$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer File: 108261B2B5A1F3CC828EF2A532ED94DFC1202853.cer (raw, json) Hash identifier: mJxm6rpChGqysxA3xYd8vDARBTeLm940Fi+d/T8EvOY= Subject key identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7A7BCD885E6C82785265522ECB24E32B2C06BF2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft caRepository: rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 06 Apr 2025 05:30:52 +0000 Certificate not after: Sun 05 Apr 2026 05:35:52 +0000 Subordinate resources: IP: 103.42.252.0/22 IP: 123.108.64.0/22 IP: 2401:be80::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:7b:cd:88:5e:6c:82:78:52:65:52:2e:cb:24:e3:2b:2c:06:bf:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 6 05:30:52 2025 GMT Not After : Apr 5 05:35:52 2026 GMT Subject: CN=108261B2B5A1F3CC828EF2A532ED94DFC1202853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:80:d8:91:a4:ca:c7:5c:5c:fa:ff:fe:24:2b: f7:fd:68:42:30:9f:7e:04:e6:fd:28:11:87:8c:c1: 85:b6:d6:08:fc:71:f2:cf:71:98:e0:51:00:51:08: 67:19:d6:cd:f9:60:07:8b:0d:e0:f6:0e:0a:56:ad: ed:29:f7:78:e4:f7:92:44:4a:95:ef:50:4e:ff:14: 63:6c:1d:08:99:9a:eb:3a:f3:f0:41:14:2a:32:a7: f3:22:67:ae:ff:8b:e7:02:5b:6d:c2:b6:df:5c:15: a1:c4:0e:e0:8b:f9:de:10:58:25:c7:a3:20:6e:b5: 8e:28:03:9e:3a:b1:f8:b7:d0:48:69:ba:27:14:51: 95:64:82:0c:8c:d3:fc:65:ac:33:f0:2e:89:82:d3: de:4a:80:c5:14:7a:88:c3:f6:cf:cc:c2:eb:e9:57: f0:de:bb:b1:6e:b6:dd:7f:0a:b6:4f:58:c4:d0:03: 89:cb:8c:8c:65:33:48:a3:08:12:92:33:ef:22:9b: cc:e3:7a:ea:f1:48:f4:ce:67:f9:d3:62:c4:d0:f0: fe:9d:d5:5e:ad:76:66:73:a8:9e:d3:b0:24:15:4f: e4:97:07:95:83:05:00:f7:92:5a:5e:94:33:bb:e7: d1:c3:41:6a:45:d9:0d:6f:30:1c:2a:40:11:6c:a6: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 10:82:61:B2:B5:A1:F3:CC:82:8E:F2:A5:32:ED:94:DF:C1:20:28:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cb63f771-a95f-4b53-87bc-8bff504da1f4/0/108261B2B5A1F3CC828EF2A532ED94DFC1202853.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.42.252.0/22 123.108.64.0/22 IPv6: 2401:be80::/32 Signature Algorithm: sha256WithRSAEncryption 81:e9:0a:53:c2:fe:df:71:27:bd:d9:81:9f:e5:23:9d:ce:a7: 45:2f:4a:54:76:3b:76:31:14:7f:32:fe:6c:b6:18:27:f4:63: e5:10:1a:c3:4c:b3:c1:b4:82:70:98:e9:93:80:f8:3e:19:1c: b7:f8:5a:45:cb:55:b0:2f:c7:16:98:1b:c2:1a:9c:65:fd:7e: 24:10:c2:fd:8b:36:02:49:e3:22:a0:ab:d5:3e:48:2c:43:58: 5d:02:36:30:f6:37:9a:3d:a6:12:4c:0e:d6:9a:76:41:5a:dd: f2:be:d2:08:2c:12:3d:29:d0:89:fa:f5:c6:3e:c4:19:d1:60: ec:96:e9:1e:97:d5:72:20:f0:da:10:77:e6:f9:a9:1e:df:32: 48:49:46:f5:4e:74:4a:8a:a2:52:c9:eb:7f:8e:64:1c:2f:40: aa:9c:86:cb:cf:cc:05:5e:e1:68:8c:16:21:7f:97:c1:c2:f8: 00:1a:bb:41:4d:65:90:86:b0:5c:a0:7d:57:26:fb:35:d2:a4: f6:ef:65:94:eb:b4:76:02:2f:89:c5:d7:a1:dd:6b:2f:73:ef: ca:e7:a6:04:2c:fa:be:fe:1f:ef:30:ce:11:9d:b6:30:51:c2: 52:a5:62:32:fd:5e:20:44:90:9b:75:7e:01:9a:57:d9:ea:7a: e4:aa:04:cd -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIUenvNiF5sgnhSZVIuyyTjKywGvy8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwNjA1MzA1MloX DTI2MDQwNTA1MzU1MlowMzExMC8GA1UEAxMoMTA4MjYxQjJCNUExRjNDQzgyOEVG MkE1MzJFRDk0REZDMTIwMjg1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCA2JGkysdcXPr//iQr9/1oQjCffgTm/SgRh4zBhbbWCPxx8s9xmOBRAFEI ZxnWzflgB4sN4PYOClat7Sn3eOT3kkRKle9QTv8UY2wdCJma6zrz8EEUKjKn8yJn rv+L5wJbbcK231wVocQO4Iv53hBYJcejIG61jigDnjqx+LfQSGm6JxRRlWSCDIzT /GWsM/AuiYLT3kqAxRR6iMP2z8zC6+lX8N67sW623X8Ktk9YxNADicuMjGUzSKMI EpIz7yKbzON66vFI9M5n+dNixNDw/p3VXq12ZnOontOwJBVP5JcHlYMFAPeSWl6U M7vn0cNBakXZDW8wHCpAEWymgUECAwEAAaOCAs0wggLJMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBCCYbK1ofPMgo7ypTLtlN/BIChTMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jYjYzZjc3MS1hOTVmLTRiNTMtODdiYy04YmZmNTA0ZGExZjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NiNjNmNzcx LWE5NWYtNGI1My04N2JjLThiZmY1MDRkYTFmNC8wLzEwODI2MUIyQjVBMUYzQ0M4 MjhFRjJBNTMyRUQ5NERGQzEyMDI4NTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwD BAJnKvwDBAJ7bEAwDQQCAAIwBwMFACQBvoAwDQYJKoZIhvcNAQELBQADggEBAIHp ClPC/t9xJ73ZgZ/lI53Op0UvSlR2O3YxFH8y/my2GCf0Y+UQGsNMs8G0gnCY6ZOA +D4ZHLf4WkXLVbAvxxaYG8IanGX9fiQQwv2LNgJJ4yKgq9U+SCxDWF0CNjD2N5o9 phJMDtaadkFa3fK+0ggsEj0p0In69cY+xBnRYOyW6R6X1XIg8NoQd+b5qR7fMkhJ RvVOdEqKolLJ63+OZBwvQKqchsvPzAVe4WiMFiF/l8HC+AAau0FNZZCGsFygfVcm +zXSpPbvZZTrtHYCL4nF16Hday9z78rnpgQs+r7+H+8wzhGdtjBRwlKlYjL9XiBE kJt1fgGaV9nqeuSqBM0= -----END CERTIFICATE-----Generated at Fri Apr 25 17:11:52 2025 by rpki-client on console.sobornost.net