$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer File: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer (raw, json) Hash identifier: DKp+VfkudvNWJITlrAHDVRT0hEC4t0G6rs63oh97eOc= Subject key identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0C7ABD19F22D000E949778D91851A506ADDE731A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft caRepository: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Apr 2025 14:40:16 +0000 Certificate not after: Fri 17 Apr 2026 14:45:16 +0000 Subordinate resources: IP: 157.66.122.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:7a:bd:19:f2:2d:00:0e:94:97:78:d9:18:51:a5:06:ad:de:73:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 18 14:40:16 2025 GMT Not After : Apr 17 14:45:16 2026 GMT Subject: CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:58:20:12:8c:b2:53:c6:6b:43:8f:0f:45:70: 7d:78:6c:ad:96:9a:3c:25:27:7f:40:a4:66:ed:a4: 58:42:fb:1e:7c:08:a2:d0:64:e1:d1:88:69:09:b0: 26:de:33:30:6a:84:ba:bd:dc:2b:12:09:e5:72:f0: a7:64:23:89:1d:f6:71:78:3e:ec:60:62:c8:c0:11: b5:de:9c:5b:1d:19:e9:63:59:96:50:09:e8:29:6b: 63:ba:b4:68:5b:9c:09:83:8f:76:a0:92:d3:02:8c: bd:78:40:d4:74:8b:e2:f3:6a:81:f9:d2:82:35:9a: d6:33:d7:ae:21:c0:67:49:f6:ed:a1:9e:fb:21:a6: 9c:01:b5:04:87:73:80:b8:9d:80:b8:cf:cd:b4:16: c2:da:c8:4c:b3:3b:3c:1f:f6:36:1f:d2:25:3a:b6: 33:7c:8b:e2:81:04:91:1a:ba:67:f5:a8:f9:21:c5: 22:e3:7f:96:e9:68:79:50:6a:6c:29:66:4a:d7:fb: de:08:6a:0b:bd:f7:7a:80:35:df:4e:ae:75:60:1b: a2:96:da:bb:25:c5:f3:25:1b:20:3a:20:8b:4c:77: 72:7a:af:4e:28:44:37:22:01:0f:36:d4:2e:26:8c: 71:89:92:a5:6c:5f:58:8b:aa:ed:3e:af:71:85:b1: dc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.122.0/24 Signature Algorithm: sha256WithRSAEncryption 16:d6:c2:f6:be:7d:f9:ba:90:97:2b:3d:3c:f0:2a:51:c1:c6: 44:5c:75:a1:bc:cb:5a:38:ac:03:37:87:26:17:bf:b4:16:ba: 4e:11:6b:01:f8:f1:49:f2:3a:31:4b:ca:9c:95:7e:30:6a:58: 4b:49:47:e1:8f:06:f1:52:45:b5:1a:34:ba:a3:ae:63:50:68: 58:5b:4b:a3:ac:03:17:18:c6:b5:b6:ca:37:08:f4:c4:7c:28: ed:af:db:4d:e9:c4:81:f7:78:60:c9:a0:b2:f4:71:43:1c:79: 07:c2:14:79:a0:85:e6:d0:1d:9d:f7:ca:f5:39:1f:a7:de:a8: 98:cc:de:23:a9:da:e3:91:fa:7c:8f:fb:b8:32:ee:b7:b6:54: 40:ea:91:d9:02:fe:ed:c1:28:3a:ba:74:4d:bd:47:b3:3f:1c: 15:0e:30:37:49:40:18:e7:94:73:88:fd:a3:5b:01:ea:47:bd: d3:1d:d0:59:99:48:77:6d:81:c8:bd:e6:6e:cf:9f:9f:2b:27: 50:cf:fd:03:80:81:85:7a:64:ab:34:ab:e5:00:cb:a2:e6:0d: 0f:85:e8:4e:cd:9b:47:83:06:f6:1d:a8:47:7a:a6:d7:bb:86: 7f:9d:c4:79:24:ed:c2:ba:31:37:ab:cc:57:ac:a4:db:fa:24: 0f:74:20:99 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDHq9GfItAA6Ul3jZGFGlBq3ecxowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQxODE0NDAxNloX DTI2MDQxNzE0NDUxNlowMzExMC8GA1UEAxMoNUE4RDRERUM1RkMyOUJFNkUyNDkw NDYyRjU4MDkwM0RENEE5ODRFQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNYIBKMslPGa0OPD0VwfXhsrZaaPCUnf0CkZu2kWEL7HnwIotBk4dGIaQmw Jt4zMGqEur3cKxIJ5XLwp2QjiR32cXg+7GBiyMARtd6cWx0Z6WNZllAJ6ClrY7q0 aFucCYOPdqCS0wKMvXhA1HSL4vNqgfnSgjWa1jPXriHAZ0n27aGe+yGmnAG1BIdz gLidgLjPzbQWwtrITLM7PB/2Nh/SJTq2M3yL4oEEkRq6Z/Wo+SHFIuN/luloeVBq bClmStf73ghqC733eoA1306udWAbopbauyXF8yUbIDogi0x3cnqvTihENyIBDzbU LiaMcYmSpWxfWIuq7T6vcYWx3LkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFqNTexfwpvm4kkEYvWAkD3UqYTrMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZWNmNWQ5NC03ZjFmLTQzYmYtYjdhYS0yMjBmMGMxNTZlYzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlY2Y1ZDk0 LTdmMWYtNDNiZi1iN2FhLTIyMGYwYzE1NmVjMC8wLzVBOEQ0REVDNUZDMjlCRTZF MjQ5MDQ2MkY1ODA5MDNERDRBOTg0RUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdQnowDQYJKoZIhvcNAQELBQADggEBABbWwva+ffm6kJcrPTzwKlHBxkRcdaG8 y1o4rAM3hyYXv7QWuk4RawH48UnyOjFLypyVfjBqWEtJR+GPBvFSRbUaNLqjrmNQ aFhbS6OsAxcYxrW2yjcI9MR8KO2v203pxIH3eGDJoLL0cUMceQfCFHmghebQHZ33 yvU5H6feqJjM3iOp2uOR+nyP+7gy7re2VEDqkdkC/u3BKDq6dE29R7M/HBUOMDdJ QBjnlHOI/aNbAepHvdMd0FmZSHdtgci95m7Pn58rJ1DP/QOAgYV6ZKs0q+UAy6Lm DQ+F6E7Nm0eDBvYdqEd6pte7hn+dxHkk7cK6MTerzFespNv6JA90IJk= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net