$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/DA680D591E9E6B4622614F94CF255933B6749212.cer File: DA680D591E9E6B4622614F94CF255933B6749212.cer (raw, json) Hash identifier: sJYockCoCrKVdkqzBS9PiT/uwSlZ2YfeAhGCa7Ht6Zw= Subject key identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0B03C6583F2E1D194E3B8B04BBE2A6A91FEA4D96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft caRepository: rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 Feb 2024 08:48:24 +0000 Certificate not after: Thu 13 Feb 2025 08:53:24 +0000 Subordinate resources: IP: 157.10.182.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:03:c6:58:3f:2e:1d:19:4e:3b:8b:04:bb:e2:a6:a9:1f:ea:4d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Feb 15 08:48:24 2024 GMT Not After : Feb 13 08:53:24 2025 GMT Subject: CN=DA680D591E9E6B4622614F94CF255933B6749212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7c:f7:5e:f8:3c:87:ad:7e:32:b6:4d:83:3f: 4b:65:70:8e:ef:64:f4:0f:cb:db:ec:db:54:c1:08: 87:1b:f6:04:58:ce:c4:3b:a4:1d:d4:e5:d0:f9:97: f8:29:ac:e5:b9:a5:d1:c2:a8:e9:73:21:e8:da:b8: b5:31:5e:43:ab:f6:07:f5:76:1d:62:e1:cc:8a:92: d7:70:c3:59:25:c8:c0:56:d0:6f:02:3b:7e:00:71: 67:2f:92:0f:d3:83:62:ab:5c:28:3f:35:aa:a1:02: c6:b6:48:55:47:fb:63:26:fc:36:d3:5b:5f:9c:11: ad:1f:05:c4:c1:43:99:0f:83:08:88:19:35:36:e3: 4d:73:78:22:c1:b3:79:76:8c:df:ea:9c:91:d4:99: 08:1e:10:32:a0:7c:5c:9c:55:25:9f:62:3b:62:ee: 11:9c:17:58:f5:88:9a:1e:1f:9e:dd:af:82:1d:53: 79:53:af:31:7b:8b:dc:1a:50:1d:1b:79:77:4d:ff: 88:13:46:e6:2e:73:b9:74:0a:2a:e8:d0:32:92:c3: 8a:4a:79:41:12:c4:fb:8e:cc:45:61:b5:d1:d3:0f: 65:8d:48:31:05:73:24:d3:e2:27:bf:07:c2:71:1c: b4:1c:2b:c6:4a:ea:0e:59:b8:12:ab:57:94:ab:8d: 11:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DA:68:0D:59:1E:9E:6B:46:22:61:4F:94:CF:25:59:33:B6:74:92:12 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/DA680D591E9E6B4622614F94CF255933B6749212.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.182.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:11:35:77:b8:2b:65:34:1e:86:f5:82:b4:da:fd:45:2a:da: a4:0d:a5:8a:69:2d:e4:c6:36:f3:81:ee:b7:aa:c7:ff:c2:b4: 3c:0f:d2:05:ec:43:d7:a8:37:10:e7:d5:82:08:bb:19:c4:eb: 59:38:04:c7:f3:3e:c7:82:4d:e4:b0:b7:e2:2e:93:25:f3:de: 0b:26:d3:59:8c:67:53:3e:78:a0:4f:8c:65:52:ee:63:e8:15: 10:6e:64:06:1e:3e:73:9f:93:9c:c9:05:7a:96:0f:03:6c:d4: e7:40:bb:bb:78:94:e1:e7:e9:8c:bf:d1:3e:67:db:dc:b9:aa: 20:2d:25:10:72:de:e9:09:f3:41:ad:5e:86:d8:63:fd:65:37: fe:a9:ee:78:62:ee:a6:4f:70:f9:7e:23:ff:49:51:c4:2c:7b: b8:cf:0a:92:4d:7a:4e:4a:2e:7f:66:94:dd:a5:0e:fd:34:1b: 4e:f2:11:d4:8a:47:2c:3f:70:01:8e:01:e5:c6:17:50:35:d0: a7:7d:65:9f:52:5f:90:86:4f:ca:e8:f9:e2:36:ec:23:45:d8: e5:03:16:5c:b1:b7:d6:d6:35:67:ad:23:66:5d:68:5d:30:0e: 80:bc:bf:2c:5d:a4:35:d0:fe:52:69:6d:a5:71:e5:03:59:f3: 46:66:64:68 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCwPGWD8uHRlOO4sEu+KmqR/qTZYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDIxNTA4NDgyNFoX DTI1MDIxMzA4NTMyNFowMzExMC8GA1UEAxMoREE2ODBENTkxRTlFNkI0NjIyNjE0 Rjk0Q0YyNTU5MzNCNjc0OTIxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANR89174PIetfjK2TYM/S2Vwju9k9A/L2+zbVMEIhxv2BFjOxDukHdTl0PmX +Cms5bml0cKo6XMh6Nq4tTFeQ6v2B/V2HWLhzIqS13DDWSXIwFbQbwI7fgBxZy+S D9ODYqtcKD81qqECxrZIVUf7Yyb8NtNbX5wRrR8FxMFDmQ+DCIgZNTbjTXN4IsGz eXaM3+qckdSZCB4QMqB8XJxVJZ9iO2LuEZwXWPWImh4fnt2vgh1TeVOvMXuL3BpQ HRt5d03/iBNG5i5zuXQKKujQMpLDikp5QRLE+47MRWG10dMPZY1IMQVzJNPiJ78H wnEctBwrxkrqDlm4EqtXlKuNEWMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNpoDVkenmtGImFPlM8lWTO2dJISMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MWRhMjNlOS04NGJlLTRhNTQtYmNhMC1lOWEwY2FmZDE2ZmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxZGEyM2U5 LTg0YmUtNGE1NC1iY2EwLWU5YTBjYWZkMTZmZS8wL0RBNjgwRDU5MUU5RTZCNDYy MjYxNEY5NENGMjU1OTMzQjY3NDkyMTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdCrYwDQYJKoZIhvcNAQELBQADggEBAD8RNXe4K2U0Hob1grTa/UUq2qQNpYpp LeTGNvOB7reqx//CtDwP0gXsQ9eoNxDn1YIIuxnE61k4BMfzPseCTeSwt+IukyXz 3gsm01mMZ1M+eKBPjGVS7mPoFRBuZAYePnOfk5zJBXqWDwNs1OdAu7t4lOHn6Yy/ 0T5n29y5qiAtJRBy3ukJ80GtXobYY/1lN/6p7nhi7qZPcPl+I/9JUcQse7jPCpJN ek5KLn9mlN2lDv00G07yEdSKRyw/cAGOAeXGF1A10Kd9ZZ9SX5CGT8ro+eI27CNF 2OUDFlyxt9bWNWetI2ZdaF0wDoC8vyxdpDXQ/lJpbaVx5QNZ80ZmZGg= -----END CERTIFICATE-----Generated at Fri May 17 17:47:04 2024 by rpki-client on console-ams.rpki-client.org