$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/172EF26B46332C842D6DD562C82C8CDBC927C3F5.cer File: 172EF26B46332C842D6DD562C82C8CDBC927C3F5.cer (raw, json) Hash identifier: epU6zGlZS8tUtmryoPJZfzDYp54gPUrx1auIR+iD+YM= Subject key identifier: 17:2E:F2:6B:46:33:2C:84:2D:6D:D5:62:C8:2C:8C:DB:C9:27:C3:F5 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 5835DD0AC480571392DC0C3A89464136E0DD950F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0/172EF26B46332C842D6DD562C82C8CDBC927C3F5.mft caRepository: rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 23 Apr 2025 08:28:07 +0000 Certificate not after: Wed 22 Apr 2026 08:33:07 +0000 Subordinate resources: IP: 157.20.46.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:35:dd:0a:c4:80:57:13:92:dc:0c:3a:89:46:41:36:e0:dd:95:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 23 08:28:07 2025 GMT Not After : Apr 22 08:33:07 2026 GMT Subject: CN=172EF26B46332C842D6DD562C82C8CDBC927C3F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:02:d4:90:e2:d8:27:e9:37:4a:2a:5c:8f: be:5f:3b:d7:34:15:c8:37:c8:91:88:7b:b9:6e:aa: 01:b0:f2:9b:ed:58:b7:37:34:06:35:17:f8:dc:40: fe:2b:ec:4b:29:31:58:32:dc:bd:09:65:b8:de:00: c7:e6:62:0b:9f:dd:4d:0c:89:0e:62:d6:12:89:ec: bb:fd:ac:12:ec:47:c9:0e:55:17:94:ac:04:37:69: 2e:51:9a:e0:bb:8e:0e:fc:70:6c:fe:da:10:b8:2b: b6:15:75:38:44:55:b5:b0:ab:9d:c6:9e:27:f8:57: 47:a8:54:db:c7:b6:f7:13:9e:fd:33:24:d5:3f:dd: 0b:7f:9c:35:d7:35:fa:09:da:25:f2:e0:2a:67:a6: 13:dd:32:b7:f8:2b:aa:8e:db:75:ab:af:ac:b9:e3: 2f:96:a5:78:0e:99:96:4f:f5:b8:be:a1:d0:06:5f: 9b:31:62:69:f1:ad:12:be:21:3a:75:00:0d:cf:60: 42:94:ce:3d:a9:66:56:c4:5f:ec:96:0f:fc:90:18: c1:9c:e7:fe:53:9f:88:bc:00:6b:f3:09:92:c0:60: 44:44:d0:15:08:14:23:5c:20:50:2c:ce:ef:58:33: fd:0b:ac:8d:81:d7:51:56:20:bf:b2:4d:fb:64:ff: de:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 17:2E:F2:6B:46:33:2C:84:2D:6D:D5:62:C8:2C:8C:DB:C9:27:C3:F5 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c82b8f56-8e82-4644-b049-2c5c2ffb4d99/0/172EF26B46332C842D6DD562C82C8CDBC927C3F5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.46.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:a3:dc:6e:ee:aa:6b:72:a4:e6:fb:94:19:43:58:71:8b:ae: d0:d0:b5:55:54:20:7d:b5:9c:2a:86:a6:9a:07:7d:5d:93:d7: f1:27:c8:26:59:0c:d1:83:26:10:c1:47:7e:9e:8d:45:b1:dc: 77:9a:35:7e:ab:3a:40:6c:2a:e6:b8:48:24:29:53:34:9f:1f: 77:a9:c2:61:fa:89:41:40:76:da:f2:c6:59:63:c3:f3:a9:9c: 3b:40:7f:9b:69:3b:8e:3f:52:15:1e:a0:7b:04:e3:e4:e7:69: b9:8b:40:b5:63:f0:b1:4e:2f:bb:35:e1:0c:1f:b5:e4:4a:74: ab:6c:26:51:d9:b2:67:ec:47:cf:b8:a0:d0:6b:e1:fd:89:3c: 21:0e:8f:25:ce:b1:7c:d9:73:28:11:10:ac:31:7c:9b:d1:7a: 68:fb:41:92:e6:6f:52:8f:3b:9b:84:f0:92:65:20:50:1d:4f: 7d:c3:27:16:da:a9:21:c4:9a:b7:fa:ae:6c:10:24:5f:c0:5c: 5f:26:5b:03:59:69:6a:3c:a5:01:21:09:4b:03:e9:d6:34:ef: 3e:56:2b:c7:ff:af:1d:39:b2:3a:a7:81:54:4b:fa:b7:e5:a3: 65:56:b7:5f:d7:d6:57:b2:6e:4d:95:b7:a2:4c:bf:84:d9:57: e4:0b:67:e9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWDXdCsSAVxOS3Aw6iUZBNuDdlQ8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQyMzA4MjgwN1oX DTI2MDQyMjA4MzMwN1owMzExMC8GA1UEAxMoMTcyRUYyNkI0NjMzMkM4NDJENkRE NTYyQzgyQzhDREJDOTI3QzNGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMWwAtSQ4tgn6TdKKlyPvl871zQVyDfIkYh7uW6qAbDym+1Ytzc0BjUX+NxA /ivsSykxWDLcvQlluN4Ax+ZiC5/dTQyJDmLWEonsu/2sEuxHyQ5VF5SsBDdpLlGa 4LuODvxwbP7aELgrthV1OERVtbCrncaeJ/hXR6hU28e29xOe/TMk1T/dC3+cNdc1 +gnaJfLgKmemE90yt/grqo7bdauvrLnjL5aleA6Zlk/1uL6h0AZfmzFiafGtEr4h OnUADc9gQpTOPalmVsRf7JYP/JAYwZzn/lOfiLwAa/MJksBgRETQFQgUI1wgUCzO 71gz/QusjYHXUVYgv7JN+2T/3vkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBcu8mtGMyyELW3VYsgsjNvJJ8P1MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jODJiOGY1Ni04ZTgyLTQ2NDQtYjA0OS0yYzVjMmZmYjRkOTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M4MmI4ZjU2 LThlODItNDY0NC1iMDQ5LTJjNWMyZmZiNGQ5OS8wLzE3MkVGMjZCNDYzMzJDODQy RDZERDU2MkM4MkM4Q0RCQzkyN0MzRjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFC4wDQYJKoZIhvcNAQELBQADggEBADqj3G7uqmtypOb7lBlDWHGLrtDQtVVU IH21nCqGppoHfV2T1/EnyCZZDNGDJhDBR36ejUWx3HeaNX6rOkBsKua4SCQpUzSf H3epwmH6iUFAdtryxlljw/OpnDtAf5tpO44/UhUeoHsE4+TnabmLQLVj8LFOL7s1 4QwfteRKdKtsJlHZsmfsR8+4oNBr4f2JPCEOjyXOsXzZcygREKwxfJvRemj7QZLm b1KPO5uE8JJlIFAdT33DJxbaqSHEmrf6rmwQJF/AXF8mWwNZaWo8pQEhCUsD6dY0 7z5WK8f/rx05sjqngVRL+rflo2VWt1/X1leybk2Vt6JMv4TZV+QLZ+k= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net