$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/665ACFA171591B851B0550143E7029498F238AF0.cer File: 665ACFA171591B851B0550143E7029498F238AF0.cer (raw, json) Hash identifier: om8hZIEjLesLilFmv8+aS4bkqJyWckrv1fTo06XgQ7k= Subject key identifier: 66:5A:CF:A1:71:59:1B:85:1B:05:50:14:3E:70:29:49:8F:23:8A:F0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B3C73DA99147DC4331859122F00AEA41D94966D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/665ACFA171591B851B0550143E7029498F238AF0.mft caRepository: rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 17 Apr 2025 04:14:13 +0000 Certificate not after: Thu 16 Apr 2026 04:19:13 +0000 Subordinate resources: IP: 103.190.32.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:3c:73:da:99:14:7d:c4:33:18:59:12:2f:00:ae:a4:1d:94:96:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 17 04:14:13 2025 GMT Not After : Apr 16 04:19:13 2026 GMT Subject: CN=665ACFA171591B851B0550143E7029498F238AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:9c:30:00:c4:52:7f:31:d9:39:f0:9b:93: 94:82:a0:63:bb:df:1f:d2:ca:46:fc:ba:97:32:c2: 2b:9d:e2:d0:27:90:91:33:7a:3e:89:b0:bf:4d:06: d2:2e:a2:50:77:76:b7:74:8f:6e:46:0c:41:f8:74: 58:ae:7b:2b:da:98:fd:48:5d:91:58:06:d7:29:68: 30:c4:ba:9e:70:32:95:ea:a2:7d:bc:31:e9:b0:20: 58:7f:ca:80:f8:08:02:d5:3c:f0:88:81:10:df:46: 58:d2:a9:17:1c:b8:a4:a9:56:0c:1a:c8:42:3a:92: c2:dd:77:56:ab:96:c5:c3:fc:53:96:11:ae:ac:37: 3e:34:11:b3:f1:82:69:0a:5a:71:8c:72:11:dc:dc: c9:0d:86:b9:24:8f:b6:c5:6e:f8:e4:30:7a:91:01: 08:40:34:24:a2:bf:98:a5:b7:48:76:ce:cf:c6:95: 8f:74:44:d8:b6:47:f1:ac:f9:df:6d:f7:f5:21:dd: cc:d2:97:18:95:33:23:fc:dd:7d:81:24:13:19:75: 6e:9a:d3:78:04:19:93:d3:82:16:67:2a:dd:7e:bb: 24:3c:7c:e0:b9:f6:6f:52:6c:fb:b4:20:66:5f:aa: 29:86:f6:8f:c0:2c:72:04:14:9b:e5:31:df:b8:e8: 63:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 66:5A:CF:A1:71:59:1B:85:1B:05:50:14:3E:70:29:49:8F:23:8A:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/665ACFA171591B851B0550143E7029498F238AF0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.32.0/23 Signature Algorithm: sha256WithRSAEncryption 52:9a:32:b1:92:64:23:84:70:c8:0e:f7:a1:3c:ec:fd:e4:19: 41:db:07:82:8f:86:91:af:60:bb:ee:c4:4e:a5:3b:e8:fb:64: 0e:2b:64:e4:05:1d:93:5c:b1:d9:ea:ed:e7:6e:28:27:ae:9c: 5f:7c:d7:c8:05:c8:ad:b1:2c:1b:c6:a8:07:59:29:51:a2:9b: f3:ea:a9:5f:86:7a:7b:e6:85:30:ba:29:fa:46:84:2e:b6:ce: a6:87:90:89:5e:61:d5:77:91:34:3f:b6:79:c5:82:15:68:1a: 47:4a:a9:6b:b3:74:b8:27:6f:db:97:47:42:92:bb:b8:f4:c4: d5:b2:5c:9e:dd:c3:e5:8b:7a:d6:f4:de:53:44:67:c6:b4:de: 24:5d:78:e1:be:48:92:80:23:b4:f0:d3:39:8c:98:ab:b9:c2: cb:5b:d8:14:8f:20:2f:b2:db:7b:72:3c:1c:80:aa:7e:6c:df: c1:16:3e:65:e0:4f:79:bb:f0:92:5e:ba:99:5f:62:23:2b:e4: 4e:f3:ab:b3:74:cf:ad:18:e7:1a:23:97:38:ee:04:6e:ac:66: c3:7a:04:77:4e:12:b0:e0:d6:92:9b:3d:4d:a6:6b:3a:68:14: e2:7e:bc:8c:ff:b9:05:1e:1f:d0:11:7c:29:59:24:78:0a:e4: 16:56:90:c4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUezxz2pkUfcQzGFkSLwCupB2Ulm0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxNzA0MTQxM1oX DTI2MDQxNjA0MTkxM1owMzExMC8GA1UEAxMoNjY1QUNGQTE3MTU5MUI4NTFCMDU1 MDE0M0U3MDI5NDk4RjIzOEFGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0rnDAAxFJ/Mdk58JuTlIKgY7vfH9LKRvy6lzLCK53i0CeQkTN6Pomwv00G 0i6iUHd2t3SPbkYMQfh0WK57K9qY/UhdkVgG1yloMMS6nnAyleqifbwx6bAgWH/K gPgIAtU88IiBEN9GWNKpFxy4pKlWDBrIQjqSwt13VquWxcP8U5YRrqw3PjQRs/GC aQpacYxyEdzcyQ2GuSSPtsVu+OQwepEBCEA0JKK/mKW3SHbOz8aVj3RE2LZH8az5 32339SHdzNKXGJUzI/zdfYEkExl1bprTeAQZk9OCFmcq3X67JDx84Ln2b1Js+7Qg Zl+qKYb2j8AscgQUm+Ux37joY08CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGZaz6FxWRuFGwVQFD5wKUmPI4rwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YmVmNmU4ZC0xYWIwLTQxYzQtYjNhZS1hMjAwZDE3YTgyMWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZWY2ZThk LTFhYjAtNDFjNC1iM2FlLWEyMDBkMTdhODIxYy8wLzY2NUFDRkExNzE1OTFCODUx QjA1NTAxNDNFNzAyOTQ5OEYyMzhBRjAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnviAwDQYJKoZIhvcNAQELBQADggEBAFKaMrGSZCOEcMgO96E87P3kGUHbB4KP hpGvYLvuxE6lO+j7ZA4rZOQFHZNcsdnq7eduKCeunF9818gFyK2xLBvGqAdZKVGi m/PqqV+GenvmhTC6KfpGhC62zqaHkIleYdV3kTQ/tnnFghVoGkdKqWuzdLgnb9uX R0KSu7j0xNWyXJ7dw+WLetb03lNEZ8a03iRdeOG+SJKAI7Tw0zmMmKu5wstb2BSP IC+y23tyPByAqn5s38EWPmXgT3m78JJeuplfYiMr5E7zq7N0z60Y5xojlzjuBG6s ZsN6BHdOErDg1pKbPU2mazpoFOJ+vIz/uQUeH9ARfClZJHgK5BZWkMQ= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:14 2025 by rpki-client on console.sobornost.net