$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer File: CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer (raw, json) Hash identifier: UCSABrm9fsMMBSK3gwODLkk8v4e2XKQT3kzHfRNqgu8= Subject key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2264E8CDFBB33A1B749766684FA1B542879DF208 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft caRepository: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 19 Mar 2024 08:45:55 +0000 Certificate not after: Tue 18 Mar 2025 08:50:55 +0000 Subordinate resources: IP: 157.15.62.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:64:e8:cd:fb:b3:3a:1b:74:97:66:68:4f:a1:b5:42:87:9d:f2:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 19 08:45:55 2024 GMT Not After : Mar 18 08:50:55 2025 GMT Subject: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:3a:63:29:13:c5:b1:5a:31:c7:ab:47:d7: ab:8c:b2:19:5c:c5:13:2d:f4:e1:84:d9:2c:5c:3a: 28:58:df:ce:e5:44:ab:50:fd:1d:a4:a1:16:72:14: a1:65:76:d8:8e:82:a0:53:ec:01:8c:28:34:3c:04: bf:c8:5f:a3:73:f9:6f:f5:be:bc:01:80:f2:ed:c6: 9a:ff:10:8d:74:24:54:a5:00:7a:49:ff:a2:f4:f8: 2a:f3:7f:be:8b:05:b5:86:8a:7d:37:64:7e:51:eb: ee:62:98:c5:1a:09:a4:0a:5d:16:2e:e6:6d:2a:8b: 42:8c:40:21:70:d5:55:40:6f:5a:70:d8:b2:9f:c2: b3:95:f8:81:b3:a6:49:1b:fb:75:ff:68:ec:61:91: ec:fb:60:8a:dd:4a:99:b5:a6:87:38:d6:83:1d:38: 18:5b:20:c9:e1:0e:1a:34:e4:da:f5:9d:f9:c1:4b: 0c:b3:07:a5:75:84:6c:67:59:66:e7:68:6c:5e:03: a5:ce:7a:91:b4:c8:c0:e7:88:01:f0:fb:cf:78:27: 54:3e:79:ca:03:7a:c9:33:45:60:6d:3a:da:1c:86: b4:52:5f:c0:8b:3e:92:36:fd:40:7b:7a:1c:ed:c0: d4:be:94:e8:2d:1b:ad:d3:ab:6e:4a:44:f3:67:14: 2a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/23 Signature Algorithm: sha256WithRSAEncryption 97:7f:6e:c2:f6:64:32:80:99:ad:b2:ee:24:7d:c7:d3:63:19: 13:0a:a5:c7:f7:78:3c:a0:cc:89:71:21:ec:ac:a6:f0:f8:c3: 04:12:99:5f:62:67:44:5e:d1:de:46:ae:b6:26:b4:eb:d1:12: e9:39:48:90:fd:34:e6:a6:0e:bf:88:d5:3d:14:1a:f5:b6:13: 11:cf:f2:e9:4e:04:e8:2e:01:a6:11:b3:4b:30:cd:fd:ad:d2: be:e8:6f:01:53:9b:33:1f:9e:0b:92:9b:d5:f8:38:ee:27:87: b1:c8:ae:54:4f:8a:56:91:b7:4a:64:44:d7:27:0e:63:78:9f: f3:96:4f:23:af:c0:75:e7:bf:97:9e:14:17:13:53:0f:40:93: 60:0d:86:15:cd:4b:14:18:5f:d0:c0:f5:62:5b:c1:99:fe:9a: d8:9d:37:65:7f:fa:82:69:f0:ca:f9:68:b7:20:c7:b0:4c:8d: 9e:41:1d:7d:19:bc:a7:7c:6e:38:36:e0:64:82:a7:6f:11:c8: 20:39:0c:9f:52:b1:8b:16:48:8c:4a:4f:61:2f:f5:ae:46:9c: 2e:01:f3:6b:d7:79:d0:1f:26:f2:9a:23:2c:f9:41:d1:9b:43: fa:6f:d9:7a:aa:ce:cd:ec:28:6d:ae:5f:23:d3:fb:b9:8d:27: 5f:82:c7:91 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUImTozfuzOht0l2ZoT6G1Qoed8ggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMxOTA4NDU1NVoX DTI1MDMxODA4NTA1NVowMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5 MjZFNkFBQTE2QUJFMzlCRjhFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTfOmMpE8WxWjHHq0fXq4yyGVzFEy304YTZLFw6KFjfzuVEq1D9HaShFnIU oWV22I6CoFPsAYwoNDwEv8hfo3P5b/W+vAGA8u3Gmv8QjXQkVKUAekn/ovT4KvN/ vosFtYaKfTdkflHr7mKYxRoJpApdFi7mbSqLQoxAIXDVVUBvWnDYsp/Cs5X4gbOm SRv7df9o7GGR7Ptgit1KmbWmhzjWgx04GFsgyeEOGjTk2vWd+cFLDLMHpXWEbGdZ ZudobF4Dpc56kbTIwOeIAfD7z3gnVD55ygN6yTNFYG062hyGtFJfwIs+kjb9QHt6 HO3A1L6U6C0brdOrbkpE82cUKu0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMtU3FJvohT59zaSbmqqFqvjm/joMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRh LWE4ZmYtNDAzNi04NDIwLWRhODE2MjExMTgwNi8wL0NCNTREQzUyNkZBMjE0RjlG NzM2OTI2RTZBQUExNkFCRTM5QkY4RTgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdDz4wDQYJKoZIhvcNAQELBQADggEBAJd/bsL2ZDKAma2y7iR9x9NjGRMKpcf3 eDygzIlxIeyspvD4wwQSmV9iZ0Re0d5GrrYmtOvREuk5SJD9NOamDr+I1T0UGvW2 ExHP8ulOBOguAaYRs0swzf2t0r7obwFTmzMfnguSm9X4OO4nh7HIrlRPilaRt0pk RNcnDmN4n/OWTyOvwHXnv5eeFBcTUw9Ak2ANhhXNSxQYX9DA9WJbwZn+mtidN2V/ +oJp8Mr5aLcgx7BMjZ5BHX0ZvKd8bjg24GSCp28RyCA5DJ9SsYsWSIxKT2Ev9a5G nC4B82vXedAfJvKaIyz5QdGbQ/pv2Xqqzs3sKG2uXyPT+7mNJ1+Cx5E= -----END CERTIFICATE-----Generated at Fri May 17 17:47:04 2024 by rpki-client on console-ams.rpki-client.org