$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/C453630F1ABE5FF992F948A75DB4587776AD02EC.cer File: C453630F1ABE5FF992F948A75DB4587776AD02EC.cer (raw, json) Hash identifier: 5VwAmwoaX0iss0A2zPrFl6XgvxZu1GnKD/qmFCNU+wA= Subject key identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 53D6161E1D4619B721541750BA551AA44E631D1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft caRepository: rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 08 Apr 2025 11:51:13 +0000 Certificate not after: Tue 07 Apr 2026 11:56:13 +0000 Subordinate resources: IP: 157.20.208.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:d6:16:1e:1d:46:19:b7:21:54:17:50:ba:55:1a:a4:4e:63:1d:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 8 11:51:13 2025 GMT Not After : Apr 7 11:56:13 2026 GMT Subject: CN=C453630F1ABE5FF992F948A75DB4587776AD02EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:53:2e:06:fe:e8:33:2e:2c:9c:6c:64:89:ed: b9:61:0c:13:3b:36:0a:3c:f6:c0:84:05:f2:00:44: 56:48:61:4e:93:a2:14:33:7e:9c:57:ed:c7:11:b4: 8b:c2:58:1c:1a:ad:55:5a:76:47:d0:4e:47:e2:5d: b5:67:0f:44:94:1e:ea:cf:37:66:62:83:bb:50:86: ce:a2:43:4a:0a:3c:4b:46:de:67:fd:6b:95:37:6a: 85:99:86:92:56:a5:06:52:71:4c:2e:a2:24:56:02: 55:49:52:2a:b2:5f:50:d5:95:c1:b3:46:79:c5:38: 9f:54:02:d0:71:a5:32:1f:30:21:0a:98:78:7d:5c: 4e:d3:08:9f:7b:94:f5:94:f6:99:93:89:dc:cb:42: 36:86:5e:1e:87:e6:35:b9:91:9a:e2:c9:53:29:2b: 3d:cd:36:9e:cf:9e:16:a7:1d:2e:cf:2c:62:b3:f5: 67:60:cb:7f:2e:37:ff:7c:5d:13:ea:8f:cb:11:7e: 1e:e4:bc:de:8c:a8:09:50:54:ab:75:7a:cd:13:61: 6b:4c:f4:99:a9:90:a4:8a:d1:d5:33:aa:53:85:e6: 57:fa:c4:25:68:2a:89:a2:ff:40:48:7b:1a:1b:69: 0b:b8:77:74:e5:9d:b8:a2:c7:cc:17:a2:b3:df:6d: 16:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C4:53:63:0F:1A:BE:5F:F9:92:F9:48:A7:5D:B4:58:77:76:AD:02:EC X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dc4094d2-e18d-4840-84fa-c5757af580f1/0/C453630F1ABE5FF992F948A75DB4587776AD02EC.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.20.208.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:9b:a6:00:50:a0:88:18:7d:2a:2f:e9:73:51:d7:86:04:69: c7:08:61:7a:8c:19:53:ff:d6:6d:5e:ca:1e:ef:b5:20:14:3f: 1a:d3:d7:f6:ba:9e:f2:c7:55:06:7a:85:19:32:2b:68:e4:e1: 6c:11:a7:2b:a0:8c:57:9b:01:2c:c2:8f:3f:f3:eb:c9:a6:41: 22:5f:aa:cc:20:e9:96:1a:81:56:09:38:6a:9d:9e:07:d4:d1: 22:48:bd:1e:94:43:4f:b2:d5:96:d6:b1:e0:87:2a:2b:fe:58: 77:90:e1:04:7c:4c:2a:ef:a0:45:83:5d:46:bd:6b:ea:3d:28: a7:69:be:96:1a:be:c9:39:19:53:b8:6b:47:cd:e5:7d:d6:0a: 87:78:3f:dc:2d:39:61:5a:72:be:5b:47:72:9c:6b:1c:59:76: 41:c0:97:c1:44:39:9a:30:a7:e6:8a:7f:e5:80:83:4b:8b:f4: bb:4d:92:79:6b:51:64:5f:32:7e:d4:f0:08:3f:a6:f4:cd:a7: 1b:70:00:ba:e8:d2:d4:9c:a4:35:59:49:f3:eb:47:cd:46:f6: 1f:6f:6e:87:28:60:9e:c4:aa:d7:ae:a8:53:60:f5:72:ef:b4: f3:e4:94:ac:e0:2a:7b:98:2c:d6:9b:5a:2f:ea:18:47:b1:cf: 20:64:e7:4b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUU9YWHh1GGbchVBdQulUapE5jHRwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQwODExNTExM1oX DTI2MDQwNzExNTYxM1owMzExMC8GA1UEAxMoQzQ1MzYzMEYxQUJFNUZGOTkyRjk0 OEE3NURCNDU4Nzc3NkFEMDJFQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANNTLgb+6DMuLJxsZIntuWEMEzs2Cjz2wIQF8gBEVkhhTpOiFDN+nFftxxG0 i8JYHBqtVVp2R9BOR+JdtWcPRJQe6s83ZmKDu1CGzqJDSgo8S0beZ/1rlTdqhZmG klalBlJxTC6iJFYCVUlSKrJfUNWVwbNGecU4n1QC0HGlMh8wIQqYeH1cTtMIn3uU 9ZT2mZOJ3MtCNoZeHofmNbmRmuLJUykrPc02ns+eFqcdLs8sYrP1Z2DLfy43/3xd E+qPyxF+HuS83oyoCVBUq3V6zRNha0z0mamQpIrR1TOqU4XmV/rEJWgqiaL/QEh7 GhtpC7h3dOWduKLHzBeis99tFq8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMRTYw8avl/5kvlIp120WHd2rQLsMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYzQwOTRkMi1lMThkLTQ4NDAtODRmYS1jNTc1N2FmNTgwZjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RjNDA5NGQy LWUxOGQtNDg0MC04NGZhLWM1NzU3YWY1ODBmMS8wL0M0NTM2MzBGMUFCRTVGRjk5 MkY5NDhBNzVEQjQ1ODc3NzZBRDAyRUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdFNAwDQYJKoZIhvcNAQELBQADggEBABybpgBQoIgYfSov6XNR14YEaccIYXqM GVP/1m1eyh7vtSAUPxrT1/a6nvLHVQZ6hRkyK2jk4WwRpyugjFebASzCjz/z68mm QSJfqswg6ZYagVYJOGqdngfU0SJIvR6UQ0+y1ZbWseCHKiv+WHeQ4QR8TCrvoEWD XUa9a+o9KKdpvpYavsk5GVO4a0fN5X3WCod4P9wtOWFacr5bR3KcaxxZdkHAl8FE OZowp+aKf+WAg0uL9LtNknlrUWRfMn7U8Ag/pvTNpxtwALro0tScpDVZSfPrR81G 9h9vbocoYJ7EqteuqFNg9XLvtPPklKzgKnuYLNabWi/qGEexzyBk50s= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net