 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 29 Apr 2024 09:12:43 +0000 Certificate not after: Mon 28 Apr 2025 09:17:43 +0000 Subordinate resources: IP: 157.66.34.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:eb:ba:0e:75:70:3b:65:24:60:f2:cb:1c:e0:7e:a2:99:1f:f4:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 29 09:12:43 2024 GMT Not After : Apr 28 09:17:43 2025 GMT Subject: CN=85735A4922D529215199E6F4D6829DF68512E117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:26:ae:f9:9c:70:e1:ee:b8:8f:8c:52:1d:b3: 75:6d:3a:ad:08:75:2f:38:98:94:03:5a:6c:fa:e5: 97:8d:38:f6:d6:cc:b9:fb:26:ff:12:52:2d:f1:f0: f1:c2:b8:c6:09:c8:90:7a:07:7a:3a:55:ec:e3:88: 0c:08:5e:9c:89:9f:d9:59:90:92:cc:bb:92:60:54: 21:50:d9:4b:f6:22:aa:76:5b:ca:a5:67:a6:19:6f: 13:74:6d:e4:5f:39:3a:a9:ab:a7:fb:80:16:ef:ea: ae:c4:4c:d3:85:f4:b0:db:cb:70:a1:03:91:82:4c: e5:2d:47:7f:be:9d:ee:04:8b:5c:8c:5c:b4:a7:6b: f7:15:df:7c:92:b5:c7:9d:04:50:62:b1:34:a5:87: b1:e1:3f:49:12:20:c3:9b:37:8a:2c:6a:f4:10:75: e7:8e:7c:fd:fc:07:20:2d:05:92:f4:0f:8d:30:4b: 76:8d:0a:d9:3b:fd:23:61:04:80:b2:3e:5d:16:b2: 44:c0:5a:96:24:5f:f3:10:aa:6c:ce:59:96:3c:af: 91:4f:e9:4a:e6:c8:d3:11:2a:77:3c:b5:cf:35:52: 3a:d7:e4:2f:f9:d1:6b:a1:a6:8e:17:d1:c8:da:82: 8e:7b:a3:8c:fb:e3:57:4b:93:bc:33:65:4f:25:54: dd:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.34.0/23 Signature Algorithm: sha256WithRSAEncryption 85:2e:fe:1d:76:75:11:bb:bc:70:61:46:7f:2e:51:32:f7:0d: e5:b0:f0:2d:40:fb:61:22:32:c5:1b:e8:12:1a:46:ef:e5:84: 87:e2:db:92:43:41:d2:65:92:7a:bc:d5:2f:47:41:93:7e:a2: d3:09:6a:cb:0f:53:6e:4d:c8:d9:5c:9b:1d:f8:07:fd:fd:ff: 88:08:61:e7:db:4a:1d:f0:67:2e:dc:1f:61:c3:76:f5:fa:9a: 84:f3:7a:2a:4b:8a:b0:18:92:cb:22:78:a7:9e:97:a2:20:e2: 2c:ca:87:a6:d2:fc:81:a1:4b:0c:29:0a:7b:41:9a:f8:a9:d8: 22:bf:45:f6:48:63:f2:4a:5f:0b:b6:14:43:1d:8c:85:68:64: d3:21:44:e2:96:9e:11:6f:fa:8c:a5:5e:e9:a2:a9:30:db:0a: 16:0b:49:d3:10:56:e6:7b:55:33:7e:8b:ec:78:15:78:8a:11: 86:f4:34:05:a6:e6:6b:6d:3e:b9:a7:9e:64:94:4c:6f:94:0c: 83:e5:46:c1:cb:2b:22:b6:f1:49:4b:7a:e3:66:35:d4:32:44: 52:bd:f6:91:06:70:67:fe:ba:63:47:8d:49:e3:b9:db:24:11: 1f:e7:ac:e5:08:f8:bd:38:e4:dc:ac:2e:69:a4:8f:47:c4:8c: 14:db:76:66 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBeu6DnVwO2UkYPLLHOB+opkf9DUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQyOTA5MTI0M1oX DTI1MDQyODA5MTc0M1owMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlF NkY0RDY4MjlERjY4NTEyRTExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEmrvmccOHuuI+MUh2zdW06rQh1LziYlANabPrll4049tbMufsm/xJSLfHw 8cK4xgnIkHoHejpV7OOIDAhenImf2VmQksy7kmBUIVDZS/YiqnZbyqVnphlvE3Rt 5F85Oqmrp/uAFu/qrsRM04X0sNvLcKEDkYJM5S1Hf76d7gSLXIxctKdr9xXffJK1 x50EUGKxNKWHseE/SRIgw5s3iixq9BB15458/fwHIC0FkvQPjTBLdo0K2Tv9I2EE gLI+XRayRMBaliRf8xCqbM5ZljyvkU/pSubI0xEqdzy1zzVSOtfkL/nRa6GmjhfR yNqCjnujjPvjV0uTvDNlTyVU3RUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIVzWkki1SkhUZnm9NaCnfaFEuEXMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjM2U2OGJk LWIwNGMtNGQzNS04MDIwLTAyOTM2MzQyZmIxZC8wLzg1NzM1QTQ5MjJENTI5MjE1 MTk5RTZGNEQ2ODI5REY2ODUxMkUxMTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQiIwDQYJKoZIhvcNAQELBQADggEBAIUu/h12dRG7vHBhRn8uUTL3DeWw8C1A +2EiMsUb6BIaRu/lhIfi25JDQdJlknq81S9HQZN+otMJassPU25NyNlcmx34B/39 /4gIYefbSh3wZy7cH2HDdvX6moTzeipLirAYkssieKeel6Ig4izKh6bS/IGhSwwp CntBmvip2CK/RfZIY/JKXwu2FEMdjIVoZNMhROKWnhFv+oylXumiqTDbChYLSdMQ VuZ7VTN+i+x4FXiKEYb0NAWm5mttPrmnnmSUTG+UDIPlRsHLKyK28UlLeuNmNdQy RFK99pEGcGf+umNHjUnjudskER/nrOUI+L045NysLmmkj0fEjBTbdmY= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org