$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/8999E6DA986A355F868ABD73E4E2AADC08244F29.cer File: 8999E6DA986A355F868ABD73E4E2AADC08244F29.cer (raw, json) Hash identifier: af1FAZcM3Zup266kyemSwbTlXNDSqIUZRXboCWNZhSE= Subject key identifier: 89:99:E6:DA:98:6A:35:5F:86:8A:BD:73:E4:E2:AA:DC:08:24:4F:29 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 59DBB55E70C1152ED6197FE260EFA43AB96DBD43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/8999E6DA986A355F868ABD73E4E2AADC08244F29.mft caRepository: rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 19 Jun 2024 10:04:37 +0000 Certificate not after: Wed 18 Jun 2025 10:09:37 +0000 Subordinate resources: IP: 157.66.57.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:db:b5:5e:70:c1:15:2e:d6:19:7f:e2:60:ef:a4:3a:b9:6d:bd:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 19 10:04:37 2024 GMT Not After : Jun 18 10:09:37 2025 GMT Subject: CN=8999E6DA986A355F868ABD73E4E2AADC08244F29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:70:81:e0:b9:93:d0:ea:b0:b9:52:22:93:1c: 74:72:b5:e1:b0:20:f1:16:22:e1:4a:bb:eb:2a:49: 9c:22:e5:ce:3d:62:3c:a2:3a:07:cb:f6:05:89:27: 8e:f1:7e:d2:3e:6d:c0:0a:2c:d5:fa:9b:9b:e2:e3: 1a:04:29:9a:51:cf:03:c7:e4:51:5b:18:4d:5b:fe: 53:b8:2b:32:b6:8c:35:ff:b0:8d:b4:b5:97:94:ce: 54:53:7b:e6:f5:b2:ab:92:ad:f6:64:ae:ec:bb:44: 86:af:10:30:97:58:8a:0b:1a:fc:88:76:cc:b2:a2: 46:3a:15:93:08:8c:79:6d:92:87:86:f7:78:3f:d4: 76:a1:b4:5a:35:20:73:c2:0f:52:26:e4:8a:ba:d2: 14:b4:c9:ec:15:4d:0f:d2:a5:33:d9:d9:48:fc:11: e5:d7:11:a9:e9:f0:c2:38:1d:3e:df:e6:00:93:a0: f2:8c:ca:c7:ff:9c:8a:84:c7:8b:a2:37:a0:aa:16: 45:21:9b:a6:60:ed:cb:1d:d9:07:9b:cf:15:79:27: 00:36:dd:12:a0:67:b9:58:a7:25:6c:d4:50:33:ee: aa:2e:7e:93:a7:8b:25:86:8f:21:9c:0b:39:3e:9b: a6:5a:7e:08:08:60:77:a1:73:46:63:5c:69:69:4f: 66:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:99:E6:DA:98:6A:35:5F:86:8A:BD:73:E4:E2:AA:DC:08:24:4F:29 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9329793e-8f18-4116-9268-a133daf11cef/0/8999E6DA986A355F868ABD73E4E2AADC08244F29.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.57.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:24:9e:f4:de:bd:43:09:5f:f8:ea:7d:e7:5f:27:a3:4b:34: 90:65:a8:9e:99:8c:ed:b2:8d:b9:7a:7d:57:9f:0c:4b:b0:cf: f3:b4:09:ba:3f:65:53:fa:63:31:56:48:78:9a:00:7d:82:76: 95:c2:98:fd:1a:c5:e6:63:6e:15:01:d5:a2:7c:2c:62:1a:5a: 18:b7:b4:6b:b5:dd:06:29:42:ae:9d:6f:fc:dd:34:00:18:34: 99:11:3e:35:b5:14:e7:ff:5d:a4:f8:7e:80:65:58:ea:bc:9e: 7d:22:f4:a5:4f:c3:84:72:5b:41:37:a5:a2:6f:8a:3c:04:37: 4a:4b:f1:e2:e6:9a:17:af:6b:8a:14:b4:1c:7b:ec:a1:cb:a3: 3b:34:fc:34:0e:ef:d4:22:da:20:d4:2e:13:4c:ad:9d:80:7f: 3e:e3:72:80:17:5f:c1:bd:fc:43:b0:a4:6f:69:a3:cc:6b:6b: 43:3a:dd:94:d3:52:8a:7c:f4:42:0b:4b:b3:39:0f:79:a6:2f: 90:2f:cd:b1:ed:bf:0c:63:87:bc:0b:1c:58:0a:29:bd:2d:80: 1b:36:84:21:58:ca:b2:1b:82:7a:19:90:d9:be:67:40:eb:e5: bb:4c:e0:37:03:d7:08:b2:f4:c6:40:3f:6f:3a:f3:f7:04:a0: 30:2e:62:51 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWdu1XnDBFS7WGX/iYO+kOrltvUMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYxOTEwMDQzN1oX DTI1MDYxODEwMDkzN1owMzExMC8GA1UEAxMoODk5OUU2REE5ODZBMzU1Rjg2OEFC RDczRTRFMkFBREMwODI0NEYyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANtwgeC5k9DqsLlSIpMcdHK14bAg8RYi4Uq76ypJnCLlzj1iPKI6B8v2BYkn jvF+0j5twAos1fqbm+LjGgQpmlHPA8fkUVsYTVv+U7grMraMNf+wjbS1l5TOVFN7 5vWyq5Kt9mSu7LtEhq8QMJdYigsa/Ih2zLKiRjoVkwiMeW2Sh4b3eD/UdqG0WjUg c8IPUibkirrSFLTJ7BVND9KlM9nZSPwR5dcRqenwwjgdPt/mAJOg8ozKx/+cioTH i6I3oKoWRSGbpmDtyx3ZB5vPFXknADbdEqBnuVinJWzUUDPuqi5+k6eLJYaPIZwL OT6bplp+CAhgd6FzRmNcaWlPZv8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFImZ5tqYajVfhoq9c+TiqtwIJE8pMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MzI5NzkzZS04ZjE4LTQxMTYtOTI2OC1hMTMzZGFmMTFjZWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzMjk3OTNl LThmMTgtNDExNi05MjY4LWExMzNkYWYxMWNlZi8wLzg5OTlFNkRBOTg2QTM1NUY4 NjhBQkQ3M0U0RTJBQURDMDgyNDRGMjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdQjkwDQYJKoZIhvcNAQELBQADggEBADsknvTevUMJX/jqfedfJ6NLNJBlqJ6Z jO2yjbl6fVefDEuwz/O0Cbo/ZVP6YzFWSHiaAH2CdpXCmP0axeZjbhUB1aJ8LGIa Whi3tGu13QYpQq6db/zdNAAYNJkRPjW1FOf/XaT4foBlWOq8nn0i9KVPw4RyW0E3 paJvijwEN0pL8eLmmheva4oUtBx77KHLozs0/DQO79Qi2iDULhNMrZ2Afz7jcoAX X8G9/EOwpG9po8xra0M63ZTTUop89EILS7M5D3mmL5AvzbHtvwxjh7wLHFgKKb0t gBs2hCFYyrIbgnoZkNm+Z0Dr5btM4DcD1wiy9MZAP2868/cEoDAuYlE= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org