$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer File: B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer (raw, json) Hash identifier: dJdEvtn9DAgN8coDU3AG/soBEzebwMJufooTNs51WeQ= Subject key identifier: B1:4E:4E:1C:1A:A1:29:1B:A8:33:56:96:8F:8A:E4:8E:84:43:59:A9 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2C72290662D6048FF6C192DAB50ED99F3731E542 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.mft caRepository: rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 09 Jun 2024 04:34:16 +0000 Certificate not after: Sun 08 Jun 2025 04:39:16 +0000 Subordinate resources: IP: 160.22.28.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:72:29:06:62:d6:04:8f:f6:c1:92:da:b5:0e:d9:9f:37:31:e5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 9 04:34:16 2024 GMT Not After : Jun 8 04:39:16 2025 GMT Subject: CN=B14E4E1C1AA1291BA83356968F8AE48E844359A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:98:60:59:69:be:33:3d:44:b4:33:cc:4b:14: 69:cc:94:1b:5e:90:c8:28:b9:b4:6e:fc:6f:43:86: 5a:a3:6a:66:c2:b6:2d:24:94:10:c6:37:17:67:02: 33:b4:a0:99:4e:c9:f5:62:96:e4:8f:a4:32:6e:50: f5:c1:07:03:97:c6:4e:f4:39:c1:12:37:9d:8a:c0: 32:93:2d:b5:5a:d0:9b:a9:c9:21:34:b7:d5:d9:5b: 52:47:bc:47:c2:33:c5:43:3e:08:d5:63:b7:5c:c9: 45:eb:87:47:0c:91:56:c8:bf:0f:a0:08:64:a7:d8: 6f:ec:c1:3b:e8:95:bf:c4:26:0b:9f:f9:95:c5:42: c5:81:29:bb:f1:ac:58:db:20:f4:a6:83:6b:3d:7b: 3a:00:b5:76:d9:3f:44:9d:8c:b2:07:de:58:fc:84: ac:f0:11:fb:2a:84:47:ee:b8:dc:43:56:e4:d8:18: 08:a3:b2:15:79:45:1c:9d:f9:b7:92:c3:34:a0:9b: a9:76:af:da:28:f5:37:3b:f1:fe:58:6d:c6:2b:aa: f9:b6:3e:38:3f:06:b9:d6:7f:28:0e:d8:6d:8c:bf: 66:35:d3:c3:28:c8:9e:6b:54:cf:fb:6c:59:8f:76: 15:6c:eb:11:64:04:a9:2a:35:64:0d:a4:64:69:f1: 90:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:4E:4E:1C:1A:A1:29:1B:A8:33:56:96:8F:8A:E4:8E:84:43:59:A9 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.22.28.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:77:3e:31:fe:be:b8:ea:81:37:56:36:f1:97:61:fe:27:dc: 7b:10:c2:2b:34:71:f7:27:29:58:e5:24:65:7d:a3:ef:cb:c8: 46:ef:83:3d:cd:1f:8b:c2:fd:2f:bf:e0:61:3f:57:e0:14:b9: 9a:34:82:40:f0:f4:4e:b0:d9:b9:a7:cf:ea:f2:fd:9e:35:be: a8:e3:eb:c7:54:cb:a3:b8:f4:2e:4a:65:4a:c0:a3:fe:7b:6f: 8a:c0:8e:62:1c:90:35:e1:1e:42:a5:97:01:17:47:24:d5:8a: fc:3e:6a:08:72:fb:9f:5f:38:1b:bc:cc:0a:7b:26:66:84:f3: 0a:bb:a9:cd:8a:31:d2:a2:49:d2:f5:ad:b4:71:54:b9:27:1b: fc:be:a7:89:d5:51:ce:ca:8f:7a:b5:63:a2:66:67:a5:d5:a4: 55:a4:55:f1:b6:ca:b9:95:56:0b:e6:d2:c5:dc:0d:9c:86:6c: 1a:52:21:b8:61:67:0b:dd:99:85:75:59:84:b0:a8:3d:0b:1e: b5:33:00:d5:15:8c:cf:5c:36:d9:fc:f3:4c:b0:fe:b1:a3:ce: 90:c0:ca:56:af:83:db:2a:66:5f:05:ad:ad:3c:c0:ed:b9:09: eb:d5:fd:b4:93:bc:d0:cf:e3:d0:72:07:8f:40:73:20:18:ca: 0f:8a:7f:14 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULHIpBmLWBI/2wZLatQ7Znzcx5UIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDYwOTA0MzQxNloX DTI1MDYwODA0MzkxNlowMzExMC8GA1UEAxMoQjE0RTRFMUMxQUExMjkxQkE4MzM1 Njk2OEY4QUU0OEU4NDQzNTlBOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANeYYFlpvjM9RLQzzEsUacyUG16QyCi5tG78b0OGWqNqZsK2LSSUEMY3F2cC M7SgmU7J9WKW5I+kMm5Q9cEHA5fGTvQ5wRI3nYrAMpMttVrQm6nJITS31dlbUke8 R8IzxUM+CNVjt1zJReuHRwyRVsi/D6AIZKfYb+zBO+iVv8QmC5/5lcVCxYEpu/Gs WNsg9KaDaz17OgC1dtk/RJ2MsgfeWPyErPAR+yqER+643ENW5NgYCKOyFXlFHJ35 t5LDNKCbqXav2ij1Nzvx/lhtxiuq+bY+OD8GudZ/KA7YbYy/ZjXTwyjInmtUz/ts WY92FWzrEWQEqSo1ZA2kZGnxkAsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLFOThwaoSkbqDNWlo+K5I6EQ1mpMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wOTE0MmM4Mi1iMDQzLTQ2ZWItYjBhMS04ZTE1ZmQ1ZGFhNzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5MTQyYzgy LWIwNDMtNDZlYi1iMGExLThlMTVmZDVkYWE3OS8wL0IxNEU0RTFDMUFBMTI5MUJB ODMzNTY5NjhGOEFFNDhFODQ0MzU5QTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGgFhwwDQYJKoZIhvcNAQELBQADggEBAGx3PjH+vrjqgTdWNvGXYf4n3HsQwis0 cfcnKVjlJGV9o+/LyEbvgz3NH4vC/S+/4GE/V+AUuZo0gkDw9E6w2bmnz+ry/Z41 vqjj68dUy6O49C5KZUrAo/57b4rAjmIckDXhHkKllwEXRyTVivw+aghy+59fOBu8 zAp7JmaE8wq7qc2KMdKiSdL1rbRxVLknG/y+p4nVUc7Kj3q1Y6JmZ6XVpFWkVfG2 yrmVVgvm0sXcDZyGbBpSIbhhZwvdmYV1WYSwqD0LHrUzANUVjM9cNtn880yw/rGj zpDAylavg9sqZl8Fra08wO25CevV/bSTvNDP49ByB49AcyAYyg+KfxQ= -----END CERTIFICATE-----Generated at Fri Jun 21 22:04:32 2024 by rpki-client on console-fra.rpki-client.org