$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer File: A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.cer (raw, json) Hash identifier: v5r22yZFCxlgJvDJad2ee/+tkqhRhE6aa+Rawc5VT3E= Subject key identifier: A4:B6:31:C8:CF:E0:EE:72:AC:D5:F2:08:FC:12:39:06:4F:6C:DE:44 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 4A501F96046A0C42993F72C2E0604F267838C314 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.mft caRepository: rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 23 Jun 2024 09:18:27 +0000 Certificate not after: Sun 22 Jun 2025 09:23:27 +0000 Subordinate resources: IP: 157.66.248.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:50:1f:96:04:6a:0c:42:99:3f:72:c2:e0:60:4f:26:78:38:c3:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 23 09:18:27 2024 GMT Not After : Jun 22 09:23:27 2025 GMT Subject: CN=A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:b2:a5:bc:4a:bc:14:46:83:1e:bb:e2:e7: 3a:f2:34:0f:4e:65:8b:12:fa:25:14:1c:aa:72:ac: ac:8a:b1:ec:69:56:e2:43:43:38:47:f1:a8:6d:d2: 5d:76:b6:c8:b6:94:ee:51:48:6e:de:f6:14:f2:40: 6e:23:59:8e:7a:c9:0e:34:b6:a4:a2:7f:25:01:36: 4d:09:3a:62:db:6a:97:88:d4:f5:19:32:73:25:f7: 93:53:43:cc:91:95:8b:67:80:c7:bb:4e:dd:5e:56: 38:41:3d:e1:8c:83:1a:7d:53:ab:c7:9f:36:c3:c5: 31:22:95:15:9a:fd:e4:ee:64:19:40:10:65:dd:6b: 44:b3:c3:1f:93:43:98:6f:ea:48:c8:e4:d2:ba:31: c5:d4:37:be:1b:6f:06:f9:10:a4:f4:54:e8:75:a6: 63:fe:96:3b:5c:95:01:f8:17:8b:05:6e:8b:11:9e: c7:c1:9a:c8:6a:1a:0f:01:17:7d:66:26:d2:ea:a3: 55:61:92:0e:f4:8b:15:6b:d4:e5:46:82:d6:dd:77: 08:aa:b5:65:b2:21:03:f0:b2:d8:78:a5:f8:69:78: ea:3c:9a:b9:16:ce:22:15:12:7f:4e:9e:60:8b:51: 7d:2c:a2:88:8e:ba:5f:d3:fd:86:f7:72:61:6e:7d: cc:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A4:B6:31:C8:CF:E0:EE:72:AC:D5:F2:08:FC:12:39:06:4F:6C:DE:44 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b3991f7a-0a71-4f0d-933f-ecf813530274/0/A4B631C8CFE0EE72ACD5F208FC1239064F6CDE44.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.248.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:4b:81:13:94:dd:e8:2d:c1:c8:74:e6:c4:d1:9f:b7:86:70: 65:dc:9c:74:ec:88:6c:8e:6c:8b:79:ab:3f:83:e1:c3:23:c3: 21:80:b4:4a:d9:d6:90:3c:8a:dd:82:47:6e:5d:68:bd:b8:60: f6:b8:1b:9b:3b:b8:40:c2:df:57:89:fe:4a:2a:e5:f0:db:64: 05:00:4d:55:40:2e:fd:59:83:ae:36:43:9a:f2:56:61:5d:89: 07:9d:43:70:46:a3:a8:a0:6c:92:f9:d9:44:d3:05:ac:00:f3: 68:16:ec:bf:83:38:23:85:71:26:15:b7:7b:ca:ae:24:eb:92: f5:31:ec:5b:f4:b9:c0:14:29:ef:b1:5a:09:d1:6d:3c:c8:cd: a2:fc:58:67:a4:ac:35:76:a3:d2:c6:2b:3d:0d:05:28:02:50: 7e:1f:2c:5e:cf:89:dd:21:40:20:ad:18:83:99:2b:b1:c7:5a: b8:c3:3f:68:13:52:1f:45:ae:d5:73:1c:e3:d9:82:c3:48:e9: a1:71:6e:76:42:d1:3e:6a:bb:93:2c:36:1d:71:d9:66:53:f2: ab:0c:69:20:65:ef:0e:b7:87:82:68:2d:c6:aa:58:a9:e2:43: b9:39:ec:b4:99:4f:e0:b6:cd:70:8d:83:1c:63:79:4d:96:28: 1c:eb:e1:6f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUSlAflgRqDEKZP3LC4GBPJng4wxQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYyMzA5MTgyN1oX DTI1MDYyMjA5MjMyN1owMzExMC8GA1UEAxMoQTRCNjMxQzhDRkUwRUU3MkFDRDVG MjA4RkMxMjM5MDY0RjZDREU0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALX/sqW8SrwURoMeu+LnOvI0D05lixL6JRQcqnKsrIqx7GlW4kNDOEfxqG3S XXa2yLaU7lFIbt72FPJAbiNZjnrJDjS2pKJ/JQE2TQk6Yttql4jU9RkycyX3k1ND zJGVi2eAx7tO3V5WOEE94YyDGn1Tq8efNsPFMSKVFZr95O5kGUAQZd1rRLPDH5ND mG/qSMjk0roxxdQ3vhtvBvkQpPRU6HWmY/6WO1yVAfgXiwVuixGex8GayGoaDwEX fWYm0uqjVWGSDvSLFWvU5UaC1t13CKq1ZbIhA/Cy2Hil+Gl46jyauRbOIhUSf06e YItRfSyiiI66X9P9hvdyYW59zAkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKS2McjP4O5yrNXyCPwSOQZPbN5EMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iMzk5MWY3YS0wYTcxLTRmMGQtOTMzZi1lY2Y4MTM1MzAyNzQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2IzOTkxZjdh LTBhNzEtNGYwZC05MzNmLWVjZjgxMzUzMDI3NC8wL0E0QjYzMUM4Q0ZFMEVFNzJB Q0Q1RjIwOEZDMTIzOTA2NEY2Q0RFNDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQvgwDQYJKoZIhvcNAQELBQADggEBAB5LgROU3egtwch05sTRn7eGcGXcnHTs iGyObIt5qz+D4cMjwyGAtErZ1pA8it2CR25daL24YPa4G5s7uEDC31eJ/koq5fDb ZAUATVVALv1Zg642Q5ryVmFdiQedQ3BGo6igbJL52UTTBawA82gW7L+DOCOFcSYV t3vKriTrkvUx7Fv0ucAUKe+xWgnRbTzIzaL8WGekrDV2o9LGKz0NBSgCUH4fLF7P id0hQCCtGIOZK7HHWrjDP2gTUh9FrtVzHOPZgsNI6aFxbnZC0T5qu5MsNh1x2WZT 8qsMaSBl7w63h4JoLcaqWKniQ7k57LSZT+C2zXCNgxxjeU2WKBzr4W8= -----END CERTIFICATE-----Generated at Wed Nov 20 06:21:51 2024 by rpki-client on console-ams.rpki-client.org