$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer File: FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.cer (raw, json) Hash identifier: vRzdgwDMCJ6xk2AqTiEkqQrdbEAMNoYrEn7c3pRO+YU= Subject key identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 44E15C56CFFA9BC763047A1404C6453B092E801C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft caRepository: rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Apr 2024 07:32:07 +0000 Certificate not after: Tue 01 Apr 2025 07:37:07 +0000 Subordinate resources: IP: 157.20.222.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 00:47:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:e1:5c:56:cf:fa:9b:c7:63:04:7a:14:04:c6:45:3b:09:2e:80:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 2 07:32:07 2024 GMT Not After : Apr 1 07:37:07 2025 GMT Subject: CN=FE79E56CBE99C773CD721DF7AB0E5CA2809D0739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:66:95:e0:40:f4:b5:4b:43:b1:8d:3d:db: 4b:0d:7e:bd:a5:3c:6e:29:41:a0:27:60:99:49:c7: 49:f9:f9:a6:8a:3f:3f:61:11:38:1f:e8:b6:c9:67: f4:df:46:e4:c3:43:27:a0:67:ae:56:b0:28:c1:fd: 2c:b3:53:84:44:66:4c:4e:2f:cf:85:e4:45:96:75: 69:36:78:b6:f3:80:d6:99:9a:af:4c:d5:e4:ac:4c: c8:fd:3b:62:26:8a:1a:34:1b:ee:25:7f:58:e9:a5: fc:92:ce:26:00:03:9f:25:2c:6d:a8:e5:44:6d:92: b4:16:aa:19:a8:3a:2b:ac:45:2f:1f:f6:df:e4:14: 2a:61:1e:ca:3a:f4:f2:75:fe:e5:5a:c6:e7:14:87: 00:ed:bd:cb:f0:96:7a:0d:47:3a:da:50:2a:d2:10: e1:aa:0d:d6:de:77:de:04:c9:a1:31:5b:b3:d9:71: 55:5d:44:8b:e6:5d:47:76:6d:87:f0:ac:fd:d8:c0: 31:44:73:a4:73:30:f6:2e:60:18:c7:3f:f9:b3:fb: 99:3f:ea:b7:3d:ee:31:31:76:a5:7d:45:b5:a4:3a: 80:1d:d2:98:4d:ed:b0:31:ec:47:78:3f:0b:56:01: 9b:a0:6e:92:08:9b:80:fc:9d:3d:f0:91:2c:5a:5b: 8f:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FE:79:E5:6C:BE:99:C7:73:CD:72:1D:F7:AB:0E:5C:A2:80:9D:07:39 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/FE79E56CBE99C773CD721DF7AB0E5CA2809D0739.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.222.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:e2:21:0e:aa:59:ea:fb:d5:2b:0a:5c:53:27:8c:8e:d7:61: 35:6f:0c:fc:bb:24:b6:a4:94:5d:12:c3:1a:49:b8:db:12:9b: b6:a7:35:b8:df:c8:d2:c3:27:e4:da:50:8f:d1:3d:8e:b2:a5: cf:cb:b3:91:fa:e4:61:ff:02:cf:cf:61:fa:af:4a:6f:23:cc: 5f:26:60:5f:3c:8d:be:2a:d8:d8:65:66:4b:36:36:93:8b:5f: 83:b4:f1:b9:a4:f7:d4:f0:31:79:67:78:cd:f3:5d:e3:65:19: 6e:8d:63:75:33:56:ee:95:9e:3e:ee:03:61:34:50:3a:17:d7: f5:d5:3c:9b:07:43:ea:fa:34:56:39:62:8c:a3:61:9b:cf:32: a2:04:76:ad:16:3e:f2:55:fd:fe:9c:89:31:e8:81:ad:39:49: 82:fb:8b:85:6c:fe:5d:8a:af:45:fa:55:d0:59:dc:6c:55:1f: 21:89:54:03:e5:89:9e:91:60:df:3b:6e:5e:53:6c:19:46:36: 99:0c:e7:bc:48:38:cb:92:d0:87:79:ea:28:b0:5a:a6:70:d7: 25:25:b0:60:70:3b:2f:f5:67:c6:30:d0:05:71:6b:cb:60:a8: d0:6e:2f:dc:18:c9:eb:b7:ca:71:bf:3d:ed:d2:92:c4:7b:6a: ef:90:78:aa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUROFcVs/6m8djBHoUBMZFOwkugBwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI0MDQwMjA3MzIwN1oX DTI1MDQwMTA3MzcwN1owMzExMC8GA1UEAxMoRkU3OUU1NkNCRTk5Qzc3M0NENzIx REY3QUIwRTVDQTI4MDlEMDczOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALx0ZpXgQPS1S0OxjT3bSw1+vaU8bilBoCdgmUnHSfn5poo/P2EROB/otsln 9N9G5MNDJ6BnrlawKMH9LLNThERmTE4vz4XkRZZ1aTZ4tvOA1pmar0zV5KxMyP07 YiaKGjQb7iV/WOml/JLOJgADnyUsbajlRG2StBaqGag6K6xFLx/23+QUKmEeyjr0 8nX+5VrG5xSHAO29y/CWeg1HOtpQKtIQ4aoN1t533gTJoTFbs9lxVV1Ei+ZdR3Zt h/Cs/djAMURzpHMw9i5gGMc/+bP7mT/qtz3uMTF2pX1FtaQ6gB3SmE3tsDHsR3g/ C1YBm6BukgibgPydPfCRLFpbj50CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP555Wy+mcdzzXId96sOXKKAnQc5MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMWYxNWExZC01ZGFjLTRjYzktODExYS1lNDljYjRlN2JjZTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExZjE1YTFk LTVkYWMtNGNjOS04MTFhLWU0OWNiNGU3YmNlMS8wL0ZFNzlFNTZDQkU5OUM3NzND RDcyMURGN0FCMEU1Q0EyODA5RDA3MzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFN4wDQYJKoZIhvcNAQELBQADggEBAG7iIQ6qWer71SsKXFMnjI7XYTVvDPy7 JLaklF0SwxpJuNsSm7anNbjfyNLDJ+TaUI/RPY6ypc/Ls5H65GH/As/PYfqvSm8j zF8mYF88jb4q2NhlZks2NpOLX4O08bmk99TwMXlneM3zXeNlGW6NY3UzVu6Vnj7u A2E0UDoX1/XVPJsHQ+r6NFY5YoyjYZvPMqIEdq0WPvJV/f6ciTHoga05SYL7i4Vs /l2Kr0X6VdBZ3GxVHyGJVAPliZ6RYN87bl5TbBlGNpkM57xIOMuS0Id56iiwWqZw 1yUlsGBwOy/1Z8Yw0AVxa8tgqNBuL9wYyeu3ynG/Pe3SksR7au+QeKo= -----END CERTIFICATE-----Generated at Fri May 17 18:13:31 2024 by rpki-client on console-fra.rpki-client.org