$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer File: AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer (raw, json) Hash identifier: h1gBhaLH8qHnvtVznks2XoSWmkaHoUOWrDxta4edB18= Subject key identifier: AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 79F5A7CAC321FC051AB47529706FEA45F3D93FF8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.mft caRepository: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Apr 2024 04:04:55 +0000 Certificate not after: Fri 04 Apr 2025 04:09:55 +0000 Subordinate resources: IP: 157.10.181.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:f5:a7:ca:c3:21:fc:05:1a:b4:75:29:70:6f:ea:45:f3:d9:3f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 5 04:04:55 2024 GMT Not After : Apr 4 04:09:55 2025 GMT Subject: CN=AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:4f:33:a2:87:df:bd:99:fa:07:f8:f5:a7:64: 6e:90:9b:03:f6:94:e4:98:55:d3:ce:38:91:b4:11: 9a:0d:00:33:2e:11:4b:e4:d7:43:ce:3f:cd:b2:97: 12:2e:59:2c:3b:c1:62:72:e6:4e:05:a7:94:b8:3a: 68:32:e6:e5:18:2b:bd:14:0c:d7:a4:7d:ab:ef:da: e9:84:fc:dd:22:2a:d5:03:a3:8f:09:8e:7d:31:42: 42:9d:ad:96:87:f0:fe:a4:58:89:25:e9:c9:4c:ef: bb:8a:25:af:46:58:43:31:af:a6:a6:5f:4a:29:ab: a4:c5:34:3f:63:8f:23:63:e2:d7:97:f8:bf:17:e1: bb:ea:81:ec:0a:a8:11:60:28:72:12:71:aa:32:c8: 4e:ca:ad:94:3c:72:95:72:3e:a6:90:8d:55:e1:f9: ea:9b:08:f3:68:73:e6:27:4d:0d:65:83:c7:4b:99: 1b:d2:10:5a:82:f0:75:4c:29:0e:50:f7:db:a0:89: b7:f6:b8:ee:ce:bd:67:a5:92:f0:91:7d:7c:7d:42: 92:79:df:81:f2:36:69:4f:ac:d6:e1:b2:9b:5f:61: 29:2d:38:6b:c8:0a:87:97:8a:b9:bf:a7:4e:a2:ba: 2c:a1:34:5f:6f:2c:8e:7d:cb:ad:66:ae:34:19:d1: 71:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.181.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:6a:43:92:8a:a8:4a:8e:25:5b:10:23:78:ea:4f:d8:75:83: 6c:a2:f0:eb:08:46:dd:a0:11:b0:de:e2:f2:32:f5:ef:de:6c: 63:96:fd:17:a0:2d:c3:75:46:28:0a:55:8c:01:32:73:6d:b0: 33:b0:47:c2:a2:a9:9a:e6:64:71:3b:ba:0b:fb:f2:30:7e:16: 28:bd:2e:56:f8:05:ee:30:bc:7f:1e:3a:1f:e5:3d:18:cb:19: ee:d0:f9:6c:d8:22:32:bd:03:1f:86:c9:47:77:97:b2:5e:e5: 87:e0:b0:91:b8:b1:15:5b:f8:2f:5c:63:a5:27:61:4e:98:ad: 41:20:c3:49:a1:53:b3:d6:c0:46:f5:15:2a:50:20:3d:c5:14: 98:6f:80:7f:3c:06:70:18:ef:81:08:88:7f:a2:2f:b3:c7:47: 47:bb:84:77:12:43:2f:7b:76:ed:12:bd:e7:52:ac:81:e7:1f: 7a:28:89:3d:fe:39:44:0e:78:ec:a1:3a:d2:a8:f3:1d:6e:f3: 76:bc:30:0f:c5:56:ed:f2:de:08:f4:17:bb:ba:67:1c:a6:b4: 9e:67:9b:e0:fc:9e:a3:c1:4e:0a:ae:54:50:78:b7:c8:f7:30: 1a:4c:05:29:58:72:16:3c:9e:ae:91:da:bd:39:73:5a:29:e0: e1:d8:db:e5 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUefWnysMh/AUatHUpcG/qRfPZP/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwNTA0MDQ1NVoX DTI1MDQwNDA0MDk1NVowMzExMC8GA1UEAxMoQUZBN0FFM0Q3OTBBMUYwQzkxNEI4 Mzk5RTQ2OTVGNEQ2MzQyQjRDMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPxPM6KH372Z+gf49adkbpCbA/aU5JhV0844kbQRmg0AMy4RS+TXQ84/zbKX Ei5ZLDvBYnLmTgWnlLg6aDLm5RgrvRQM16R9q+/a6YT83SIq1QOjjwmOfTFCQp2t lofw/qRYiSXpyUzvu4olr0ZYQzGvpqZfSimrpMU0P2OPI2Pi15f4vxfhu+qB7Aqo EWAochJxqjLITsqtlDxylXI+ppCNVeH56psI82hz5idNDWWDx0uZG9IQWoLwdUwp DlD326CJt/a47s69Z6WS8JF9fH1CknnfgfI2aU+s1uGym19hKS04a8gKh5eKub+n TqK6LKE0X28sjn3LrWauNBnRcWUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK+nrj15Ch8MkUuDmeRpX01jQrTDMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOTBkMDI2NS0yY2MxLTQ2M2QtOTQ4Yi1jZGVkMTNhMjAyOTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5MGQwMjY1 LTJjYzEtNDYzZC05NDhiLWNkZWQxM2EyMDI5NS8wL0FGQTdBRTNENzkwQTFGMEM5 MTRCODM5OUU0Njk1RjRENjM0MkI0QzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdCrUwDQYJKoZIhvcNAQELBQADggEBAD9qQ5KKqEqOJVsQI3jqT9h1g2yi8OsI Rt2gEbDe4vIy9e/ebGOW/RegLcN1RigKVYwBMnNtsDOwR8KiqZrmZHE7ugv78jB+ Fii9Llb4Be4wvH8eOh/lPRjLGe7Q+WzYIjK9Ax+GyUd3l7Je5YfgsJG4sRVb+C9c Y6UnYU6YrUEgw0mhU7PWwEb1FSpQID3FFJhvgH88BnAY74EIiH+iL7PHR0e7hHcS Qy97du0SvedSrIHnH3ooiT3+OUQOeOyhOtKo8x1u83a8MA/FVu3y3gj0F7u6Zxym tJ5nm+D8nqPBTgquVFB4t8j3MBpMBSlYchY8nq6R2r05c1op4OHY2+U= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org