$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer File: F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.cer (raw, json) Hash identifier: cxrJrchpoS5j4cfk9mwJofrCHN49NhRuRQp16fdCmxA= Subject key identifier: F8:C9:E7:9A:DD:DE:29:28:BC:5F:A2:7C:3D:62:1C:1D:93:25:21:69 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 3206CC4B8A07552CD92E0AB249BCB437F2687CA2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.mft caRepository: rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 31 Jan 2024 21:49:42 +0000 Certificate not after: Wed 29 Jan 2025 21:54:42 +0000 Subordinate resources: IP: 157.10.178.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:06:cc:4b:8a:07:55:2c:d9:2e:0a:b2:49:bc:b4:37:f2:68:7c:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 31 21:49:42 2024 GMT Not After : Jan 29 21:54:42 2025 GMT Subject: CN=F8C9E79ADDDE2928BC5FA27C3D621C1D93252169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:8f:33:39:dc:34:94:21:fc:fd:96:f5:93: 11:a1:b3:7c:30:36:4c:9f:fe:8f:3d:66:56:7d:87: 1a:a1:3c:fd:d8:aa:c0:3d:79:40:99:a0:ec:16:d0: f3:1d:f0:0d:f2:fb:09:1a:51:58:73:b4:a8:a6:7a: 09:b9:2b:b9:e5:71:70:fe:d4:d4:ee:52:c1:8e:d8: 9b:f2:09:09:42:7d:61:a1:e5:48:2a:37:5d:fa:9d: 5e:40:73:98:17:8e:45:4e:d7:7f:6c:43:43:74:27: 86:2c:b0:c9:38:a5:86:9c:54:85:ac:5a:99:61:39: 61:0b:fa:f6:08:e2:57:0c:af:d3:32:bf:1f:c0:b0: 35:43:d4:94:45:58:db:16:0d:f5:c6:4e:32:5e:ae: 04:5e:b4:b2:35:53:47:fb:77:83:e7:9e:35:0a:ad: 3b:b0:96:14:f7:3a:f7:ed:4e:79:a3:a9:42:9d:3d: 3c:24:fa:51:1c:6e:24:7b:17:82:30:77:b8:38:0b: c2:ab:64:7c:c8:b6:91:f4:d3:d1:ad:99:00:75:80: dc:88:6d:67:b0:c1:0f:28:66:8a:8f:ae:0a:01:f3: 33:31:4f:00:65:5b:fa:d5:ad:64:af:4c:b6:a8:8e: ff:b4:a7:7f:d5:7e:06:dd:6d:68:52:0a:92:90:2f: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F8:C9:E7:9A:DD:DE:29:28:BC:5F:A2:7C:3D:62:1C:1D:93:25:21:69 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/83c891d7-4fcc-4770-82d4-367b87bb551e/0/F8C9E79ADDDE2928BC5FA27C3D621C1D93252169.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.10.178.0/24 Signature Algorithm: sha256WithRSAEncryption 47:23:06:51:10:93:68:91:ec:de:07:80:50:f5:97:b5:1c:dc: c2:91:07:f7:49:fe:36:b6:22:a6:30:21:52:99:2c:27:04:f6: 04:de:4b:bf:d9:1f:df:0d:2e:f9:c0:60:3a:c6:70:dd:d2:87: 29:45:b8:3b:31:8a:89:d6:c9:ee:33:48:b2:de:45:56:e3:7a: 72:37:80:62:a8:fd:b9:c9:09:5e:7e:a5:cb:d8:ed:8d:1e:cc: 3e:a7:25:15:ea:20:b6:04:26:6b:f8:e7:37:7b:ef:19:06:e8: 26:22:3c:cd:38:59:e5:6c:fb:27:db:6f:4a:f2:81:f2:82:83: 37:76:d7:c8:5d:67:7b:5d:e0:c2:20:93:26:8c:22:86:0b:fb: 46:10:4d:38:42:bb:bd:ee:77:b9:ac:57:0a:d4:eb:06:ab:f0: 1a:55:1e:27:fd:a1:d2:78:b3:f0:8e:e7:d8:58:71:43:3c:c0: ed:f6:ae:9e:d6:68:50:55:7d:76:17:1b:10:28:b0:0c:7c:69: 8c:f8:56:82:c2:67:27:06:17:64:12:f0:c9:b9:9a:6b:8a:5f: 6a:9b:f7:fc:b7:c8:7e:c4:bd:66:48:42:be:f7:a5:b7:5d:e5: db:81:18:43:a9:3a:bd:0b:c5:b9:98:80:6b:53:c0:1c:c2:c3: 06:e9:34:f9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMgbMS4oHVSzZLgqySby0N/JofKIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDEzMTIxNDk0MloX DTI1MDEyOTIxNTQ0MlowMzExMC8GA1UEAxMoRjhDOUU3OUFERERFMjkyOEJDNUZB MjdDM0Q2MjFDMUQ5MzI1MjE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3OjzM53DSUIfz9lvWTEaGzfDA2TJ/+jz1mVn2HGqE8/diqwD15QJmg7BbQ 8x3wDfL7CRpRWHO0qKZ6CbkrueVxcP7U1O5SwY7Ym/IJCUJ9YaHlSCo3XfqdXkBz mBeORU7Xf2xDQ3QnhiywyTilhpxUhaxamWE5YQv69gjiVwyv0zK/H8CwNUPUlEVY 2xYN9cZOMl6uBF60sjVTR/t3g+eeNQqtO7CWFPc69+1OeaOpQp09PCT6URxuJHsX gjB3uDgLwqtkfMi2kfTT0a2ZAHWA3IhtZ7DBDyhmio+uCgHzMzFPAGVb+tWtZK9M tqiO/7Snf9V+Bt1taFIKkpAvIpUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPjJ55rd3ikovF+ifD1iHB2TJSFpMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84M2M4OTFkNy00ZmNjLTQ3NzAtODJkNC0zNjdiODdiYjU1MWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzYzg5MWQ3 LTRmY2MtNDc3MC04MmQ0LTM2N2I4N2JiNTUxZS8wL0Y4QzlFNzlBRERERTI5MjhC QzVGQTI3QzNENjIxQzFEOTMyNTIxNjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdCrIwDQYJKoZIhvcNAQELBQADggEBAEcjBlEQk2iR7N4HgFD1l7Uc3MKRB/dJ /ja2IqYwIVKZLCcE9gTeS7/ZH98NLvnAYDrGcN3ShylFuDsxionWye4zSLLeRVbj enI3gGKo/bnJCV5+pcvY7Y0ezD6nJRXqILYEJmv45zd77xkG6CYiPM04WeVs+yfb b0rygfKCgzd218hdZ3td4MIgkyaMIoYL+0YQTThCu73ud7msVwrU6war8BpVHif9 odJ4s/CO59hYcUM8wO32rp7WaFBVfXYXGxAosAx8aYz4VoLCZycGF2QS8Mm5mmuK X2qb9/y3yH7EvWZIQr73pbdd5duBGEOpOr0LxbmYgGtTwBzCwwbpNPk= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org