$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer File: 0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer (raw, json) Hash identifier: T0t/C/zmKVnHjMmkXtgm3kTZ0EBO3odgkan0TE8+kQs= Subject key identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 61BE111FE7C411A63CF6A7F83DEC8C76B3B16C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 16 Apr 2025 05:01:09 +0000 Certificate not after: Wed 15 Apr 2026 05:06:09 +0000 Subordinate resources: IP: 103.84.208.0/22 IP: 2400:a340::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 01:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:be:11:1f:e7:c4:11:a6:3c:f6:a7:f8:3d:ec:8c:76:b3:b1:6c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 16 05:01:09 2025 GMT Not After : Apr 15 05:06:09 2026 GMT Subject: CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:30:11:67:cd:d2:96:5f:ee:a0:8c:93:df:79: 78:e3:c1:d1:30:15:be:46:43:3f:54:19:7f:b5:9e: d9:c2:f1:97:69:a1:95:d9:f1:51:e0:f0:42:21:6c: 41:fc:b9:4a:5e:16:75:f7:f3:0a:be:92:a9:1c:1c: 84:67:e0:28:81:cf:f3:93:d7:2d:32:c4:53:35:3a: 26:d0:23:91:e9:68:e4:f7:ec:9d:bb:82:ca:9c:99: 35:ae:88:93:f2:5a:b8:67:12:55:56:a5:d1:50:2b: 10:da:79:f6:89:36:d7:54:a9:eb:8e:5b:c7:cb:53: 12:57:e2:bd:c2:67:2c:cb:7f:e1:48:e7:ec:b2:36: b0:0b:19:a5:56:ec:74:30:50:09:0f:5f:be:6c:31: 12:51:76:e2:f7:63:ff:2f:7c:03:b3:2d:23:5d:53: 15:70:57:0b:ca:70:bc:d3:3e:34:d3:b1:7c:d0:0c: fd:c2:76:7f:ba:5b:1c:9f:18:7f:b6:3c:3a:0a:76: 09:cd:7b:a0:fc:b3:93:c5:ad:a8:35:a3:94:58:8b: b5:7c:34:27:c3:a6:9e:7c:af:6a:4d:2a:a5:ae:54: 3b:2c:e8:87:7c:b6:0c:94:67:32:0c:60:74:16:80: 79:0d:bd:98:1c:8d:1e:f8:8d:24:9c:8d:ca:a9:47: c0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.208.0/22 IPv6: 2400:a340::/32 Signature Algorithm: sha256WithRSAEncryption 43:35:f1:a3:04:5f:b6:74:c8:7f:5a:1d:22:7f:bf:8c:1f:f9: 45:d1:30:46:1b:41:ed:9e:a2:57:97:87:81:99:a3:38:ff:51: 7b:e9:2d:de:64:fb:cd:d2:88:07:3d:bf:8c:88:43:5b:a4:f6: 36:7f:80:6e:e7:12:0c:c3:d5:ee:cd:14:c5:dc:00:97:ea:07: d3:4f:69:06:06:d0:8d:80:ba:9e:bc:e0:be:64:38:63:28:70: f7:d8:cc:16:ef:aa:84:d2:1a:b5:d1:23:cd:9a:7f:79:22:f5: 10:12:c2:ed:08:54:76:64:ed:9f:43:cd:4a:56:b8:07:eb:07: 17:d6:3b:97:bf:88:ee:fb:ae:0a:11:a8:c4:c5:f0:ed:2e:7d: f0:d1:7b:ec:77:16:4b:12:5a:2c:b7:0b:98:ef:0a:3f:06:55: e7:92:84:72:14:af:7a:b5:71:4d:e7:16:5c:4c:21:a6:37:83: 51:50:a6:47:5c:34:b9:c6:70:cc:7c:78:94:5d:06:d2:64:b3: 11:b7:8b:35:67:d3:43:f7:6b:4d:a8:2c:df:0d:32:de:05:e7: 54:01:02:73:ae:ae:8a:3a:7b:22:73:df:0a:c9:0e:01:17:25: b3:dd:30:45:5b:d8:43:f1:e0:7f:46:9a:02:d9:0f:e4:5d:5c: 1d:6c:44:89 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUYb4RH+fEEaY89qf4PeyMdrOxbA4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxNjA1MDEwOVoX DTI2MDQxNTA1MDYwOVowMzExMC8GA1UEAxMoMEU0MjI2QTVGMTc2NkFFQUU3NjhB MkE2NzZDM0U4QjJDQUVBREM5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwwEWfN0pZf7qCMk995eOPB0TAVvkZDP1QZf7We2cLxl2mhldnxUeDwQiFs Qfy5Sl4WdffzCr6SqRwchGfgKIHP85PXLTLEUzU6JtAjkelo5PfsnbuCypyZNa6I k/JauGcSVVal0VArENp59ok211Sp645bx8tTElfivcJnLMt/4Ujn7LI2sAsZpVbs dDBQCQ9fvmwxElF24vdj/y98A7MtI11TFXBXC8pwvNM+NNOxfNAM/cJ2f7pbHJ8Y f7Y8Ogp2Cc17oPyzk8WtqDWjlFiLtXw0J8Omnnyvak0qpa5UOyzoh3y2DJRnMgxg dBaAeQ29mByNHviNJJyNyqlHwGUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA5CJqXxdmrq52iipnbD6LLK6tyWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTBlNWFjMi1iNmJiLTRiZWMtOWRjOS1lNDMwYTY3MzMyMTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMy LWI2YmItNGJlYy05ZGM5LWU0MzBhNjczMzIxNi8wLzBFNDIyNkE1RjE3NjZBRUFF NzY4QTJBNjc2QzNFOEIyQ0FFQURDOTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnVNAwDQQCAAIwBwMFACQAo0AwDQYJKoZIhvcNAQELBQADggEBAEM18aMEX7Z0 yH9aHSJ/v4wf+UXRMEYbQe2eoleXh4GZozj/UXvpLd5k+83SiAc9v4yIQ1uk9jZ/ gG7nEgzD1e7NFMXcAJfqB9NPaQYG0I2Aup684L5kOGMocPfYzBbvqoTSGrXRI82a f3ki9RASwu0IVHZk7Z9DzUpWuAfrBxfWO5e/iO77rgoRqMTF8O0uffDRe+x3FksS Wiy3C5jvCj8GVeeShHIUr3q1cU3nFlxMIaY3g1FQpkdcNLnGcMx8eJRdBtJksxG3 izVn00P3a02oLN8NMt4F51QBAnOuroo6eyJz3wrJDgEXJbPdMEVb2EPx4H9GmgLZ D+RdXB1sRIk= -----END CERTIFICATE-----Generated at Sun Apr 27 19:11:48 2025 by rpki-client on console.sobornost.net