$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer File: C453630F1ABE5FF992F948A75DB4587776AD02EC.cer (raw, json) Hash identifier: gmDefDFj7OuSpM0JWlI7Iy35tPyewaKOSQGO62hpzKo= Subject key identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0F5961C59FE80EAAA78A1A71B80A0BA115B4A3FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft caRepository: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 07 May 2024 09:20:26 +0000 Certificate not after: Tue 06 May 2025 09:25:26 +0000 Subordinate resources: IP: 157.20.208.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:59:61:c5:9f:e8:0e:aa:a7:8a:1a:71:b8:0a:0b:a1:15:b4:a3:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 7 09:20:26 2024 GMT Not After : May 6 09:25:26 2025 GMT Subject: CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:53:2e:06:fe:e8:33:2e:2c:9c:6c:64:89:ed: b9:61:0c:13:3b:36:0a:3c:f6:c0:84:05:f2:00:44: 56:48:61:4e:93:a2:14:33:7e:9c:57:ed:c7:11:b4: 8b:c2:58:1c:1a:ad:55:5a:76:47:d0:4e:47:e2:5d: b5:67:0f:44:94:1e:ea:cf:37:66:62:83:bb:50:86: ce:a2:43:4a:0a:3c:4b:46:de:67:fd:6b:95:37:6a: 85:99:86:92:56:a5:06:52:71:4c:2e:a2:24:56:02: 55:49:52:2a:b2:5f:50:d5:95:c1:b3:46:79:c5:38: 9f:54:02:d0:71:a5:32:1f:30:21:0a:98:78:7d:5c: 4e:d3:08:9f:7b:94:f5:94:f6:99:93:89:dc:cb:42: 36:86:5e:1e:87:e6:35:b9:91:9a:e2:c9:53:29:2b: 3d:cd:36:9e:cf:9e:16:a7:1d:2e:cf:2c:62:b3:f5: 67:60:cb:7f:2e:37:ff:7c:5d:13:ea:8f:cb:11:7e: 1e:e4:bc:de:8c:a8:09:50:54:ab:75:7a:cd:13:61: 6b:4c:f4:99:a9:90:a4:8a:d1:d5:33:aa:53:85:e6: 57:fa:c4:25:68:2a:89:a2:ff:40:48:7b:1a:1b:69: 0b:b8:77:74:e5:9d:b8:a2:c7:cc:17:a2:b3:df:6d: 16:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.208.0/23 Signature Algorithm: sha256WithRSAEncryption 08:cd:e6:9a:dc:8d:90:16:9b:c8:4b:8a:96:fb:18:81:ba:46: ad:12:9e:a8:e1:22:fd:0d:c1:87:9c:43:c6:c7:06:c0:55:00: 9b:f3:4c:a0:dc:45:79:7c:98:f4:88:19:8d:be:15:10:d5:76: ec:13:42:01:28:b3:31:62:a3:3d:5d:24:eb:fb:46:65:90:68: c5:0f:ab:9e:1e:e2:1a:c2:6b:1d:84:5d:67:68:5f:74:fd:6a: c5:ce:02:cf:9d:1c:66:c6:79:52:95:b5:49:b5:30:c3:18:e2: f8:ab:da:94:ae:17:f0:26:1f:08:a4:c4:d1:e3:97:f6:78:40: 16:eb:67:64:6a:4d:45:63:1c:09:09:e7:bd:c2:10:36:75:9f: 0a:31:61:ce:ff:b9:8f:99:23:e0:39:9c:9a:17:17:ef:44:4b: 89:ec:34:1c:e4:f7:e0:fd:84:1c:d0:f3:00:4a:7a:eb:bc:16: ed:40:02:9a:af:94:4b:0c:6f:e5:66:27:c7:6c:d1:cc:1b:76: 7a:42:86:06:d7:29:60:54:99:68:99:3d:e5:21:2c:cb:c4:05: d1:97:94:92:dd:f4:1a:b5:b3:b0:37:51:62:58:b0:e5:ed:16: ac:c7:fd:7c:9f:fe:03:7f:90:9f:d1:b5:4d:a8:ca:82:67:5a: 55:b0:9f:44 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUD1lhxZ/oDqqnihpxuAoLoRW0o/wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDUwNzA5MjAyNloX DTI1MDUwNjA5MjUyNlowMzExMC8GA1UEAxMoQzQ1MzYzMEYxQUJFNUZGOTkyRjk0 OEE3NURCNDU4Nzc3NkFEMDJFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNTLgb+6DMuLJxsZIntuWEMEzs2Cjz2wIQF8gBEVkhhTpOiFDN+nFftxxG0 i8JYHBqtVVp2R9BOR+JdtWcPRJQe6s83ZmKDu1CGzqJDSgo8S0beZ/1rlTdqhZmG klalBlJxTC6iJFYCVUlSKrJfUNWVwbNGecU4n1QC0HGlMh8wIQqYeH1cTtMIn3uU 9ZT2mZOJ3MtCNoZeHofmNbmRmuLJUykrPc02ns+eFqcdLs8sYrP1Z2DLfy43/3xd E+qPyxF+HuS83oyoCVBUq3V6zRNha0z0mamQpIrR1TOqU4XmV/rEJWgqiaL/QEh7 GhtpC7h3dOWduKLHzBeis99tFq8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMRTYw8avl/5kvlIp120WHd2rQLsMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYzQwOTRkMi1lMThkLTQ4NDAtODRmYS1jNTc1N2FmNTgwZjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQy LWUxOGQtNDg0MC04NGZhLWM1NzU3YWY1ODBmMS8wL0M0NTM2MzBGMUFCRTVGRjk5 MkY5NDhBNzVEQjQ1ODc3NzZBRDAyRUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFNAwDQYJKoZIhvcNAQELBQADggEBAAjN5prcjZAWm8hLipb7GIG6Rq0Snqjh Iv0NwYecQ8bHBsBVAJvzTKDcRXl8mPSIGY2+FRDVduwTQgEoszFioz1dJOv7RmWQ aMUPq54e4hrCax2EXWdoX3T9asXOAs+dHGbGeVKVtUm1MMMY4vir2pSuF/AmHwik xNHjl/Z4QBbrZ2RqTUVjHAkJ573CEDZ1nwoxYc7/uY+ZI+A5nJoXF+9ES4nsNBzk 9+D9hBzQ8wBKeuu8Fu1AApqvlEsMb+VmJ8ds0cwbdnpChgbXKWBUmWiZPeUhLMvE BdGXlJLd9Bq1s7A3UWJYsOXtFqzH/Xyf/gN/kJ/RtU2oyoJnWlWwn0Q= -----END CERTIFICATE-----Generated at Wed Nov 20 05:42:54 2024 by rpki-client on console-fra.rpki-client.org