$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer File: B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.cer (raw, json) Hash identifier: iR/VCFaOuTOpISv89ckiNyPuv+Ifw8krR9FWlnzhzGM= Subject key identifier: B0:D6:73:B7:8D:BE:21:9F:1E:EE:F0:56:E3:E4:9F:B6:D5:8A:55:50 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 114E8EE8440C765F8AD79DCF46BE1BC27ADFFEAB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.mft caRepository: rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 11 Jun 2024 16:58:31 +0000 Certificate not after: Tue 10 Jun 2025 17:03:31 +0000 Subordinate resources: IP: 160.22.22.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:4e:8e:e8:44:0c:76:5f:8a:d7:9d:cf:46:be:1b:c2:7a:df:fe:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 11 16:58:31 2024 GMT Not After : Jun 10 17:03:31 2025 GMT Subject: CN=B0D673B78DBE219F1EEEF056E3E49FB6D58A5550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:73:08:da:c1:4a:48:bc:89:71:5e:90:86:39: fc:21:e8:f6:de:0b:c9:2a:97:24:aa:9a:d2:4b:05: 20:81:7f:b0:08:6d:c4:a7:2a:32:d1:55:8b:4d:52: 9b:60:69:4e:f1:70:81:7e:cd:fc:9c:b2:bf:83:2a: 15:64:2a:fe:b0:ee:41:77:b5:f0:93:83:f1:34:ed: e8:de:c1:6c:55:3b:39:f8:c5:c9:de:cf:c9:f3:2f: ee:8e:55:3f:d9:6c:a7:11:df:b6:01:20:88:97:07: 8f:4d:3c:00:7f:6d:6a:a9:2a:e8:23:ab:84:f1:32: 8e:1f:a7:08:f4:35:62:90:04:b4:a3:c7:5e:33:a0: 80:91:ef:1f:39:bd:d8:55:a1:e6:8f:f3:31:00:9a: e6:23:13:2b:da:11:52:05:3b:8e:ef:40:e3:0d:8f: 8a:76:41:ab:7d:e2:18:7b:24:a0:04:ac:22:1c:f9: 25:98:ec:5c:1b:25:a9:d2:8b:dc:63:78:c6:3a:f3: 7f:ed:28:d2:7a:c1:de:53:68:f4:93:de:9e:be:34: 2a:37:d2:ef:43:16:58:e7:e3:4f:b9:92:55:8c:d1: d6:0f:c2:ff:d6:b9:1a:cb:6f:d2:f0:25:a0:f4:5d: cd:e6:97:96:fb:bd:bf:0e:fa:d3:6e:07:98:42:dc: 93:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B0:D6:73:B7:8D:BE:21:9F:1E:EE:F0:56:E3:E4:9F:B6:D5:8A:55:50 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0f7d2894-c077-421c-bc1d-37d6f9d9897d/0/B0D673B78DBE219F1EEEF056E3E49FB6D58A5550.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.22.0/23 Signature Algorithm: sha256WithRSAEncryption 13:9f:05:d0:60:a1:3d:26:c2:88:83:a4:67:6e:49:20:a7:de: bb:57:69:b0:7a:b4:7d:ac:f7:23:20:e7:af:4c:45:9f:ed:84: f4:37:b2:8b:16:7d:64:d4:7f:d1:1d:b7:aa:1c:fe:1b:0b:b1: fc:cc:2d:81:5f:87:9e:5f:48:cb:c4:ec:9e:bf:18:af:ab:57: e7:27:12:7b:bb:e6:bb:be:d9:e5:e8:81:30:cc:61:c3:d3:13: 8d:2d:ba:2b:3f:e7:ce:37:6d:5e:7f:51:70:44:06:3f:c6:36: 3a:47:4d:bf:61:79:bc:22:4d:43:75:54:7a:c6:e2:14:98:ab: 98:44:a9:dd:fc:ba:a5:c6:23:0d:a3:ec:cf:6f:64:b7:01:e2: f2:2e:46:75:23:c0:99:14:09:b1:d7:91:fc:4f:56:af:36:ae: 35:0d:2d:fa:63:a5:d1:f8:d1:ec:1a:42:35:a0:60:25:c2:5d: 1f:73:8f:d8:15:8c:43:2e:ab:e2:16:68:99:64:ff:b5:12:cc: ca:20:50:f8:85:0d:29:8b:c9:65:b7:98:e7:fa:09:ec:4e:99: bf:ee:32:19:8e:d0:87:41:12:a6:69:3d:34:24:15:2a:c7:99: 34:36:af:e1:d1:56:fa:12:bd:90:50:fc:6b:9f:aa:55:92:10: 41:82:f3:19 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEU6O6EQMdl+K153PRr4bwnrf/qswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYxMTE2NTgzMVoX DTI1MDYxMDE3MDMzMVowMzExMC8GA1UEAxMoQjBENjczQjc4REJFMjE5RjFFRUVG MDU2RTNFNDlGQjZENThBNTU1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALxzCNrBSki8iXFekIY5/CHo9t4LySqXJKqa0ksFIIF/sAhtxKcqMtFVi01S m2BpTvFwgX7N/Jyyv4MqFWQq/rDuQXe18JOD8TTt6N7BbFU7OfjFyd7PyfMv7o5V P9lspxHftgEgiJcHj008AH9taqkq6COrhPEyjh+nCPQ1YpAEtKPHXjOggJHvHzm9 2FWh5o/zMQCa5iMTK9oRUgU7ju9A4w2PinZBq33iGHskoASsIhz5JZjsXBslqdKL 3GN4xjrzf+0o0nrB3lNo9JPenr40KjfS70MWWOfjT7mSVYzR1g/C/9a5Gstv0vAl oPRdzeaXlvu9vw76024HmELck58CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLDWc7eNviGfHu7wVuPkn7bVilVQMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZjdkMjg5NC1jMDc3LTQyMWMtYmMxZC0zN2Q2ZjlkOTg5N2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmN2QyODk0 LWMwNzctNDIxYy1iYzFkLTM3ZDZmOWQ5ODk3ZC8wL0IwRDY3M0I3OERCRTIxOUYx RUVFRjA1NkUzRTQ5RkI2RDU4QTU1NTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFhYwDQYJKoZIhvcNAQELBQADggEBABOfBdBgoT0mwoiDpGduSSCn3rtXabB6 tH2s9yMg569MRZ/thPQ3sosWfWTUf9Edt6oc/hsLsfzMLYFfh55fSMvE7J6/GK+r V+cnEnu75ru+2eXogTDMYcPTE40tuis/5843bV5/UXBEBj/GNjpHTb9hebwiTUN1 VHrG4hSYq5hEqd38uqXGIw2j7M9vZLcB4vIuRnUjwJkUCbHXkfxPVq82rjUNLfpj pdH40ewaQjWgYCXCXR9zj9gVjEMuq+IWaJlk/7USzMogUPiFDSmLyWW3mOf6CexO mb/uMhmO0IdBEqZpPTQkFSrHmTQ2r+HRVvoSvZBQ/GufqlWSEEGC8xk= -----END CERTIFICATE-----Generated at Fri Jun 21 22:04:32 2024 by rpki-client on console-fra.rpki-client.org