$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/D8D82E797873C8877988A42E5C473D1919238C2A.cer File: D8D82E797873C8877988A42E5C473D1919238C2A.cer (raw, json) Hash identifier: e8WEECtlG4gcRyDrjaNE8z8aaDqHyoDyug/bJCDXmbQ= Subject key identifier: D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 678018214812D3AC0C18536E2CBD64AAE42EB2F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.mft caRepository: rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Feb 2024 01:08:27 +0000 Certificate not after: Tue 04 Feb 2025 01:13:27 +0000 Subordinate resources: IP: 157.15.42.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Jun 2024 03:51:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:80:18:21:48:12:d3:ac:0c:18:53:6e:2c:bd:64:aa:e4:2e:b2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 6 01:08:27 2024 GMT Not After : Feb 4 01:13:27 2025 GMT Subject: CN=D8D82E797873C8877988A42E5C473D1919238C2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:74:eb:4f:31:5a:1b:d6:cc:2f:48:f4:50:00: 3a:ec:96:0f:82:14:0f:ba:b2:76:fd:e4:1e:55:49: 18:3f:27:30:ae:95:2b:8e:68:93:70:8e:b6:2b:ba: d2:a8:ba:7e:3c:95:45:90:53:02:49:03:15:34:f8: fa:3b:08:c5:0f:b1:53:c1:ca:70:f6:8d:5a:b0:d7: 34:4c:39:25:69:71:cf:76:f6:47:cd:35:b4:3c:60: f2:30:65:5b:40:c8:ed:0a:14:0a:78:b0:7d:69:4c: e3:13:0b:99:a8:09:e6:b2:0e:02:99:7d:64:b0:17: ff:82:f3:51:14:9d:f2:f4:8a:72:80:fb:1b:07:e3: b5:74:92:21:63:5a:7e:b1:60:a8:97:43:83:3b:fd: 71:38:f1:9d:52:fa:8b:52:1e:57:68:4c:83:d1:c9: b0:c0:c0:ad:64:a0:7e:97:5e:68:9e:b2:73:b5:a5: 8b:14:17:86:21:64:26:cd:e0:87:bb:41:a2:28:60: ae:11:4b:90:bf:a2:5a:4b:f0:0f:29:97:6c:46:80: 24:02:ba:72:7f:20:54:72:fe:35:35:f1:d9:4d:e5: 46:38:7d:5e:72:fc:42:0a:dc:b6:0d:57:44:66:a7: 79:ed:67:1f:8f:4b:6d:17:d6:24:e6:c0:ec:ff:10: 73:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D8:D8:2E:79:78:73:C8:87:79:88:A4:2E:5C:47:3D:19:19:23:8C:2A X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e5de71ac-7f9f-47d4-9533-9df82afc5973/0/D8D82E797873C8877988A42E5C473D1919238C2A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.42.0/23 Signature Algorithm: sha256WithRSAEncryption 77:a1:f5:c9:93:3b:b6:06:62:20:41:3d:4d:9e:76:0d:e2:ce: 47:67:b4:5f:64:da:6f:47:bb:a3:2b:b6:00:b4:e0:d9:56:c6: 79:09:96:f4:6b:ee:7e:60:97:22:23:f2:84:e9:ca:5e:64:89: ce:e5:c3:24:e1:c9:03:3b:9b:84:02:83:52:bf:05:58:7c:da: 96:27:58:5e:7a:a6:de:d6:25:f5:e8:34:c4:ab:2b:52:d2:42: 25:db:7d:20:e9:e0:e6:b4:0a:6f:65:cc:f5:6c:34:ab:b1:dc: a4:5c:5c:00:32:21:f7:d3:18:5f:f1:9d:68:dc:33:1a:a2:32: d0:04:4c:60:8d:59:a0:54:1a:7c:aa:cb:84:6e:56:62:54:a8: 8d:78:04:19:9b:f5:0f:94:ea:bb:6b:8d:41:ed:a8:b8:6a:0f: 13:a0:af:e9:ca:b1:16:ef:5b:31:c4:a2:ce:fd:49:d7:ee:b9: 7e:e7:b0:d4:8e:f6:18:f3:a7:a1:71:fe:58:77:40:7f:60:2e: 65:fb:cc:8d:51:d2:33:55:4c:36:5a:16:7a:6e:89:54:1a:35: 94:44:d7:f4:74:57:4c:f8:d1:58:cd:31:85:51:76:21:b2:dc: 58:a8:f2:b6:80:f8:7e:cc:b3:fb:03:fb:cb:47:7c:3f:3c:cc: eb:2f:3f:2b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZ4AYIUgS06wMGFNuLL1kquQusvkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIwNjAxMDgyN1oX DTI1MDIwNDAxMTMyN1owMzExMC8GA1UEAxMoRDhEODJFNzk3ODczQzg4Nzc5ODhB NDJFNUM0NzNEMTkxOTIzOEMyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALh0608xWhvWzC9I9FAAOuyWD4IUD7qydv3kHlVJGD8nMK6VK45ok3COtiu6 0qi6fjyVRZBTAkkDFTT4+jsIxQ+xU8HKcPaNWrDXNEw5JWlxz3b2R801tDxg8jBl W0DI7QoUCniwfWlM4xMLmagJ5rIOApl9ZLAX/4LzURSd8vSKcoD7GwfjtXSSIWNa frFgqJdDgzv9cTjxnVL6i1IeV2hMg9HJsMDArWSgfpdeaJ6yc7WlixQXhiFkJs3g h7tBoihgrhFLkL+iWkvwDymXbEaAJAK6cn8gVHL+NTXx2U3lRjh9XnL8Qgrctg1X RGanee1nH49LbRfWJObA7P8Qc2kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNjYLnl4c8iHeYikLlxHPRkZI4wqMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNWRlNzFhYy03ZjlmLTQ3ZDQtOTUzMy05ZGY4MmFmYzU5NzMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1ZGU3MWFj LTdmOWYtNDdkNC05NTMzLTlkZjgyYWZjNTk3My8wL0Q4RDgyRTc5Nzg3M0M4ODc3 OTg4QTQyRTVDNDczRDE5MTkyMzhDMkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdDyowDQYJKoZIhvcNAQELBQADggEBAHeh9cmTO7YGYiBBPU2edg3izkdntF9k 2m9Hu6MrtgC04NlWxnkJlvRr7n5glyIj8oTpyl5kic7lwyThyQM7m4QCg1K/BVh8 2pYnWF56pt7WJfXoNMSrK1LSQiXbfSDp4Oa0Cm9lzPVsNKux3KRcXAAyIffTGF/x nWjcMxqiMtAETGCNWaBUGnyqy4RuVmJUqI14BBmb9Q+U6rtrjUHtqLhqDxOgr+nK sRbvWzHEos79SdfuuX7nsNSO9hjzp6Fx/lh3QH9gLmX7zI1R0jNVTDZaFnpuiVQa NZRE1/R0V0z40VjNMYVRdiGy3Fio8raA+H7Ms/sD+8tHfD88zOsvPys= -----END CERTIFICATE-----Generated at Fri Jun 21 22:04:32 2024 by rpki-client on console-fra.rpki-client.org