$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer File: CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.cer (raw, json) Hash identifier: KfEFaDIjnje2T+CYC3GeLbTr5o8KgzTwnvA7XJvw3xU= Subject key identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2EB23BC331DC3801FFC6B7602575AA8E9F55065A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft caRepository: rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 18 Feb 2025 22:38:33 +0000 Certificate not after: Tue 17 Feb 2026 22:43:33 +0000 Subordinate resources: IP: 157.15.62.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b2:3b:c3:31:dc:38:01:ff:c6:b7:60:25:75:aa:8e:9f:55:06:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 18 22:38:33 2025 GMT Not After : Feb 17 22:43:33 2026 GMT Subject: CN=CB54DC526FA214F9F736926E6AAA16ABE39BF8E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:df:3a:63:29:13:c5:b1:5a:31:c7:ab:47:d7: ab:8c:b2:19:5c:c5:13:2d:f4:e1:84:d9:2c:5c:3a: 28:58:df:ce:e5:44:ab:50:fd:1d:a4:a1:16:72:14: a1:65:76:d8:8e:82:a0:53:ec:01:8c:28:34:3c:04: bf:c8:5f:a3:73:f9:6f:f5:be:bc:01:80:f2:ed:c6: 9a:ff:10:8d:74:24:54:a5:00:7a:49:ff:a2:f4:f8: 2a:f3:7f:be:8b:05:b5:86:8a:7d:37:64:7e:51:eb: ee:62:98:c5:1a:09:a4:0a:5d:16:2e:e6:6d:2a:8b: 42:8c:40:21:70:d5:55:40:6f:5a:70:d8:b2:9f:c2: b3:95:f8:81:b3:a6:49:1b:fb:75:ff:68:ec:61:91: ec:fb:60:8a:dd:4a:99:b5:a6:87:38:d6:83:1d:38: 18:5b:20:c9:e1:0e:1a:34:e4:da:f5:9d:f9:c1:4b: 0c:b3:07:a5:75:84:6c:67:59:66:e7:68:6c:5e:03: a5:ce:7a:91:b4:c8:c0:e7:88:01:f0:fb:cf:78:27: 54:3e:79:ca:03:7a:c9:33:45:60:6d:3a:da:1c:86: b4:52:5f:c0:8b:3e:92:36:fd:40:7b:7a:1c:ed:c0: d4:be:94:e8:2d:1b:ad:d3:ab:6e:4a:44:f3:67:14: 2a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CB:54:DC:52:6F:A2:14:F9:F7:36:92:6E:6A:AA:16:AB:E3:9B:F8:E8 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/51234c4a-a8ff-4036-8420-da8162111806/0/CB54DC526FA214F9F736926E6AAA16ABE39BF8E8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.62.0/23 Signature Algorithm: sha256WithRSAEncryption 03:c1:50:b6:71:8b:9b:58:25:7d:b5:ef:52:af:a9:8d:4f:82: 31:6b:70:18:1e:f8:b7:84:b5:6f:84:9d:be:7c:e1:87:4b:83: 91:0b:6f:6b:c2:db:0f:12:8c:69:14:30:0f:b2:2f:c0:7f:91: b6:54:53:71:14:b4:1d:e5:56:0f:43:1a:8f:9c:44:94:81:12: ba:e2:c9:f2:01:67:bd:c6:01:43:75:c9:d4:14:58:d8:1a:14: e2:8f:a2:10:e3:af:52:9f:01:47:a4:0f:60:51:04:53:2a:76: 63:e7:1d:cb:90:9c:28:a5:4d:90:80:80:a7:41:47:4d:e3:63: 9b:ae:21:a9:9c:ce:d8:04:80:b0:f4:fc:f7:c5:27:05:be:c5: 5c:54:ee:a5:13:ea:45:7c:b8:32:14:67:c1:ee:f0:e8:a6:2a: 97:dc:eb:83:e2:57:33:81:cb:75:7d:d7:43:a0:b6:51:42:d2: 58:d4:67:6f:5f:67:43:4a:33:03:5e:49:78:ce:88:9d:92:85: fa:1f:a2:1e:88:6c:dc:20:88:eb:92:6b:98:aa:5d:b2:5b:cf: b2:4e:46:94:a9:3e:76:54:f9:54:96:26:1d:62:83:26:3b:9f: 4e:52:cc:23:d2:2d:c8:21:08:31:f2:c1:38:eb:bf:a8:cb:21: 0f:11:73:5a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULrI7wzHcOAH/xrdgJXWqjp9VBlowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIxODIyMzgzM1oX DTI2MDIxNzIyNDMzM1owMzExMC8GA1UEAxMoQ0I1NERDNTI2RkEyMTRGOUY3MzY5 MjZFNkFBQTE2QUJFMzlCRjhFODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTfOmMpE8WxWjHHq0fXq4yyGVzFEy304YTZLFw6KFjfzuVEq1D9HaShFnIU oWV22I6CoFPsAYwoNDwEv8hfo3P5b/W+vAGA8u3Gmv8QjXQkVKUAekn/ovT4KvN/ vosFtYaKfTdkflHr7mKYxRoJpApdFi7mbSqLQoxAIXDVVUBvWnDYsp/Cs5X4gbOm SRv7df9o7GGR7Ptgit1KmbWmhzjWgx04GFsgyeEOGjTk2vWd+cFLDLMHpXWEbGdZ ZudobF4Dpc56kbTIwOeIAfD7z3gnVD55ygN6yTNFYG062hyGtFJfwIs+kjb9QHt6 HO3A1L6U6C0brdOrbkpE82cUKu0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMtU3FJvohT59zaSbmqqFqvjm/joMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81MTIzNGM0YS1hOGZmLTQwMzYtODQyMC1kYTgxNjIxMTE4MDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUxMjM0YzRh LWE4ZmYtNDAzNi04NDIwLWRhODE2MjExMTgwNi8wL0NCNTREQzUyNkZBMjE0RjlG NzM2OTI2RTZBQUExNkFCRTM5QkY4RTgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdDz4wDQYJKoZIhvcNAQELBQADggEBAAPBULZxi5tYJX2171KvqY1PgjFrcBge +LeEtW+Enb584YdLg5ELb2vC2w8SjGkUMA+yL8B/kbZUU3EUtB3lVg9DGo+cRJSB ErriyfIBZ73GAUN1ydQUWNgaFOKPohDjr1KfAUekD2BRBFMqdmPnHcuQnCilTZCA gKdBR03jY5uuIamcztgEgLD0/PfFJwW+xVxU7qUT6kV8uDIUZ8Hu8OimKpfc64Pi VzOBy3V910OgtlFC0ljUZ29fZ0NKMwNeSXjOiJ2Shfofoh6IbNwgiOuSa5iqXbJb z7JORpSpPnZU+VSWJh1igyY7n05SzCPSLcghCDHywTjrv6jLIQ8Rc1o= -----END CERTIFICATE-----Generated at Mon Apr 7 19:06:16 2025 by rpki-client