$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.cer File: 09E4737CEE36CCCE6819F704F9A924E3B310A5E2.cer (raw, json) Hash identifier: dpPPryXpFhbflEvvUPx4I4J/jz3Lpd2eVdbL7dhiF54= Subject key identifier: 09:E4:73:7C:EE:36:CC:CE:68:19:F7:04:F9:A9:24:E3:B3:10:A5:E2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 121D91EECB9448FF2385B139E9E2717A57FAA391 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.mft caRepository: rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 26 Nov 2024 02:38:56 +0000 Certificate not after: Tue 25 Nov 2025 02:43:56 +0000 Subordinate resources: IP: 2001:df4:8e40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1d:91:ee:cb:94:48:ff:23:85:b1:39:e9:e2:71:7a:57:fa:a3:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 26 02:38:56 2024 GMT Not After : Nov 25 02:43:56 2025 GMT Subject: CN=09E4737CEE36CCCE6819F704F9A924E3B310A5E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ae:bd:a6:9b:f0:a8:fb:4f:14:de:a3:b4:67: 6b:bd:53:1e:da:0b:db:3b:e5:82:ae:aa:d3:b5:07: 5f:94:7f:96:4a:fa:2e:4e:f5:07:0d:73:03:da:cf: 93:2c:2a:96:a5:1c:80:80:3e:88:21:14:5c:e1:53: 96:27:70:6b:a7:ab:c0:5b:52:f0:f7:92:da:64:9c: c9:d6:30:8a:e2:9c:4e:43:61:f5:bb:93:cf:92:9f: 65:61:8c:4c:93:ca:54:d6:f6:ea:3a:ce:79:d5:3e: ce:ef:5b:b5:08:7d:f2:0d:af:00:b1:96:32:50:5f: 4c:e1:0e:2a:7d:2b:f8:87:7e:71:e8:3b:66:fa:6e: 8a:7d:a0:c4:8e:a2:44:64:9b:87:bf:26:76:57:cc: 48:c8:90:78:1a:e2:6d:28:41:76:4a:b9:13:e9:2e: 7e:ce:cb:6d:b0:0c:35:1f:52:cd:98:9e:96:19:bb: 26:33:91:3e:d8:70:c2:aa:e4:be:9a:b6:84:37:e9: ce:4b:46:99:03:96:eb:db:03:77:4b:99:1e:26:31: a0:1b:77:45:08:03:f8:7a:e5:ac:9c:23:d9:67:c3: 2b:bd:7e:05:a3:38:a3:61:e9:aa:22:0f:32:4e:0b: 95:18:44:77:39:f3:78:9e:ac:6c:d1:06:15:2d:85: 53:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 09:E4:73:7C:EE:36:CC:CE:68:19:F7:04:F9:A9:24:E3:B3:10:A5:E2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/959612a2-4433-42b9-8f4f-b847776acafd/1/09E4737CEE36CCCE6819F704F9A924E3B310A5E2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:8e40::/48 Signature Algorithm: sha256WithRSAEncryption 4d:3c:b1:78:58:ab:19:64:0d:73:88:13:ce:68:f9:7f:ea:b0: 69:b1:d3:a4:57:df:19:12:38:03:1b:b1:7f:eb:f3:3f:b4:71: 64:d7:43:43:19:60:13:79:4e:58:32:fc:20:5f:06:f7:ba:8e: 7f:1e:df:ea:7d:7e:c8:91:b7:58:00:4f:2f:03:e3:7b:e5:be: 57:ce:56:cd:18:92:87:c7:b2:a1:76:8c:e0:92:1e:50:29:ca: 84:03:80:af:37:a1:6a:3c:31:e0:75:30:dd:ab:fb:75:f6:d1: 4a:a1:6c:b2:9d:e5:3d:68:71:21:1d:01:71:e2:16:57:78:65: 1f:06:7f:88:f8:c0:69:c1:64:a5:38:e4:93:cd:6e:10:a9:51: 72:0b:3d:93:4c:ad:65:69:49:4c:e9:ba:4e:80:74:bc:0c:2a: 1e:34:7a:da:ae:59:cb:75:d2:5a:0c:81:95:a7:8d:9e:5d:35: 15:0c:eb:94:e8:49:90:19:e3:90:85:a8:57:b6:f9:3d:4b:84: 98:5c:b5:0d:f0:bf:ba:0d:a2:cd:f0:14:77:1f:9d:73:fe:33: 26:92:fb:b2:fe:27:cc:75:cf:59:a0:46:96:e6:64:c2:92:de: aa:c6:bd:fb:e9:be:4c:b9:63:86:50:ed:54:72:b4:89:9a:6d: 00:e4:d5:a3 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUEh2R7suUSP8jhbE56eJxelf6o5EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNjAyMzg1NloX DTI1MTEyNTAyNDM1NlowMzExMC8GA1UEAxMoMDlFNDczN0NFRTM2Q0NDRTY4MTlG NzA0RjlBOTI0RTNCMzEwQTVFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMquvaab8Kj7TxTeo7Rna71THtoL2zvlgq6q07UHX5R/lkr6Lk71Bw1zA9rP kywqlqUcgIA+iCEUXOFTlidwa6erwFtS8PeS2mScydYwiuKcTkNh9buTz5KfZWGM TJPKVNb26jrOedU+zu9btQh98g2vALGWMlBfTOEOKn0r+Id+ceg7Zvpuin2gxI6i RGSbh78mdlfMSMiQeBribShBdkq5E+kufs7LbbAMNR9SzZielhm7JjORPthwwqrk vpq2hDfpzktGmQOW69sDd0uZHiYxoBt3RQgD+HrlrJwj2WfDK71+BaM4o2HpqiIP Mk4LlRhEdznzeJ6sbNEGFS2FUzsCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAnkc3zuNszOaBn3BPmpJOOzEKXiMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NTk2MTJhMi00NDMzLTQyYjktOGY0Zi1iODQ3Nzc2YWNhZmQvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1OTYxMmEy LTQ0MzMtNDJiOS04ZjRmLWI4NDc3NzZhY2FmZC8xLzA5RTQ3MzdDRUUzNkNDQ0U2 ODE5RjcwNEY5QTkyNEUzQjMxMEE1RTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ30jkAwDQYJKoZIhvcNAQELBQADggEBAE08sXhYqxlkDXOIE85o+X/qsGmx 06RX3xkSOAMbsX/r8z+0cWTXQ0MZYBN5Tlgy/CBfBve6jn8e3+p9fsiRt1gATy8D 43vlvlfOVs0YkofHsqF2jOCSHlApyoQDgK83oWo8MeB1MN2r+3X20UqhbLKd5T1o cSEdAXHiFld4ZR8Gf4j4wGnBZKU45JPNbhCpUXILPZNMrWVpSUzpuk6AdLwMKh40 etquWct10loMgZWnjZ5dNRUM65ToSZAZ45CFqFe2+T1LhJhctQ3wv7oNos3wFHcf nXP+MyaS+7L+J8x1z1mgRpbmZMKS3qrGvfvpvky5Y4ZQ7VRytImabQDk1aM= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:11 2025 by rpki-client on console.sobornost.net