$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/9D23189F67CA669A4612567DD77CC645E3AFDF71.cer File: 9D23189F67CA669A4612567DD77CC645E3AFDF71.cer (raw, json) Hash identifier: RXv3sShtb4azPOpY10bFlyJqSDoJDM4/hpzlJgqJEhc= Subject key identifier: 9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7AEF88981EAC58809333E729B991AC0D04655E08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.mft caRepository: rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Apr 2024 07:03:14 +0000 Certificate not after: Tue 01 Apr 2025 07:08:14 +0000 Subordinate resources: IP: 157.15.76.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ef:88:98:1e:ac:58:80:93:33:e7:29:b9:91:ac:0d:04:65:5e:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 2 07:03:14 2024 GMT Not After : Apr 1 07:08:14 2025 GMT Subject: CN=9D23189F67CA669A4612567DD77CC645E3AFDF71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bd:1e:f5:f8:29:80:40:53:51:93:c6:27:bd: 82:16:ea:b1:45:48:95:d5:9c:81:27:b2:b3:e4:35: a0:c5:6f:d1:e6:c5:3a:14:77:22:1d:7a:bc:7e:f0: 90:e0:4d:66:54:d6:59:d7:09:67:4e:5b:61:c7:f6: 95:dc:2a:2c:6b:2b:79:fc:cd:73:f9:bf:25:5c:5f: ad:f1:8b:97:07:64:72:84:84:7f:dd:c2:d4:16:31: cb:1c:8b:60:69:74:92:5b:e7:47:7c:a6:a9:4c:63: 6d:36:9a:87:22:df:22:9e:4c:88:b6:8e:ef:68:3d: 30:b7:f2:71:d9:5c:07:74:e8:e7:56:71:6d:c1:2a: be:56:ab:11:df:35:b6:ef:ce:a6:1d:c7:55:f6:f5: b0:24:32:a5:3a:ec:d7:d4:4b:6e:0f:06:45:66:e8: cd:a6:b9:d0:06:ff:33:bd:be:44:47:55:8e:a0:53: 19:40:ab:92:7d:dc:ef:c8:ef:5f:03:01:20:d2:99: b7:45:fb:c1:17:fa:0b:a3:96:51:9d:39:de:bf:1c: ea:8e:2d:4e:90:38:16:df:d1:13:70:c4:b2:3b:f7: 00:6e:24:32:64:a3:b9:3f:05:58:7c:17:7e:7a:21: b1:d2:0f:61:86:29:73:9a:fe:56:96:bf:72:47:73: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9D:23:18:9F:67:CA:66:9A:46:12:56:7D:D7:7C:C6:45:E3:AF:DF:71 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/935acb07-9d5f-497f-9932-33a434d3aa32/0/9D23189F67CA669A4612567DD77CC645E3AFDF71.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.76.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:96:05:b7:e8:2a:e6:8d:87:a6:6b:9c:72:70:84:72:4d:6d: 48:e4:9b:35:b7:84:7d:5e:97:3b:e5:0c:9e:d9:0d:45:b7:69: 40:08:49:6f:a8:19:89:47:a8:52:24:f3:81:c7:1c:b8:bc:82: 78:eb:61:93:99:8d:e1:12:11:59:66:a1:e2:df:4b:47:9c:cb: c4:fa:f1:19:3f:a0:18:8e:c2:2d:1a:22:90:17:95:a9:f8:00: 89:1f:42:2d:4e:f7:61:79:d7:0e:e1:73:24:0d:75:6e:48:37: d0:b2:7c:99:6b:9d:45:4e:44:73:f3:62:14:b9:74:4e:b7:66: fa:c3:42:55:f1:7e:af:c5:3f:2f:a9:ee:25:a1:e2:fa:8b:3b: 8d:6e:35:ba:91:74:36:5d:8d:90:1e:a3:53:c6:dd:a0:57:01: 02:ed:81:47:30:4a:73:3b:01:95:fe:10:1b:78:8f:f1:90:60: 83:e7:5a:5e:3e:c0:c6:f0:35:ae:a8:93:a9:d1:68:43:1c:c9: 54:16:d4:e3:88:6e:07:46:10:eb:a9:6a:ca:a3:75:ed:f9:27: 63:f3:33:2d:53:d8:26:7b:90:c4:11:d1:70:53:c2:3d:9f:76: ad:5e:c4:bb:5f:90:42:46:0e:a3:48:4c:2f:ec:a3:ea:f8:84: a8:7e:8f:dd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeu+ImB6sWICTM+cpuZGsDQRlXggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwMjA3MDMxNFoX DTI1MDQwMTA3MDgxNFowMzExMC8GA1UEAxMoOUQyMzE4OUY2N0NBNjY5QTQ2MTI1 NjdERDc3Q0M2NDVFM0FGREY3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+9HvX4KYBAU1GTxie9ghbqsUVIldWcgSeys+Q1oMVv0ebFOhR3Ih16vH7w kOBNZlTWWdcJZ05bYcf2ldwqLGsrefzNc/m/JVxfrfGLlwdkcoSEf93C1BYxyxyL YGl0klvnR3ymqUxjbTaahyLfIp5MiLaO72g9MLfycdlcB3To51ZxbcEqvlarEd81 tu/Oph3HVfb1sCQypTrs19RLbg8GRWbozaa50Ab/M72+REdVjqBTGUCrkn3c78jv XwMBINKZt0X7wRf6C6OWUZ053r8c6o4tTpA4Ft/RE3DEsjv3AG4kMmSjuT8FWHwX fnohsdIPYYYpc5r+Vpa/ckdzQesCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ0jGJ9nymaaRhJWfdd8xkXjr99xMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MzVhY2IwNy05ZDVmLTQ5N2YtOTkzMi0zM2E0MzRkM2FhMzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkzNWFjYjA3 LTlkNWYtNDk3Zi05OTMyLTMzYTQzNGQzYWEzMi8wLzlEMjMxODlGNjdDQTY2OUE0 NjEyNTY3REQ3N0NDNjQ1RTNBRkRGNzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdD0wwDQYJKoZIhvcNAQELBQADggEBAG6WBbfoKuaNh6ZrnHJwhHJNbUjkmzW3 hH1elzvlDJ7ZDUW3aUAISW+oGYlHqFIk84HHHLi8gnjrYZOZjeESEVlmoeLfS0ec y8T68Rk/oBiOwi0aIpAXlan4AIkfQi1O92F51w7hcyQNdW5IN9CyfJlrnUVORHPz YhS5dE63ZvrDQlXxfq/FPy+p7iWh4vqLO41uNbqRdDZdjZAeo1PG3aBXAQLtgUcw SnM7AZX+EBt4j/GQYIPnWl4+wMbwNa6ok6nRaEMcyVQW1OOIbgdGEOupasqjde35 J2PzMy1T2CZ7kMQR0XBTwj2fdq1exLtfkEJGDqNITC/so+r4hKh+j90= -----END CERTIFICATE-----Generated at Fri May 17 17:47:04 2024 by rpki-client on console-ams.rpki-client.org