$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer File: 0EAF2A0CD22523DB087375417038E4165075CA3E.cer (raw, json) Hash identifier: gmco/svpYvrLT/aAgVO+8332jn88kGVABcitCitEtEw= Subject key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 7A2380420637F3BC3D96CCFDF5C84CCC2EC3D571 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft caRepository: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 09 Apr 2025 08:10:21 +0000 Certificate not after: Wed 08 Apr 2026 08:15:21 +0000 Subordinate resources: IP: 157.20.44.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:23:80:42:06:37:f3:bc:3d:96:cc:fd:f5:c8:4c:cc:2e:c3:d5:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 9 08:10:21 2025 GMT Not After : Apr 8 08:15:21 2026 GMT Subject: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:44:b9:cb:5a:02:e3:d4:45:a9:67:49:b1:ed: 38:d7:86:a9:50:70:64:32:af:d4:47:52:4b:96:a5: 1d:9d:7d:71:0a:47:77:83:7e:e1:35:0a:55:a4:3c: 91:7d:cd:df:5e:2a:ee:92:2e:10:1a:95:62:42:97: 41:ea:bf:9c:ef:98:53:02:56:3b:ee:32:72:b9:af: fd:47:b9:73:ba:d8:d3:0b:53:f9:25:cf:87:0c:d2: 7e:e7:25:30:f8:cd:44:b4:c3:22:dd:22:58:42:39: fb:55:51:04:45:d8:0b:5d:c6:14:6e:62:bb:8e:ca: 04:87:dd:c7:23:18:71:35:58:7b:34:ce:e5:84:38: 55:de:17:18:14:ee:40:4a:9f:e4:0b:bb:60:8d:b8: 7f:e7:6a:ed:42:87:67:81:0e:80:6c:14:55:7b:a5: 56:fb:d7:57:27:64:fa:93:21:0e:dd:40:d3:6b:b5: 39:76:d4:c1:4b:d1:1c:f1:47:b1:ec:7b:fa:67:ed: 9b:25:6e:c8:6c:09:6c:1b:0e:db:7c:91:b8:3a:40: 52:ce:a9:c4:fb:6b:67:bf:49:5d:24:25:4b:b9:b2: 3f:46:a5:7e:f5:e3:4a:05:8b:19:4d:73:44:95:86: aa:99:8a:bb:e8:8c:2e:1e:53:5d:67:1d:3b:42:12: 50:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.44.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:d7:84:c2:ca:12:49:33:db:bb:80:1c:3f:38:a8:2a:03:2b: b6:48:79:31:40:b9:53:15:76:01:3e:60:11:8d:c6:6f:56:4c: 85:fb:35:3f:f2:3c:8a:6b:68:f6:9c:b4:a3:d6:7c:2b:89:21: f6:65:8a:8a:92:8a:13:10:09:c1:d1:25:6d:68:aa:db:cd:0c: 05:39:23:f1:80:ca:ff:16:e9:6f:7b:90:b8:2f:39:33:16:40: 36:03:5c:e6:47:49:9e:3a:57:2f:8e:65:e5:b0:e8:13:77:9c: 47:b4:4f:1f:3c:7a:62:39:ba:60:b0:e1:0d:22:4f:8d:5b:af: a5:95:eb:7e:2b:5f:b8:83:c9:f8:dd:dd:96:fe:05:ab:d9:81: 2d:db:b3:a7:86:d1:6d:91:c7:53:96:9f:44:b4:4d:18:7f:f4: 6c:6c:8e:ec:8f:eb:fe:e7:e1:48:0e:87:1f:28:1a:1a:cf:e0: 6b:7c:d5:a1:36:44:31:ab:fa:8f:47:cd:e9:c5:d5:f5:03:56: a0:f9:a6:49:dc:2b:af:53:b2:ff:92:50:21:dd:50:08:63:9d: 96:b6:5d:ed:f8:46:d4:c5:b3:3c:53:01:43:55:5e:8c:1b:b1: ff:1b:5e:3b:8c:7a:bc:ba:f2:45:10:88:b1:17:5b:db:e1:fc: 90:64:af:a4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeiOAQgY387w9lsz99chMzC7D1XEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQwOTA4MTAyMVoX DTI2MDQwODA4MTUyMVowMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3 NTQxNzAzOEU0MTY1MDc1Q0EzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL1EuctaAuPURalnSbHtONeGqVBwZDKv1EdSS5alHZ19cQpHd4N+4TUKVaQ8 kX3N314q7pIuEBqVYkKXQeq/nO+YUwJWO+4ycrmv/Ue5c7rY0wtT+SXPhwzSfucl MPjNRLTDIt0iWEI5+1VRBEXYC13GFG5iu47KBIfdxyMYcTVYezTO5YQ4Vd4XGBTu QEqf5Au7YI24f+dq7UKHZ4EOgGwUVXulVvvXVydk+pMhDt1A02u1OXbUwUvRHPFH sex7+mftmyVuyGwJbBsO23yRuDpAUs6pxPtrZ79JXSQlS7myP0alfvXjSgWLGU1z RJWGqpmKu+iMLh5TXWcdO0ISUP0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA6vKgzSJSPbCHN1QXA45BZQdco+MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3 LTZhOTItNDI5My04ODAwLWI1M2UyYTkxOGFjYS8wLzBFQUYyQTBDRDIyNTIzREIw ODczNzU0MTcwMzhFNDE2NTA3NUNBM0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFCwwDQYJKoZIhvcNAQELBQADggEBAI3XhMLKEkkz27uAHD84qCoDK7ZIeTFA uVMVdgE+YBGNxm9WTIX7NT/yPIpraPactKPWfCuJIfZlioqSihMQCcHRJW1oqtvN DAU5I/GAyv8W6W97kLgvOTMWQDYDXOZHSZ46Vy+OZeWw6BN3nEe0Tx88emI5umCw 4Q0iT41br6WV634rX7iDyfjd3Zb+BavZgS3bs6eG0W2Rx1OWn0S0TRh/9GxsjuyP 6/7n4UgOhx8oGhrP4Gt81aE2RDGr+o9HzenF1fUDVqD5pkncK69Tsv+SUCHdUAhj nZa2Xe34RtTFszxTAUNVXowbsf8bXjuMery68kUQiLEXW9vh/JBkr6Q= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net