$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer (raw, json) Hash identifier: kFpiNu0+7YHtu+eALiOLn8UKTutJMSFR2+G2f0jtFZc= Subject key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 37EEF5157639C74EF1D0CE1E17952CCE75965C4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft caRepository: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 Feb 2024 07:20:54 +0000 Certificate not after: Thu 13 Feb 2025 07:25:54 +0000 Subordinate resources: IP: 157.10.158.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ee:f5:15:76:39:c7:4e:f1:d0:ce:1e:17:95:2c:ce:75:96:5c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 15 07:20:54 2024 GMT Not After : Feb 13 07:25:54 2025 GMT Subject: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:7e:d9:98:d6:b5:00:4d:29:be:4c:b1:1e:6f: 18:b4:9f:74:14:39:95:88:f0:a1:16:57:db:30:cb: 15:d6:12:b0:71:0d:0b:06:f4:f4:a2:63:78:32:1b: df:65:05:d4:ab:88:84:19:30:be:02:a6:06:75:bb: 4d:de:06:72:16:bf:b7:42:84:b3:7b:87:51:88:b1: 3f:93:03:10:c3:09:96:3e:ad:6d:14:ba:29:2d:89: f6:e2:30:99:2b:30:28:22:9f:38:2b:c4:3a:1c:88: ce:d5:61:ee:71:d7:d9:65:c1:78:38:d6:d7:9c:38: 45:ce:14:62:fe:b6:47:2a:d2:3a:2f:45:be:df:42: e3:09:b5:e1:fd:cc:1f:01:f7:b4:0e:3a:e4:d8:9c: 99:eb:f2:f8:aa:6c:bd:7d:66:e6:69:9e:f1:17:79: a4:d7:91:b0:db:83:86:1a:56:6c:07:f2:1e:0c:99: 3e:c6:eb:4a:9c:c0:9b:6d:3a:4d:ac:95:1a:c3:8b: 1f:38:e0:c9:5c:66:31:12:88:70:38:be:cd:b9:8d: 84:f2:0e:ca:04:91:f4:66:b0:54:51:9b:69:f5:f7: 40:6c:01:b3:bb:19:a5:f6:97:4a:f3:11:43:64:b3: 83:33:90:d7:8c:c4:19:c0:5d:ea:c4:6e:b0:3f:39: ef:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.158.0/23 Signature Algorithm: sha256WithRSAEncryption 09:fe:e3:a6:a4:5c:80:7a:8f:1f:bb:1f:79:0a:0e:10:45:4d: f3:22:fd:c3:bc:7f:30:09:6d:9b:7e:2f:e8:7d:e5:28:39:88: c0:38:5a:fe:e8:4a:99:56:26:be:50:7a:69:ba:06:57:18:98: 7a:b6:74:b9:07:72:99:0a:4b:83:38:88:72:0f:f6:63:68:34: 0e:b0:63:8c:e6:cd:e6:5e:40:c4:de:c0:f7:8b:28:2c:d5:35: 2d:ef:5c:9a:1e:6f:61:6f:b9:d6:5c:71:01:1b:11:ff:1c:29: ca:d7:f4:09:8e:99:11:38:c1:e7:d6:f1:5c:84:51:dc:83:69: 95:3e:03:71:a3:02:4c:30:d5:c0:24:4c:9f:90:20:80:ec:36: 4b:76:30:76:d2:44:6c:ea:93:27:a6:6e:7b:e7:52:d2:58:f8: 42:ea:8f:1e:a5:eb:c4:d3:33:07:f6:09:ad:b6:4c:9c:a2:c2: 94:3f:a5:17:0f:36:b7:55:06:b0:ab:a0:aa:0e:ab:13:5f:28: 36:87:dc:0e:23:b1:b9:87:fb:56:db:51:b4:9d:a2:87:e3:ae: 7f:9d:42:b2:9c:ad:38:ec:dd:d2:1b:52:cd:42:62:5b:a2:8b: fe:34:de:cd:ab:c4:66:78:d8:c3:88:88:7e:88:46:18:da:1a: a3:14:a4:17 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUN+71FXY5x07x0M4eF5UsznWWXEwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxNTA3MjA1NFoX DTI1MDIxMzA3MjU1NFowMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2 Q0I0NENFNzVBRDc0M0VGNTQ0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPl+2ZjWtQBNKb5MsR5vGLSfdBQ5lYjwoRZX2zDLFdYSsHENCwb09KJjeDIb 32UF1KuIhBkwvgKmBnW7Td4Gcha/t0KEs3uHUYixP5MDEMMJlj6tbRS6KS2J9uIw mSswKCKfOCvEOhyIztVh7nHX2WXBeDjW15w4Rc4UYv62RyrSOi9Fvt9C4wm14f3M HwH3tA465Nicmevy+KpsvX1m5mme8Rd5pNeRsNuDhhpWbAfyHgyZPsbrSpzAm206 TayVGsOLHzjgyVxmMRKIcDi+zbmNhPIOygSR9GawVFGbafX3QGwBs7sZpfaXSvMR Q2SzgzOQ14zEGcBd6sRusD857zUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFInc2enrVC0gK6NstEznWtdD71ROMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MjU4ZTVj LTA0NTYtNDZhMy05NjMyLTcwOWM3NjcxMDRiYi8wLzg5RENEOUU5RUI1NDJEMjAy QkEzNkNCNDRDRTc1QUQ3NDNFRjU0NEUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdCp4wDQYJKoZIhvcNAQELBQADggEBAAn+46akXIB6jx+7H3kKDhBFTfMi/cO8 fzAJbZt+L+h95Sg5iMA4Wv7oSplWJr5Qemm6BlcYmHq2dLkHcpkKS4M4iHIP9mNo NA6wY4zmzeZeQMTewPeLKCzVNS3vXJoeb2FvudZccQEbEf8cKcrX9AmOmRE4wefW 8VyEUdyDaZU+A3GjAkww1cAkTJ+QIIDsNkt2MHbSRGzqkyembnvnUtJY+ELqjx6l 68TTMwf2Ca22TJyiwpQ/pRcPNrdVBrCroKoOqxNfKDaH3A4jsbmH+1bbUbSdoofj rn+dQrKcrTjs3dIbUs1CYluii/403s2rxGZ42MOIiH6IRhjaGqMUpBc= -----END CERTIFICATE-----Generated at Fri Jun 21 22:04:32 2024 by rpki-client on console-fra.rpki-client.org