$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8790EFE9518BF8664B34E1227585F3516FDC5367.cer File: 8790EFE9518BF8664B34E1227585F3516FDC5367.cer (raw, json) Hash identifier: 9UvNkL7CKrFsGxps+V2na2DxPckG/63ZEiCQaK4JaAA= Subject key identifier: 87:90:EF:E9:51:8B:F8:66:4B:34:E1:22:75:85:F3:51:6F:DC:53:67 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6D7DE4DB15D11D293CD50E10EFB62EAA1DD7A0DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.mft caRepository: rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 08 Apr 2025 16:58:34 +0000 Certificate not after: Tue 07 Apr 2026 17:03:34 +0000 Subordinate resources: IP: 103.166.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 15:28:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:7d:e4:db:15:d1:1d:29:3c:d5:0e:10:ef:b6:2e:aa:1d:d7:a0:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 16:58:34 2025 GMT Not After : Apr 7 17:03:34 2026 GMT Subject: CN=8790EFE9518BF8664B34E1227585F3516FDC5367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:de:85:be:6d:91:69:a8:40:95:fa:42:65:b6: 6b:9e:3b:a8:8d:40:eb:57:9a:6b:0e:14:b2:64:0b: c7:3b:fe:3f:43:38:73:7c:6b:97:aa:7d:87:1d:fb: c5:e5:5b:46:fa:be:e7:2a:bd:bb:e6:cb:e5:45:6b: a8:2a:80:bd:ac:09:1c:75:55:32:22:c5:24:af:b3: 7e:d5:e2:7a:e6:19:f9:66:a1:08:f0:b8:35:cf:5c: 04:7a:15:64:a0:9e:92:5f:14:1b:07:f1:e6:ee:bf: 09:6c:e8:1f:f0:3c:09:20:94:0b:18:a1:1a:4a:0c: 89:ef:22:d7:68:cc:44:32:b2:25:db:3d:73:79:2d: 6f:4e:0a:e1:51:a4:16:91:2e:e1:cb:ad:9e:65:04: da:67:01:f7:01:2a:79:49:68:54:f6:63:6f:eb:53: 00:ae:d6:95:1a:43:0f:47:d0:4c:08:6f:50:ed:52: 46:dd:2c:ac:b9:67:1b:3c:07:cb:b4:7f:32:9d:ec: f1:1d:26:27:52:1a:ff:d4:42:5c:ea:af:ce:c2:fa: a3:e1:22:67:62:98:65:c4:8f:71:41:35:94:1a:34: c8:c2:ad:5f:16:a8:32:20:3b:24:61:47:08:07:21: d8:25:3e:c5:89:42:c5:d7:b4:78:46:69:5a:94:6a: 7e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:90:EF:E9:51:8B:F8:66:4B:34:E1:22:75:85:F3:51:6F:DC:53:67 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.90.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:95:82:0f:9c:02:83:eb:2a:f0:90:a1:84:06:14:fa:48:b2: f1:e5:41:77:32:d5:88:05:65:b7:5b:70:1a:b1:32:12:ed:db: ac:5f:3d:ae:31:e3:d3:49:85:e3:ad:58:30:bc:46:f7:bf:60: 5b:7d:7c:a2:1c:4a:01:e8:03:20:46:83:45:30:e1:dd:88:bc: 20:ed:55:54:25:97:2a:2e:21:7d:45:5a:95:db:6f:90:d4:9c: 2f:e2:b5:59:98:89:86:10:87:e7:2c:b6:29:97:fb:a4:5c:82: 3e:b2:1c:27:b4:a6:d4:94:89:78:18:f4:13:47:17:85:88:58: 7a:58:b3:a3:9e:ea:64:9c:67:e4:b4:88:e6:96:17:eb:bf:09: 98:41:a6:6a:f3:ab:53:24:1e:e1:94:ff:d3:e8:8a:ad:0f:f6: 5f:df:12:db:3a:dd:ce:82:95:76:a9:6c:5d:53:61:d4:11:88: 5f:31:43:75:df:3c:f9:45:43:38:d4:b9:34:f7:b5:8b:0a:1a: 1a:08:2d:75:f7:fb:97:c0:0c:90:08:0c:d4:2c:c2:38:89:cd: 41:7b:f9:89:18:d2:d7:da:09:ee:6b:c2:e0:7c:80:d3:75:36: a4:30:31:d3:35:8b:03:75:3c:ac:4a:7a:c9:19:37:49:ad:ad: fd:f1:fd:df -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbX3k2xXRHSk81Q4Q77Yuqh3XoN4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwODE2NTgzNFoX DTI2MDQwNzE3MDMzNFowMzExMC8GA1UEAxMoODc5MEVGRTk1MThCRjg2NjRCMzRF MTIyNzU4NUYzNTE2RkRDNTM2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPnehb5tkWmoQJX6QmW2a547qI1A61eaaw4UsmQLxzv+P0M4c3xrl6p9hx37 xeVbRvq+5yq9u+bL5UVrqCqAvawJHHVVMiLFJK+zftXieuYZ+WahCPC4Nc9cBHoV ZKCekl8UGwfx5u6/CWzoH/A8CSCUCxihGkoMie8i12jMRDKyJds9c3ktb04K4VGk FpEu4cutnmUE2mcB9wEqeUloVPZjb+tTAK7WlRpDD0fQTAhvUO1SRt0srLlnGzwH y7R/Mp3s8R0mJ1Ia/9RCXOqvzsL6o+EiZ2KYZcSPcUE1lBo0yMKtXxaoMiA7JGFH CAch2CU+xYlCxde0eEZpWpRqfm0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIeQ7+lRi/hmSzThInWF81Fv3FNnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZThjYmRjOC1kMTk1LTRjN2QtYjNlOC0wYThmYmFlOGMyODQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOGNiZGM4 LWQxOTUtNGM3ZC1iM2U4LTBhOGZiYWU4YzI4NC8wLzg3OTBFRkU5NTE4QkY4NjY0 QjM0RTEyMjc1ODVGMzUxNkZEQzUzNjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnplowDQYJKoZIhvcNAQELBQADggEBAG2Vgg+cAoPrKvCQoYQGFPpIsvHlQXcy 1YgFZbdbcBqxMhLt26xfPa4x49NJheOtWDC8Rve/YFt9fKIcSgHoAyBGg0Uw4d2I vCDtVVQllyouIX1FWpXbb5DUnC/itVmYiYYQh+cstimX+6Rcgj6yHCe0ptSUiXgY 9BNHF4WIWHpYs6Oe6mScZ+S0iOaWF+u/CZhBpmrzq1MkHuGU/9Poiq0P9l/fEts6 3c6ClXapbF1TYdQRiF8xQ3XfPPlFQzjUuTT3tYsKGhoILXX3+5fADJAIDNQswjiJ zUF7+YkY0tfaCe5rwuB8gNN1NqQwMdM1iwN1PKxKeskZN0mtrf3x/d8= -----END CERTIFICATE-----Generated at Sun Apr 27 12:40:14 2025 by rpki-client on console.sobornost.net