$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer File: 14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer (raw, json) Hash identifier: lhyybyzowkCIZcs5BkM9auQjzVAAIaLJYCfjWmNrKFA= Subject key identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5D4E1CD9BD84A2CFC16A97B4012743CCB6D699CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.mft caRepository: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 03 Apr 2025 08:21:44 +0000 Certificate not after: Thu 02 Apr 2026 08:26:44 +0000 Subordinate resources: IP: 103.162.150.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 14:02:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:4e:1c:d9:bd:84:a2:cf:c1:6a:97:b4:01:27:43:cc:b6:d6:99:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 3 08:21:44 2025 GMT Not After : Apr 2 08:26:44 2026 GMT Subject: CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:ae:17:55:bf:d0:fd:95:63:5e:e3:75:a6: 52:44:21:47:83:5f:00:4c:5f:34:b8:44:0e:d1:50: 07:ed:63:2f:a3:66:44:d2:be:54:4d:b5:e9:dd:c2: 03:76:7d:14:30:55:22:f4:40:8b:24:ee:f2:5f:f6: 3a:c3:d2:aa:47:be:69:00:0b:4f:af:18:5d:7b:10: 06:d9:0d:9d:75:1c:64:33:d6:d6:16:be:4c:78:b2: e9:5e:c8:d4:80:36:4b:63:41:1a:00:43:e7:9e:37: 20:c9:e4:d1:f7:f4:51:98:4e:e7:9f:d7:c2:0e:78: 27:eb:1f:77:33:0e:1d:e1:77:53:dd:f7:09:12:8b: 9d:d2:52:77:c2:76:3b:9e:07:b0:09:e3:92:5b:09: d8:db:0a:af:dc:f3:6e:b2:d4:76:76:c8:2f:6d:4d: cd:78:7e:7f:2d:a6:98:ef:48:df:d1:51:d6:5c:8b: 49:ba:40:96:e9:de:bd:17:0a:40:61:54:a1:11:dc: 18:a8:d4:ab:47:ee:55:4d:81:bc:bb:0c:ec:56:dc: 3c:b5:b3:fa:cc:13:f4:72:7f:3f:2d:e4:2c:62:2b: 50:76:a8:45:f5:17:b8:12:e2:af:46:23:e1:27:64: 52:e2:13:6f:c7:51:d7:56:9c:9a:3c:93:b3:3c:3f: 3c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.150.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:d2:b9:8f:6f:16:83:1c:c4:42:aa:b1:ac:b8:dd:da:61:e9: 85:31:ab:ad:bd:89:d2:db:c5:9f:71:b3:d5:6d:1b:49:c8:c3: 22:10:11:89:a9:2d:39:cf:a3:e1:5e:98:63:6d:52:39:58:1d: 9d:0d:ff:cf:0a:e5:51:5e:ba:b7:f6:86:d4:02:eb:2b:d6:4b: 7e:ba:41:76:44:16:2c:69:9a:3c:4a:eb:cd:ee:8c:dd:19:69: d1:ed:62:27:6e:49:17:ac:56:93:6e:48:89:e7:a1:f0:ff:64: a0:2d:f5:2b:30:bb:41:2f:34:82:21:36:e7:9d:0a:d1:ae:50: be:82:7b:3d:b2:9c:6f:f5:ca:b7:b9:fd:0c:94:52:48:2e:92: f9:51:6b:44:92:1f:67:04:e5:4a:5d:dd:a1:cd:77:4c:12:82: fc:b2:5b:c4:c2:09:3a:c1:c6:01:0b:98:c4:c1:3a:f6:c2:cd: 4c:51:6e:41:af:11:e6:84:66:96:c4:a5:61:50:6f:03:ec:0b: 3b:7b:03:4f:66:0f:ef:a3:ba:8e:5d:12:eb:49:51:4c:e1:3d: 66:14:08:42:f7:46:ce:a3:f3:d3:78:df:47:42:dc:59:1a:d0: bd:be:a3:7e:7c:5b:c1:ca:51:7f:b9:a7:ac:53:db:0b:e1:7e: 0a:e2:c8:aa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXU4c2b2Eos/Bape0ASdDzLbWmcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwMzA4MjE0NFoX DTI2MDQwMjA4MjY0NFowMzExMC8GA1UEAxMoMTQwNDMxNjNBOEJGRjUwNjAwRjE2 NDEwREUyN0I3QTBERUVDMUU2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9TrhdVv9D9lWNe43WmUkQhR4NfAExfNLhEDtFQB+1jL6NmRNK+VE216d3C A3Z9FDBVIvRAiyTu8l/2OsPSqke+aQALT68YXXsQBtkNnXUcZDPW1ha+THiy6V7I 1IA2S2NBGgBD5543IMnk0ff0UZhO55/Xwg54J+sfdzMOHeF3U933CRKLndJSd8J2 O54HsAnjklsJ2NsKr9zzbrLUdnbIL21NzXh+fy2mmO9I39FR1lyLSbpAlunevRcK QGFUoRHcGKjUq0fuVU2BvLsM7FbcPLWz+swT9HJ/Py3kLGIrUHaoRfUXuBLir0Yj 4SdkUuITb8dR11acmjyTszw/PBUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBQEMWOov/UGAPFkEN4nt6De7B5hMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWQ5ZWEyMC0zNDNkLTRhY2ItOTU4MS04MWY5ZDdlYTkyZmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZDllYTIw LTM0M2QtNGFjYi05NTgxLTgxZjlkN2VhOTJmZS8wLzE0MDQzMTYzQThCRkY1MDYw MEYxNjQxMERFMjdCN0EwREVFQzFFNjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnopYwDQYJKoZIhvcNAQELBQADggEBAC7SuY9vFoMcxEKqsay43dph6YUxq629 idLbxZ9xs9VtG0nIwyIQEYmpLTnPo+FemGNtUjlYHZ0N/88K5VFeurf2htQC6yvW S366QXZEFixpmjxK683ujN0ZadHtYiduSResVpNuSInnofD/ZKAt9Sswu0EvNIIh NuedCtGuUL6Cez2ynG/1yre5/QyUUkgukvlRa0SSH2cE5Upd3aHNd0wSgvyyW8TC CTrBxgELmMTBOvbCzUxRbkGvEeaEZpbEpWFQbwPsCzt7A09mD++juo5dEutJUUzh PWYUCEL3Rs6j89N430dC3Fka0L2+o358W8HKUX+5p6xT2wvhfgriyKo= -----END CERTIFICATE-----Generated at Fri Apr 25 10:36:41 2025 by rpki-client on console.sobornost.net