$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer (raw, json) Hash identifier: 0eBh3wBkEAL5YkAtaZUXw77t8W/OiaYZx9LMwkEQeLY= Subject key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 64142E35CFE5A640DD316EFA7870031CAD8C086F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft caRepository: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 28 Mar 2024 03:34:15 +0000 Certificate not after: Thu 27 Mar 2025 03:39:15 +0000 Subordinate resources: IP: 157.20.126.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:14:2e:35:cf:e5:a6:40:dd:31:6e:fa:78:70:03:1c:ad:8c:08:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Mar 28 03:34:15 2024 GMT Not After : Mar 27 03:39:15 2025 GMT Subject: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f0:6e:04:5b:27:85:92:6c:19:26:28:a7:e8: 3b:3c:6e:1b:48:a0:ce:52:86:ab:11:d2:bd:6d:28: e9:55:52:df:b6:4f:b6:e6:cb:65:73:37:83:40:38: be:54:48:28:81:f2:3f:cc:eb:51:7f:4a:81:e3:28: 68:0c:74:b6:c1:64:c6:27:36:b5:49:9f:1b:40:c8: 84:64:d9:6c:a5:da:26:96:67:80:e7:cb:0f:6c:4c: 73:de:c0:d0:de:e9:ca:93:5a:32:93:e8:28:50:de: 92:0b:20:08:10:8c:72:f1:0c:39:d8:7f:f7:90:a8: 34:24:bc:ac:72:1a:99:46:aa:bf:03:d1:da:60:e4: 59:80:43:25:d7:c9:6a:bb:8f:a3:36:72:51:cd:1f: 54:91:ab:a3:b5:c1:f6:26:cb:8d:2a:cf:ef:bf:4e: a4:b2:cc:2d:c7:44:27:f8:08:a6:45:7c:6c:58:ae: 79:09:02:9a:ea:c2:0d:63:e3:81:57:61:fb:af:34: 8b:3d:80:7b:e1:11:ad:44:b3:75:61:b8:d2:45:33: 81:3b:59:d0:ff:97:f6:75:9f:6d:76:ef:34:75:1b: 8d:ce:f1:d6:b3:d7:bf:20:85:b4:54:73:b5:51:85: 85:90:dc:27:63:fb:62:55:6d:b9:1e:ca:e9:2c:e9: 1c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.126.0/23 Signature Algorithm: sha256WithRSAEncryption 18:5f:cf:84:04:9f:52:fc:bb:17:c4:fa:71:cb:2b:13:09:13: 4c:67:ac:fb:81:84:ab:40:b9:1f:74:1c:1a:c2:e0:64:29:2a: 78:c1:de:0f:da:a3:3f:19:9d:85:47:1f:45:f2:6a:55:70:7a: 9b:ce:b4:c1:7a:ca:95:50:ea:3d:2b:0c:d5:40:25:7b:87:85: 9f:07:61:50:8d:14:eb:3f:2b:13:f6:ee:15:64:f1:5c:f5:01: c0:4f:34:76:3a:bf:8e:97:f1:5e:cc:3f:f9:bb:fa:b9:32:ea: 5f:bd:77:a7:0e:45:88:1e:17:c7:73:20:9d:eb:e7:b5:cb:b4: 00:9c:85:e6:0f:56:55:db:2c:70:f1:b5:a2:e6:6c:78:50:6d: 96:07:e6:18:ab:46:fe:9d:16:c5:d2:af:1a:ae:18:3f:53:a5: 88:cf:e4:6b:02:0e:85:87:a0:96:5f:3f:45:f2:c2:62:2c:0b: b9:e3:49:48:ff:c6:57:31:f1:35:c8:f0:2e:5f:1a:15:c2:de: 12:dc:31:f9:ce:d0:25:1a:ee:1b:ef:3e:fd:46:0d:d9:4f:12: 8b:84:6d:84:36:d1:24:67:7e:a4:76:c2:b8:5b:cb:69:2a:43: ad:82:3d:7a:d0:1c:6e:c3:8a:97:72:66:1f:03:24:e5:d3:c4: 13:d0:79:aa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZBQuNc/lpkDdMW76eHADHK2MCG8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDMyODAzMzQxNVoX DTI1MDMyNzAzMzkxNVowMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBD RkQxQzYxNjIyQkE1RUEyRTYyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ3wbgRbJ4WSbBkmKKfoOzxuG0igzlKGqxHSvW0o6VVS37ZPtubLZXM3g0A4 vlRIKIHyP8zrUX9KgeMoaAx0tsFkxic2tUmfG0DIhGTZbKXaJpZngOfLD2xMc97A 0N7pypNaMpPoKFDekgsgCBCMcvEMOdh/95CoNCS8rHIamUaqvwPR2mDkWYBDJdfJ aruPozZyUc0fVJGro7XB9ibLjSrP779OpLLMLcdEJ/gIpkV8bFiueQkCmurCDWPj gVdh+680iz2Ae+ERrUSzdWG40kUzgTtZ0P+X9nWfbXbvNHUbjc7x1rPXvyCFtFRz tVGFhZDcJ2P7YlVtuR7K6SzpHKUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP18WkSjyq980UDP0cYWIrpeouYjMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwZjc4YmQ0 LWMxOWItNGQ0MC1hYTU0LWVkOGQ3YmM3NzJjYS8wL0ZEN0M1QTQ0QTNDQUFGN0NE MTQwQ0ZEMUM2MTYyMkJBNUVBMkU2MjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFH4wDQYJKoZIhvcNAQELBQADggEBABhfz4QEn1L8uxfE+nHLKxMJE0xnrPuB hKtAuR90HBrC4GQpKnjB3g/aoz8ZnYVHH0XyalVwepvOtMF6ypVQ6j0rDNVAJXuH hZ8HYVCNFOs/KxP27hVk8Vz1AcBPNHY6v46X8V7MP/m7+rky6l+9d6cORYgeF8dz IJ3r57XLtACcheYPVlXbLHDxtaLmbHhQbZYH5hirRv6dFsXSrxquGD9TpYjP5GsC DoWHoJZfP0XywmIsC7njSUj/xlcx8TXI8C5fGhXC3hLcMfnO0CUa7hvvPv1GDdlP EouEbYQ20SRnfqR2wrhby2kqQ62CPXrQHG7DipdyZh8DJOXTxBPQeao= -----END CERTIFICATE-----Generated at Fri May 17 17:47:04 2024 by rpki-client on console-ams.rpki-client.org