$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.cer File: EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.cer (raw, json) Hash identifier: vf+Aqk9pOmF54Zsazy1ddEMArAN65oKZDFAzQZQjwqM= Subject key identifier: EF:AF:3D:BC:84:57:8E:58:6E:A4:A0:4F:C3:5E:6A:46:FA:0E:28:EA Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 2F2A4B48D13D2822F47909B57D9B48EB0162C2B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.mft caRepository: rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 15 Apr 2025 14:23:18 +0000 Certificate not after: Tue 14 Apr 2026 14:28:18 +0000 Subordinate resources: IP: 157.66.36.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:2a:4b:48:d1:3d:28:22:f4:79:09:b5:7d:9b:48:eb:01:62:c2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Apr 15 14:23:18 2025 GMT Not After : Apr 14 14:28:18 2026 GMT Subject: CN=EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:46:5f:c7:b8:b0:6a:28:63:08:0d:5c:03:e9: aa:53:fb:a1:d6:14:c3:aa:15:73:cc:01:16:ba:e1: 37:c6:c3:bd:c3:fc:4a:77:14:f6:4c:1d:c4:5a:bd: 15:46:a1:26:85:4f:fa:cf:2d:f8:e0:09:94:29:9f: 57:53:c0:36:0d:63:2d:57:4e:26:79:13:64:cf:fd: f4:fd:a2:44:5f:6c:88:97:68:07:46:03:36:5c:ea: a8:cf:5c:15:5f:0d:b9:1a:04:29:45:86:0e:93:a0: d2:38:51:7c:7d:95:59:2e:1d:da:44:eb:eb:74:43: 4e:10:2a:c0:6a:b1:ce:97:f7:53:b4:4c:c7:ef:cf: b3:f2:11:50:89:22:bc:0f:d5:cf:ae:ad:3b:6f:63: 7f:b6:6b:b8:f2:4c:b5:27:80:be:11:b5:6e:cf:cc: 19:a5:b0:69:85:fc:85:6c:80:0f:ec:b5:c6:e9:83: cf:c7:7c:0b:5c:71:f3:03:5c:5c:d4:72:e9:67:82: 31:f0:ed:68:15:87:fa:2c:20:1c:0d:17:f6:9d:7d: 6f:d4:8e:c4:41:e6:0d:84:8d:ac:0f:0b:54:22:1c: c7:35:84:c5:b6:cb:22:1e:72:4b:66:3a:dd:21:f6: 85:4b:01:a7:25:50:dd:e5:17:09:b8:48:db:cf:06: bf:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: EF:AF:3D:BC:84:57:8E:58:6E:A4:A0:4F:C3:5E:6A:46:FA:0E:28:EA X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5f9e1a8a-39f1-4fe2-832a-bb2f2092fbf6/0/EFAF3DBC84578E586EA4A04FC35E6A46FA0E28EA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.36.0/24 Signature Algorithm: sha256WithRSAEncryption 39:38:97:62:5b:ac:2b:a3:ac:3d:65:81:7f:49:f2:42:47:04: f0:02:83:4b:44:ff:9b:24:04:7c:05:6c:87:71:5e:79:a8:70: 98:de:c0:7a:2e:24:0b:87:ca:5f:c6:0b:3d:5f:d6:a2:64:87: ea:60:b6:97:06:63:51:41:e8:b4:4f:78:09:b7:0d:b7:a9:9a: 3c:76:43:1f:bb:3c:6e:42:4d:e0:3c:5d:05:b5:3a:c7:d2:e3: 43:0c:cd:3a:80:a9:ac:a9:8f:04:78:f6:89:93:bb:ed:fd:9c: 27:99:5e:ef:c2:8c:b1:e7:c4:32:d5:59:af:02:97:05:d6:39: dd:c6:41:da:16:97:ab:42:cc:f1:7d:89:0a:21:6d:0d:e0:3f: 70:52:d5:2d:08:2b:e2:b3:ea:6a:d8:7b:b1:66:0f:b0:0f:b7: d7:12:6e:d8:19:7b:94:52:ba:6b:db:f8:aa:d9:39:c9:52:a1: ff:54:52:18:1d:8f:f2:8a:a1:d4:44:0b:0c:56:c3:5a:72:fd: 11:94:61:9a:71:d4:d5:26:26:d7:20:c2:48:0e:51:7f:f8:9f: 00:11:4f:53:94:52:10:cd:70:29:56:72:de:dd:23:05:be:14: 83:bc:d0:09:42:5e:fa:17:df:01:84:c5:4b:93:b3:0f:08:7d: 90:cd:6d:da -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULypLSNE9KCL0eQm1fZtI6wFiwrYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDQxNTE0MjMxOFoX DTI2MDQxNDE0MjgxOFowMzExMC8GA1UEAxMoRUZBRjNEQkM4NDU3OEU1ODZFQTRB MDRGQzM1RTZBNDZGQTBFMjhFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORGX8e4sGooYwgNXAPpqlP7odYUw6oVc8wBFrrhN8bDvcP8SncU9kwdxFq9 FUahJoVP+s8t+OAJlCmfV1PANg1jLVdOJnkTZM/99P2iRF9siJdoB0YDNlzqqM9c FV8NuRoEKUWGDpOg0jhRfH2VWS4d2kTr63RDThAqwGqxzpf3U7RMx+/Ps/IRUIki vA/Vz66tO29jf7ZruPJMtSeAvhG1bs/MGaWwaYX8hWyAD+y1xumDz8d8C1xx8wNc XNRy6WeCMfDtaBWH+iwgHA0X9p19b9SOxEHmDYSNrA8LVCIcxzWExbbLIh5yS2Y6 3SH2hUsBpyVQ3eUXCbhI288Gv9MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFO+vPbyEV45YbqSgT8Neakb6DijqMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZjllMWE4YS0zOWYxLTRmZTItODMyYS1iYjJmMjA5MmZiZjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmOWUxYThh LTM5ZjEtNGZlMi04MzJhLWJiMmYyMDkyZmJmNi8wL0VGQUYzREJDODQ1NzhFNTg2 RUE0QTA0RkMzNUU2QTQ2RkEwRTI4RUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdQiQwDQYJKoZIhvcNAQELBQADggEBADk4l2JbrCujrD1lgX9J8kJHBPACg0tE /5skBHwFbIdxXnmocJjewHouJAuHyl/GCz1f1qJkh+pgtpcGY1FB6LRPeAm3Dbep mjx2Qx+7PG5CTeA8XQW1OsfS40MMzTqAqaypjwR49omTu+39nCeZXu/CjLHnxDLV Wa8ClwXWOd3GQdoWl6tCzPF9iQohbQ3gP3BS1S0IK+Kz6mrYe7FmD7APt9cSbtgZ e5RSumvb+KrZOclSof9UUhgdj/KKodRECwxWw1py/RGUYZpx1NUmJtcgwkgOUX/4 nwART1OUUhDNcClWct7dIwW+FIO80AlCXvoX3wGExUuTsw8IfZDNbdo= -----END CERTIFICATE-----Generated at Thu Apr 24 18:01:27 2025 by rpki-client on console.sobornost.net