$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/E902BF4CFC9D997E36A9E1A32FAA2E08CC2F5C7F.cer File: E902BF4CFC9D997E36A9E1A32FAA2E08CC2F5C7F.cer (raw, json) Hash identifier: 1I3SSiPj+i1YY2FQA90vBXkI78bp2mzo2D+k4wA+ElU= Subject key identifier: E9:02:BF:4C:FC:9D:99:7E:36:A9:E1:A3:2F:AA:2E:08:CC:2F:5C:7F Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 204396699BFA37630AB40A02892645A4DC0C2EC5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/dfb466c6-3743-495f-b1a8-2607cc99573f/0/E902BF4CFC9D997E36A9E1A32FAA2E08CC2F5C7F.mft caRepository: rsync://repo-rpki.idnic.net/repo/dfb466c6-3743-495f-b1a8-2607cc99573f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 17 Apr 2025 10:24:22 +0000 Certificate not after: Thu 16 Apr 2026 10:29:22 +0000 Subordinate resources: IP: 157.15.120.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:43:96:69:9b:fa:37:63:0a:b4:0a:02:89:26:45:a4:dc:0c:2e:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 17 10:24:22 2025 GMT Not After : Apr 16 10:29:22 2026 GMT Subject: CN=E902BF4CFC9D997E36A9E1A32FAA2E08CC2F5C7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a2:06:86:81:ad:9e:de:d8:6b:28:b0:15:ee: 57:4e:41:85:b5:63:cc:fe:5b:46:db:0f:96:7f:15: 82:cd:e0:4f:60:aa:8e:26:9d:f8:26:ab:ff:2c:bc: fa:99:bb:ff:2e:6a:53:ed:cb:6b:7e:c4:7e:75:4e: ea:d2:5b:38:ca:ad:a0:af:09:0f:10:e2:e6:39:7d: ea:84:81:d4:75:67:ad:4b:dc:68:5a:53:86:51:3e: aa:e4:a5:a9:73:b1:b8:35:9e:b8:f1:81:26:51:b1: 79:91:05:7b:a2:67:e9:a1:67:04:2b:1e:ca:cf:85: 52:64:f6:c7:01:9e:ad:0c:f2:08:a6:93:b7:31:65: cc:4a:78:d7:9b:c3:ab:86:13:54:4a:64:41:0d:36: e3:b4:aa:e2:62:5c:7d:74:00:a5:fb:d6:cc:7e:e9: 8e:5d:62:5f:de:8d:5a:51:1f:75:7d:08:dd:e4:e2: 23:9c:2c:54:58:ab:61:2d:d3:c9:3c:0a:de:d2:3e: a6:e5:c7:e0:7c:ef:73:43:e0:7f:d7:4a:57:b3:fd: 20:ff:96:55:03:48:dd:53:62:aa:b6:2f:a6:30:d3: c6:7b:db:4f:77:32:a4:b6:6a:a9:ff:17:47:6d:d4: 61:2f:a4:bd:e6:88:bf:ce:1f:37:2e:bf:26:37:94: 1a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E9:02:BF:4C:FC:9D:99:7E:36:A9:E1:A3:2F:AA:2E:08:CC:2F:5C:7F X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dfb466c6-3743-495f-b1a8-2607cc99573f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dfb466c6-3743-495f-b1a8-2607cc99573f/0/E902BF4CFC9D997E36A9E1A32FAA2E08CC2F5C7F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.15.120.0/24 Signature Algorithm: sha256WithRSAEncryption 04:40:ac:c8:65:32:53:b8:82:b1:48:d3:64:c0:9b:02:ee:25: 1c:2a:b2:12:31:c0:b9:19:ba:6b:29:93:92:c3:b3:c6:90:ed: f3:0b:43:a8:b3:7d:d2:e1:d7:67:61:47:b8:b5:af:3f:28:21: 7e:28:7a:5e:43:5d:e5:10:c3:68:ea:72:06:95:f3:30:fe:b7: 4e:00:18:a5:ba:6d:67:9c:33:80:f3:b2:c2:a8:5a:cc:99:20: db:52:41:83:4c:da:d9:ef:f6:7d:1f:c8:60:10:79:27:00:9b: f4:d1:28:65:4f:4c:b8:c9:5e:9a:70:72:68:b1:2e:80:53:ed: cb:e3:e2:44:b1:7e:90:cd:b5:ea:79:78:74:f0:f8:73:3a:a8: a5:47:1b:6c:70:de:54:ae:e6:89:4b:72:49:48:cd:1f:7d:f1: f4:d8:85:e3:a9:71:36:e0:9d:1b:ff:30:fc:b0:b1:72:8b:f6: d9:6f:e3:fd:fb:9f:78:a7:9b:8a:f3:53:fb:74:61:81:eb:43: 84:5e:86:77:9c:9d:9d:a1:ea:c8:66:8d:da:b1:39:df:59:fe: f9:2d:3a:45:6d:bb:a4:5a:9d:49:d2:32:af:5e:e3:92:f7:aa: b0:80:11:45:2a:cd:50:0d:9e:a1:3b:34:75:90:2c:d1:26:e6: e6:c8:23:d0 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIEOWaZv6N2MKtAoCiSZFpNwMLsUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQxNzEwMjQyMloX DTI2MDQxNjEwMjkyMlowMzExMC8GA1UEAxMoRTkwMkJGNENGQzlEOTk3RTM2QTlF MUEzMkZBQTJFMDhDQzJGNUM3RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOiBoaBrZ7e2GsosBXuV05BhbVjzP5bRtsPln8Vgs3gT2Cqjiad+Car/yy8 +pm7/y5qU+3La37EfnVO6tJbOMqtoK8JDxDi5jl96oSB1HVnrUvcaFpThlE+quSl qXOxuDWeuPGBJlGxeZEFe6Jn6aFnBCseys+FUmT2xwGerQzyCKaTtzFlzEp415vD q4YTVEpkQQ0247Sq4mJcfXQApfvWzH7pjl1iX96NWlEfdX0I3eTiI5wsVFirYS3T yTwK3tI+puXH4Hzvc0Pgf9dKV7P9IP+WVQNI3VNiqrYvpjDTxnvbT3cypLZqqf8X R23UYS+kveaIv84fNy6/JjeUGm8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOkCv0z8nZl+Nqnhoy+qLgjML1x/MB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZmI0NjZjNi0zNzQzLTQ5NWYtYjFhOC0yNjA3Y2M5OTU3M2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYjQ2NmM2 LTM3NDMtNDk1Zi1iMWE4LTI2MDdjYzk5NTczZi8wL0U5MDJCRjRDRkM5RDk5N0Uz NkE5RTFBMzJGQUEyRTA4Q0MyRjVDN0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdD3gwDQYJKoZIhvcNAQELBQADggEBAARArMhlMlO4grFI02TAmwLuJRwqshIx wLkZumspk5LDs8aQ7fMLQ6izfdLh12dhR7i1rz8oIX4oel5DXeUQw2jqcgaV8zD+ t04AGKW6bWecM4DzssKoWsyZINtSQYNM2tnv9n0fyGAQeScAm/TRKGVPTLjJXppw cmixLoBT7cvj4kSxfpDNtep5eHTw+HM6qKVHG2xw3lSu5olLcklIzR998fTYheOp cTbgnRv/MPywsXKL9tlv4/37n3inm4rzU/t0YYHrQ4RehnecnZ2h6shmjdqxOd9Z /vktOkVtu6RanUnSMq9e45L3qrCAEUUqzVANnqE7NHWQLNEm5ubII9A= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net