$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4F40845626DE4E373F550B654EA4E833B6EB4D27.cer File: 4F40845626DE4E373F550B654EA4E833B6EB4D27.cer (raw, json) Hash identifier: uZt/fl8dzoB/0Ed241p/+OSHTkmEiLOSFUgyPieNYoA= Subject key identifier: 4F:40:84:56:26:DE:4E:37:3F:55:0B:65:4E:A4:E8:33:B6:EB:4D:27 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A2D7CE51CF47FD1A5DC81C7CFD5296AFD29A0DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.mft caRepository: rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 28 Feb 2025 13:57:44 +0000 Certificate not after: Fri 27 Feb 2026 14:02:44 +0000 Subordinate resources: IP: 103.168.146.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:2d:7c:e5:1c:f4:7f:d1:a5:dc:81:c7:cf:d5:29:6a:fd:29:a0:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 28 13:57:44 2025 GMT Not After : Feb 27 14:02:44 2026 GMT Subject: CN=4F40845626DE4E373F550B654EA4E833B6EB4D27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1d:7a:62:7e:a4:a4:56:78:5c:62:8f:09:b2: cd:7e:42:85:0f:b9:d5:02:04:71:aa:b0:71:e4:50: c0:bb:de:39:88:32:1c:68:e0:a1:1c:30:02:a3:2e: 41:02:a7:1f:68:8a:5d:c4:6d:73:5d:30:31:b2:f6: e1:63:ad:fd:25:73:68:a8:f1:92:0d:fb:2d:f6:b8: 28:bb:17:4e:fd:98:bf:2f:ea:64:6a:6a:6a:db:48: 87:ce:6e:98:7c:ef:48:61:32:5e:82:ba:c4:36:3f: a0:88:94:77:58:d5:18:1f:fc:f4:39:95:a6:38:64: 70:01:0c:cf:ac:93:d7:73:ca:b9:f8:bd:f8:35:d9: 71:46:6d:3d:49:df:a7:b2:af:4f:22:b8:7b:90:93: 92:c1:0a:07:e0:37:4d:af:97:eb:58:ba:ca:fd:5c: 1c:ca:9b:99:b4:85:2e:3a:f2:59:24:47:e0:a6:a3: 17:60:0a:ea:e9:4a:8d:b1:d1:d0:be:6a:03:ab:ac: 5c:bb:90:31:f8:a5:cd:c5:32:23:19:24:7d:82:52: 6a:af:d6:58:f6:92:fd:bd:14:9e:97:85:0c:5f:a7: 41:5a:ed:f8:4d:2d:9a:50:60:c3:c8:ef:15:7e:8f: 61:11:b1:e6:fd:0a:e3:f9:b5:34:44:84:a8:e1:fb: c1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4F:40:84:56:26:DE:4E:37:3F:55:0B:65:4E:A4:E8:33:B6:EB:4D:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3a46360d-662b-4f7d-bb17-d86082152471/0/4F40845626DE4E373F550B654EA4E833B6EB4D27.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.146.0/23 Signature Algorithm: sha256WithRSAEncryption 23:2e:93:f7:8b:3c:dc:f2:5c:88:66:48:e8:af:da:c6:d9:6f: 46:78:1f:e0:e4:b7:ce:ec:c4:40:1d:c6:25:93:bd:3a:09:41: a4:b3:ef:8f:5c:dd:8c:ff:7c:98:f4:38:f7:08:ad:0a:32:3b: ff:a2:aa:44:db:dc:ef:98:a9:57:df:80:31:f7:1b:b2:4d:ff: 36:d2:94:0c:b7:9e:e9:23:5d:cf:96:e7:61:ce:09:7f:7a:14: b7:0f:7f:2d:d2:98:5a:10:99:22:56:a4:6f:b1:c4:d0:84:bd: a6:b8:21:10:0b:51:c8:d5:0e:ff:3a:c7:8b:4f:4e:7a:73:64: 48:40:ec:7a:ad:91:c5:f5:c6:52:f0:a0:54:4c:5d:85:48:d0: 4b:e1:e8:e7:73:73:6f:bc:3b:f4:5a:2e:2c:bf:c8:73:c6:4f: 6d:12:ec:f7:3e:73:59:eb:41:52:17:c5:de:2f:c0:66:9f:d3: 91:6f:0c:70:1b:2d:3b:66:84:6d:fc:8b:d5:b2:af:21:24:e0: e3:39:4a:fe:dd:5c:b1:3d:6a:54:03:cd:fb:2d:14:70:e1:91: 68:0c:9b:9c:71:62:cd:d5:91:fa:87:46:2d:80:d4:c7:0e:a4: 47:af:d6:b6:6c:5f:c7:eb:1a:c3:21:b5:3a:18:42:f2:7a:4d: 6a:83:1c:90 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWi185Rz0f9Gl3IHHz9Upav0poNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyODEzNTc0NFoX DTI2MDIyNzE0MDI0NFowMzExMC8GA1UEAxMoNEY0MDg0NTYyNkRFNEUzNzNGNTUw QjY1NEVBNEU4MzNCNkVCNEQyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0demJ+pKRWeFxijwmyzX5ChQ+51QIEcaqwceRQwLveOYgyHGjgoRwwAqMu QQKnH2iKXcRtc10wMbL24WOt/SVzaKjxkg37Lfa4KLsXTv2Yvy/qZGpqattIh85u mHzvSGEyXoK6xDY/oIiUd1jVGB/89DmVpjhkcAEMz6yT13PKufi9+DXZcUZtPUnf p7KvTyK4e5CTksEKB+A3Ta+X61i6yv1cHMqbmbSFLjryWSRH4KajF2AK6ulKjbHR 0L5qA6usXLuQMfilzcUyIxkkfYJSaq/WWPaS/b0UnpeFDF+nQVrt+E0tmlBgw8jv FX6PYRGx5v0K4/m1NESEqOH7wVECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE9AhFYm3k43P1ULZU6k6DO2600nMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYTQ2MzYwZC02NjJiLTRmN2QtYmIxNy1kODYwODIxNTI0NzEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhNDYzNjBk LTY2MmItNGY3ZC1iYjE3LWQ4NjA4MjE1MjQ3MS8wLzRGNDA4NDU2MjZERTRFMzcz RjU1MEI2NTRFQTRFODMzQjZFQjREMjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqJIwDQYJKoZIhvcNAQELBQADggEBACMuk/eLPNzyXIhmSOiv2sbZb0Z4H+Dk t87sxEAdxiWTvToJQaSz749c3Yz/fJj0OPcIrQoyO/+iqkTb3O+YqVffgDH3G7JN /zbSlAy3nukjXc+W52HOCX96FLcPfy3SmFoQmSJWpG+xxNCEvaa4IRALUcjVDv86 x4tPTnpzZEhA7HqtkcX1xlLwoFRMXYVI0Evh6Odzc2+8O/RaLiy/yHPGT20S7Pc+ c1nrQVIXxd4vwGaf05FvDHAbLTtmhG38i9WyryEk4OM5Sv7dXLE9alQDzfstFHDh kWgMm5xxYs3VkfqHRi2A1McOpEev1rZsX8frGsMhtToYQvJ6TWqDHJA= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:14 2025 by rpki-client on console.sobornost.net