$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.cer File: F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.cer (raw, json) Hash identifier: EFBsvnWjH6ZfFhCSK5dF0pzvZuftpkbDkSuB4xdpHqI= Subject key identifier: F8:FA:AE:F9:7E:D3:DB:A7:D2:72:43:70:7C:7C:0D:16:05:89:6B:AF Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 62CCF7AC7FD3F3211DEC51E7D875F07753B6BC6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.mft caRepository: rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Apr 2024 06:53:46 +0000 Certificate not after: Tue 01 Apr 2025 06:58:46 +0000 Subordinate resources: IP: 157.20.130.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:cc:f7:ac:7f:d3:f3:21:1d:ec:51:e7:d8:75:f0:77:53:b6:bc:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 2 06:53:46 2024 GMT Not After : Apr 1 06:58:46 2025 GMT Subject: CN=F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:fe:7f:92:e8:9e:ff:c8:cb:71:6a:55:03: 72:db:15:99:e0:72:a0:99:22:08:76:34:d9:25:62: f6:22:fb:4b:08:72:e0:53:99:75:e0:c4:a8:dd:e2: e3:75:1d:24:9b:12:d4:57:9e:00:e5:a2:45:63:44: 18:bd:ec:f7:33:d5:92:f3:8a:da:96:5c:47:49:20: d2:2d:97:f0:b7:ae:b8:45:3f:0e:6d:15:fc:23:3f: 7e:38:8f:24:19:8c:09:50:ee:50:4e:f7:e1:c0:db: 67:99:a5:25:dc:5f:32:2e:79:22:75:3e:b4:33:36: 13:65:9a:b7:ae:08:bd:5a:ed:0c:10:4d:45:15:c2: b2:35:9f:54:5b:67:2a:4a:d9:a7:53:92:38:b3:25: 7c:67:27:93:4f:26:36:05:36:7c:f2:13:e8:d4:04: af:cf:9b:4b:c1:4f:71:81:fc:7c:40:86:8f:c4:20: 79:f2:ff:94:d2:fb:9f:6b:b2:38:76:eb:b9:6f:78: b8:bf:f8:a9:55:ba:43:66:2b:77:1c:3e:26:ab:f9: b4:f3:5b:88:44:64:c5:60:b9:1e:aa:f4:22:16:b3: 25:cd:1b:71:ec:31:8f:67:a0:d8:14:ab:ad:f6:60: e9:2a:e5:4e:7b:4b:65:48:34:6f:50:cc:94:71:75: 49:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F8:FA:AE:F9:7E:D3:DB:A7:D2:72:43:70:7C:7C:0D:16:05:89:6B:AF X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.130.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:85:69:ef:c4:be:8a:b6:1a:02:e6:0c:36:e1:61:b6:01:4a: aa:d6:ef:e4:59:35:c0:80:9b:2f:ae:cb:e7:96:aa:c5:42:06: 74:93:2c:39:88:fd:f4:9f:0c:46:6c:c6:05:81:cc:bb:27:7b: 2d:be:bd:ed:22:24:d3:70:b7:55:62:b8:93:3a:c7:70:a6:78: 2a:34:cf:b0:9b:35:f3:fe:6b:84:56:6b:aa:1f:98:52:38:5f: b1:35:b6:2a:a2:35:89:ed:5e:97:52:8a:5e:c4:31:99:dc:65: 75:83:0b:18:fa:00:b4:37:e9:a7:1a:cd:bd:44:90:50:c0:8b: 08:0b:af:f3:8f:7b:8c:ad:a5:e2:64:18:79:17:74:57:44:b4: a0:30:fe:d3:8b:89:b8:46:c0:80:b7:9a:42:b2:b0:6e:6a:e9: 1e:e2:9f:52:eb:35:1c:f2:43:3a:88:a3:94:14:5b:e5:dd:a8: f1:d0:05:ce:a4:81:4e:b2:00:5b:67:25:f2:2c:b3:b5:ef:83: db:d0:c1:02:12:81:3d:ae:c1:39:4c:2c:70:66:1f:c5:5f:82: ca:9d:b3:c8:70:40:74:d6:1e:4b:14:ee:26:68:d6:0a:9a:66: 16:46:55:0c:6c:a9:16:ac:fa:5d:84:fa:ae:74:f1:73:f8:17: 5a:07:43:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYsz3rH/T8yEd7FHn2HXwd1O2vG8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwMjA2NTM0NloX DTI1MDQwMTA2NTg0NlowMzExMC8GA1UEAxMoRjhGQUFFRjk3RUQzREJBN0QyNzI0 MzcwN0M3QzBEMTYwNTg5NkJBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALN8/n+S6J7/yMtxalUDctsVmeByoJkiCHY02SVi9iL7Swhy4FOZdeDEqN3i 43UdJJsS1FeeAOWiRWNEGL3s9zPVkvOK2pZcR0kg0i2X8LeuuEU/Dm0V/CM/fjiP JBmMCVDuUE734cDbZ5mlJdxfMi55InU+tDM2E2Wat64IvVrtDBBNRRXCsjWfVFtn KkrZp1OSOLMlfGcnk08mNgU2fPIT6NQEr8+bS8FPcYH8fECGj8QgefL/lNL7n2uy OHbruW94uL/4qVW6Q2Yrdxw+Jqv5tPNbiERkxWC5Hqr0IhazJc0bcewxj2eg2BSr rfZg6SrlTntLZUg0b1DMlHF1SVsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPj6rvl+09un0nJDcHx8DRYFiWuvMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jODZmZjI2NC1mZjI1LTRmZTYtODZlZi1kODRiN2QyODgzNTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4NmZmMjY0 LWZmMjUtNGZlNi04NmVmLWQ4NGI3ZDI4ODM1NC8wL0Y4RkFBRUY5N0VEM0RCQTdE MjcyNDM3MDdDN0MwRDE2MDU4OTZCQUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFIIwDQYJKoZIhvcNAQELBQADggEBACuFae/Evoq2GgLmDDbhYbYBSqrW7+RZ NcCAmy+uy+eWqsVCBnSTLDmI/fSfDEZsxgWBzLsney2+ve0iJNNwt1ViuJM6x3Cm eCo0z7CbNfP+a4RWa6ofmFI4X7E1tiqiNYntXpdSil7EMZncZXWDCxj6ALQ36aca zb1EkFDAiwgLr/OPe4ytpeJkGHkXdFdEtKAw/tOLibhGwIC3mkKysG5q6R7in1Lr NRzyQzqIo5QUW+XdqPHQBc6kgU6yAFtnJfIss7Xvg9vQwQISgT2uwTlMLHBmH8Vf gsqds8hwQHTWHksU7iZo1gqaZhZGVQxsqRas+l2E+q508XP4F1oHQ5Y= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org