$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer File: 2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer (raw, json) Hash identifier: ohARJWY9/HI8eH9AiALrzcctaqAdVE71CZUIiQzFXmc= Subject key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1289E49AAEE38EFF6EB236D74E6CCA74CA8488AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Apr 2025 10:27:06 +0000 Certificate not after: Fri 17 Apr 2026 10:32:06 +0000 Subordinate resources: IP: 103.191.60.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:89:e4:9a:ae:e3:8e:ff:6e:b2:36:d7:4e:6c:ca:74:ca:84:88:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 18 10:27:06 2025 GMT Not After : Apr 17 10:32:06 2026 GMT Subject: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6c:f4:04:ce:05:e5:73:48:73:33:cb:08:59: b7:05:9b:6f:11:0e:0f:98:88:fc:31:91:81:8d:f8: 68:4d:9a:77:e4:05:30:0f:94:69:17:11:fb:02:63: 28:a3:78:36:23:e5:ea:d3:7e:23:ce:4b:bd:c9:61: 22:b9:83:6c:87:fb:07:b3:ab:42:34:16:c7:86:8d: 2b:58:cf:77:6d:3f:1f:6b:fa:62:f5:ec:d1:78:2c: a9:fc:f8:bf:25:13:50:e1:f8:c7:72:1b:a6:a7:5f: 1e:91:78:26:e8:5c:da:28:c2:1a:63:ba:d3:d7:fb: e4:d6:aa:d3:1e:b1:1b:d6:3e:c7:39:a9:7c:53:c9: 50:b4:72:93:f2:8e:4c:67:12:b9:6f:74:4f:3c:54: 7a:d0:ac:34:07:b3:55:2c:04:ad:85:0e:4c:83:aa: 31:6a:5e:e0:03:18:3f:c2:66:de:16:72:02:f9:c6: 34:e5:35:f3:a1:ec:2b:ac:cc:da:4c:ce:ee:9d:01: af:b2:ab:b5:b7:ac:74:8e:f8:a7:38:55:db:1b:7d: 78:51:17:2e:0f:0b:b6:2e:66:94:8f:e4:35:72:ae: fb:7e:20:01:02:ab:4c:91:a2:97:46:19:83:be:9c: 39:70:b1:37:cd:58:2c:fd:e8:b9:02:a4:8b:cd:38: d0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 78:38:c0:6d:91:f0:d6:0b:65:06:9d:21:72:2b:a4:e0:a9:af: 7d:22:bd:4d:6f:05:0f:97:0c:b9:96:73:aa:eb:83:ac:7c:3a: 84:36:5a:fd:f5:89:37:ef:87:67:ce:1b:ff:57:39:b7:2c:1a: aa:fd:56:61:7f:bb:b6:0b:72:88:0c:ec:0e:f8:91:f7:c5:58: 5e:68:b0:cd:4c:13:0d:02:c0:21:ea:df:59:1e:a2:bb:b9:ef: 31:78:c6:c4:fe:f5:13:a2:51:de:b3:d8:61:21:a6:d7:e5:10: d2:f2:b6:eb:dd:bc:d0:da:71:6f:2d:ec:cd:6b:41:c2:73:fd: 0d:a0:66:b7:77:4e:00:a5:61:77:27:9d:96:a7:eb:94:d1:02: c3:7c:ab:68:6f:25:00:b3:a9:fe:a9:84:eb:3b:a6:bf:c6:09: 35:53:9b:f4:f9:83:bf:aa:bc:69:d6:19:47:1a:03:76:c6:09: 2c:6c:fb:58:25:77:99:30:c4:b5:b0:36:d1:b1:d3:3b:56:a0: 5d:07:b2:26:4b:70:bb:6e:51:ae:4f:b1:d9:ea:b1:f1:4a:3e: a1:95:fc:f2:40:c4:1b:1d:e0:b4:d1:54:ce:a4:17:15:f6:d9: f8:40:12:d4:8e:48:45:7d:03:5d:cf:99:66:13:fb:08:a7:c1: 43:e3:60:72 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEonkmq7jjv9usjbXTmzKdMqEiKowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxODEwMjcwNloX DTI2MDQxNzEwMzIwNlowMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIx MjJCNkYwNENDNEY1RjMyQ0VCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9s9ATOBeVzSHMzywhZtwWbbxEOD5iI/DGRgY34aE2ad+QFMA+UaRcR+wJj KKN4NiPl6tN+I85LvclhIrmDbIf7B7OrQjQWx4aNK1jPd20/H2v6YvXs0Xgsqfz4 vyUTUOH4x3IbpqdfHpF4Juhc2ijCGmO609f75Naq0x6xG9Y+xzmpfFPJULRyk/KO TGcSuW90TzxUetCsNAezVSwErYUOTIOqMWpe4AMYP8Jm3hZyAvnGNOU186HsK6zM 2kzO7p0Br7KrtbesdI74pzhV2xt9eFEXLg8Lti5mlI/kNXKu+34gAQKrTJGil0YZ g76cOXCxN81YLP3ouQKki8040N8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC1vlvpjDqeuCisSK28EzE9fMs61MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4 LTM0YWYtNDc1Ny04YWQ5LTkyZGEzNWQ5MjE2OC8wLzJENkY5NkZBNjMwRUE3QUUw QTJCMTIyQjZGMDRDQzRGNUYzMkNFQjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvzwwDQYJKoZIhvcNAQELBQADggEBAHg4wG2R8NYLZQadIXIrpOCpr30ivU1v BQ+XDLmWc6rrg6x8OoQ2Wv31iTfvh2fOG/9XObcsGqr9VmF/u7YLcogM7A74kffF WF5osM1MEw0CwCHq31keoru57zF4xsT+9ROiUd6z2GEhptflENLytuvdvNDacW8t 7M1rQcJz/Q2gZrd3TgClYXcnnZan65TRAsN8q2hvJQCzqf6phOs7pr/GCTVTm/T5 g7+qvGnWGUcaA3bGCSxs+1gld5kwxLWwNtGx0ztWoF0HsiZLcLtuUa5PsdnqsfFK PqGV/PJAxBsd4LTRVM6kFxX22fhAEtSOSEV9A13PmWYT+winwUPjYHI= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:13 2025 by rpki-client on console.sobornost.net