$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/034E0FA5B6C1B4E1564924CEE0DCB6A16352DFF9.cer File: 034E0FA5B6C1B4E1564924CEE0DCB6A16352DFF9.cer (raw, json) Hash identifier: kvUh6Ufl7eHn+LAuA+vXpVaEjj2MqnYPARydrElNhwY= Subject key identifier: 03:4E:0F:A5:B6:C1:B4:E1:56:49:24:CE:E0:DC:B6:A1:63:52:DF:F9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6230076ECB5B1878224EB7F258DC2816733CA55E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/034E0FA5B6C1B4E1564924CEE0DCB6A16352DFF9.mft caRepository: rsync://repo-rpki.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 08 Apr 2025 22:46:07 +0000 Certificate not after: Tue 07 Apr 2026 22:51:07 +0000 Subordinate resources: IP: 103.150.32.0/23 IP: 2405:fa40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:30:07:6e:cb:5b:18:78:22:4e:b7:f2:58:dc:28:16:73:3c:a5:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 22:46:07 2025 GMT Not After : Apr 7 22:51:07 2026 GMT Subject: CN=034E0FA5B6C1B4E1564924CEE0DCB6A16352DFF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:93:3a:c3:75:28:81:e0:ab:fe:6a:81:c2:62: 81:be:10:ad:d3:a5:5c:65:5c:6f:8f:8a:26:f0:5a: 15:dc:36:3d:91:ff:ac:09:d0:14:c4:cc:9a:30:60: dd:1a:a6:f4:8d:3b:e9:e8:fa:59:6f:e7:d0:77:82: 8c:58:34:d4:fc:b7:51:15:43:86:ab:fc:c5:31:45: 71:f4:27:c6:20:dd:f4:73:05:15:ee:e1:57:ac:e3: 02:05:d4:8f:7c:27:dc:43:55:86:71:2a:4a:96:35: 83:45:86:12:5a:f5:97:97:a1:50:e3:dc:66:5b:d1: 90:e1:c4:89:16:97:d0:b1:4f:df:2f:34:51:34:78: de:dd:7e:2f:74:44:2c:86:29:e5:10:0a:6c:6a:bd: 74:86:aa:d0:4b:20:1b:07:62:99:ac:73:d0:36:71: 92:61:98:96:03:02:68:d5:81:13:a6:b6:3c:55:78: e1:ec:70:6d:84:33:f3:68:c8:f3:3a:e2:de:20:91: bc:93:cc:bb:40:03:47:1f:da:0e:68:4f:da:ff:f2: 6c:27:fb:46:e3:10:d0:a4:f9:27:dd:14:28:77:ad: 0f:be:4d:31:06:b0:a0:99:b0:a5:f8:d7:18:15:da: 51:8e:ef:e5:26:58:10:02:ac:d5:44:a5:6a:22:0f: e6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 03:4E:0F:A5:B6:C1:B4:E1:56:49:24:CE:E0:DC:B6:A1:63:52:DF:F9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/caf50383-7d04-47c8-aaeb-f7e766937731/0/034E0FA5B6C1B4E1564924CEE0DCB6A16352DFF9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.32.0/23 IPv6: 2405:fa40::/32 Signature Algorithm: sha256WithRSAEncryption 39:a8:f2:bb:f9:59:85:b7:3c:72:2b:8d:a2:c2:bd:c0:d3:b6: 63:21:3f:66:69:84:98:3f:0a:1a:69:ab:b2:b2:70:e7:6e:da: a2:da:79:92:70:05:17:57:da:27:1f:72:72:b6:24:af:9d:7c: f1:e5:2f:3c:c4:cf:f7:8b:20:4b:e7:be:39:f2:ba:c4:21:4f: 4d:3b:a0:d2:04:6b:b8:4c:9b:0e:55:7f:58:df:c2:55:9c:63: 73:18:b9:b8:7a:24:a4:f9:a2:d4:59:ff:3d:2c:9f:ea:bc:66: 0a:ff:13:3f:0e:4a:63:8c:4d:fe:1c:7a:d4:ba:c6:ae:ae:c8: 55:e6:3d:e6:dd:e6:6f:60:86:94:e0:29:02:83:11:ce:f5:c6: 12:a9:e1:4b:d1:a8:19:5a:49:e1:09:e3:ae:78:22:e8:60:06: d5:00:e5:63:e5:b3:b8:d3:79:7d:61:8a:4a:5a:03:52:88:8f: 6b:e1:62:dc:01:d6:71:76:65:3f:9f:a2:f8:bc:9d:8c:60:02: ba:8d:c9:4c:be:d8:e5:19:46:19:fb:c5:76:f2:3c:23:12:b1: c8:d0:f9:97:61:02:85:e2:9f:b7:fe:91:57:24:42:54:fe:ec: 0e:6f:ab:4e:02:7e:ed:b4:57:a4:5a:92:58:52:ec:6b:34:0c: 5b:11:0a:d9 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUYjAHbstbGHgiTrfyWNwoFnM8pV4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwODIyNDYwN1oX DTI2MDQwNzIyNTEwN1owMzExMC8GA1UEAxMoMDM0RTBGQTVCNkMxQjRFMTU2NDky NENFRTBEQ0I2QTE2MzUyREZGOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGTOsN1KIHgq/5qgcJigb4QrdOlXGVcb4+KJvBaFdw2PZH/rAnQFMTMmjBg 3Rqm9I076ej6WW/n0HeCjFg01Py3URVDhqv8xTFFcfQnxiDd9HMFFe7hV6zjAgXU j3wn3ENVhnEqSpY1g0WGElr1l5ehUOPcZlvRkOHEiRaX0LFP3y80UTR43t1+L3RE LIYp5RAKbGq9dIaq0EsgGwdimaxz0DZxkmGYlgMCaNWBE6a2PFV44exwbYQz82jI 8zri3iCRvJPMu0ADRx/aDmhP2v/ybCf7RuMQ0KT5J90UKHetD75NMQawoJmwpfjX GBXaUY7v5SZYEAKs1USlaiIP5tsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFANOD6W2wbThVkkkzuDctqFjUt/5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jYWY1MDM4My03ZDA0LTQ3YzgtYWFlYi1mN2U3NjY5Mzc3MzEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NhZjUwMzgz LTdkMDQtNDdjOC1hYWViLWY3ZTc2NjkzNzczMS8wLzAzNEUwRkE1QjZDMUI0RTE1 NjQ5MjRDRUUwRENCNkExNjM1MkRGRjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnliAwDQQCAAIwBwMFACQF+kAwDQYJKoZIhvcNAQELBQADggEBADmo8rv5WYW3 PHIrjaLCvcDTtmMhP2ZphJg/Chppq7KycOdu2qLaeZJwBRdX2icfcnK2JK+dfPHl LzzEz/eLIEvnvjnyusQhT007oNIEa7hMmw5Vf1jfwlWcY3MYubh6JKT5otRZ/z0s n+q8Zgr/Ez8OSmOMTf4cetS6xq6uyFXmPebd5m9ghpTgKQKDEc71xhKp4UvRqBla SeEJ4654IuhgBtUA5WPls7jTeX1hikpaA1KIj2vhYtwB1nF2ZT+fovi8nYxgArqN yUy+2OUZRhn7xXbyPCMSscjQ+ZdhAoXin7f+kVckQlT+7A5vq04Cfu20V6RaklhS 7Gs0DFsRCtk= -----END CERTIFICATE-----Generated at Mon Apr 28 22:47:19 2025 by rpki-client on console.sobornost.net