$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/62F71C75A752B45AE4B51A4E7010124979820A90.cer File: 62F71C75A752B45AE4B51A4E7010124979820A90.cer (raw, json) Hash identifier: t3iqE58vo3f9MpIeTiahz4YBJm+mvxXopepdmT28MWY= Subject key identifier: 62:F7:1C:75:A7:52:B4:5A:E4:B5:1A:4E:70:10:12:49:79:82:0A:90 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 02CAB3D0258916A48013FE3AFFCC9BF8E8153557 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.mft caRepository: rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 11 May 2025 19:45:59 +0000 Certificate not after: Sun 10 May 2026 19:50:59 +0000 Subordinate resources: IP: 157.66.192.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 18:25:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ca:b3:d0:25:89:16:a4:80:13:fe:3a:ff:cc:9b:f8:e8:15:35:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 11 19:45:59 2025 GMT Not After : May 10 19:50:59 2026 GMT Subject: CN=62F71C75A752B45AE4B51A4E7010124979820A90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:df:f9:1d:41:c2:8b:ab:a2:a9:31:85:88:7c: 85:24:95:d3:23:76:e1:a8:53:0e:f7:cf:12:ab:2b: e5:38:ff:68:59:85:ce:a1:b7:01:96:f6:b5:df:05: ca:95:f4:ae:34:86:cf:db:4e:04:2f:3a:15:5c:17: ba:57:46:ee:87:32:52:79:73:49:03:c2:59:e6:45: 0d:8b:0d:13:8c:1d:32:66:53:8c:cf:c0:cf:8c:2f: 17:a8:a6:e9:9f:2c:a4:62:e7:19:3b:c8:1f:13:07: cd:36:4a:d2:33:db:44:d5:a4:a4:c5:1e:56:20:ed: 44:cc:fd:24:1c:ca:8a:c0:ee:0b:42:de:e7:08:fc: 1b:08:f8:81:7d:9f:28:07:3e:bf:1b:b6:02:ae:7d: 2f:4d:65:97:e3:c6:a5:77:7b:8a:28:82:d1:f4:0e: c1:bf:40:f8:9c:7d:08:b3:63:20:bd:ed:ec:5d:ae: fe:e8:57:97:c7:0e:47:27:ee:f9:f9:ec:4f:8b:d0: e3:50:75:b4:02:79:0a:fe:36:74:e7:0c:06:b6:20: b4:1b:b8:be:86:f3:9b:02:da:54:57:e7:69:5c:3f: d9:96:e1:f1:04:52:c3:a4:02:2e:0e:bf:70:48:d9: 1b:f6:1f:a6:b0:7c:bd:d3:19:a8:d0:c3:ab:52:2a: ec:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 62:F7:1C:75:A7:52:B4:5A:E4:B5:1A:4E:70:10:12:49:79:82:0A:90 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0de2d090-4766-475c-9cef-7beb585cf241/0/62F71C75A752B45AE4B51A4E7010124979820A90.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.192.0/23 Signature Algorithm: sha256WithRSAEncryption 43:41:a3:79:db:ab:3b:c3:a5:d3:2b:91:fd:f8:77:92:0c:c3: e7:df:77:07:1a:a0:51:ac:8a:45:af:52:42:f4:eb:d7:8d:20: 70:5c:02:4e:fd:b2:53:5c:3d:39:3d:cb:eb:3c:66:c8:73:2c: 48:c7:74:cc:ce:dc:ea:19:7b:e8:0d:83:61:c0:ef:f6:9b:2b: 86:70:b4:a2:25:c3:d7:04:7f:f7:0f:76:4d:84:ef:b5:55:83: 14:c6:de:0f:46:4a:ca:a3:5c:39:cb:d8:c0:4d:17:e8:61:a7: f2:03:70:2f:b8:05:87:30:9e:40:3f:54:66:bf:42:33:dd:aa: 7e:67:cf:83:7f:47:64:bd:5c:c5:9f:16:77:4c:4c:1b:c4:46: 58:e8:13:fd:2a:ed:d1:64:18:e6:bb:41:36:bb:52:ee:d9:23: 48:3e:0c:5c:f1:b1:7c:8e:3a:fb:06:03:bf:47:97:20:6e:2b: 9c:af:f7:7e:b0:98:79:ef:c9:83:6e:eb:77:ac:51:75:e0:82: 76:df:c5:ef:aa:cc:19:de:3c:3c:e5:f9:34:f9:08:55:ed:d5: d0:71:cf:0a:90:8a:71:4e:ec:22:e9:33:87:60:96:bf:03:34: 20:9a:a2:d6:03:69:e1:e4:61:92:71:64:f1:e0:67:fa:7f:1e: 2c:b0:e4:22 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAsqz0CWJFqSAE/46/8yb+OgVNVcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUxMTE5NDU1OVoX DTI2MDUxMDE5NTA1OVowMzExMC8GA1UEAxMoNjJGNzFDNzVBNzUyQjQ1QUU0QjUx QTRFNzAxMDEyNDk3OTgyMEE5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALbf+R1BwouroqkxhYh8hSSV0yN24ahTDvfPEqsr5Tj/aFmFzqG3AZb2td8F ypX0rjSGz9tOBC86FVwXuldG7ocyUnlzSQPCWeZFDYsNE4wdMmZTjM/Az4wvF6im 6Z8spGLnGTvIHxMHzTZK0jPbRNWkpMUeViDtRMz9JBzKisDuC0Le5wj8Gwj4gX2f KAc+vxu2Aq59L01ll+PGpXd7iiiC0fQOwb9A+Jx9CLNjIL3t7F2u/uhXl8cORyfu +fnsT4vQ41B1tAJ5Cv42dOcMBrYgtBu4vobzmwLaVFfnaVw/2Zbh8QRSw6QCLg6/ cEjZG/YfprB8vdMZqNDDq1Iq7HECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGL3HHWnUrRa5LUaTnAQEkl5ggqQMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZGUyZDA5MC00NzY2LTQ3NWMtOWNlZi03YmViNTg1Y2YyNDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBkZTJkMDkw LTQ3NjYtNDc1Yy05Y2VmLTdiZWI1ODVjZjI0MS8wLzYyRjcxQzc1QTc1MkI0NUFF NEI1MUE0RTcwMTAxMjQ5Nzk4MjBBOTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQsAwDQYJKoZIhvcNAQELBQADggEBAENBo3nbqzvDpdMrkf34d5IMw+ffdwca oFGsikWvUkL069eNIHBcAk79slNcPTk9y+s8ZshzLEjHdMzO3OoZe+gNg2HA7/ab K4ZwtKIlw9cEf/cPdk2E77VVgxTG3g9GSsqjXDnL2MBNF+hhp/IDcC+4BYcwnkA/ VGa/QjPdqn5nz4N/R2S9XMWfFndMTBvERljoE/0q7dFkGOa7QTa7Uu7ZI0g+DFzx sXyOOvsGA79HlyBuK5yv936wmHnvyYNu63esUXXggnbfxe+qzBnePDzl+TT5CFXt 1dBxzwqQinFO7CLpM4dglr8DNCCaotYDaeHkYZJxZPHgZ/p/Hiyw5CI= -----END CERTIFICATE-----Generated at Thu May 15 14:31:46 2025 by rpki-client