$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/97776FFF02B90FFC17B658A0B1A598DBEA888F04.cer File: 97776FFF02B90FFC17B658A0B1A598DBEA888F04.cer (raw, json) Hash identifier: Cmx9D9gcRnUD/di/faqVJdtigIHCAhrkumqAKDk1Qpg= Subject key identifier: 97:77:6F:FF:02:B9:0F:FC:17:B6:58:A0:B1:A5:98:DB:EA:88:8F:04 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1AEB734B4F67AA86CD2A9B44AD604010A708C7CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/97776FFF02B90FFC17B658A0B1A598DBEA888F04.mft caRepository: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 09 Apr 2025 08:11:12 +0000 Certificate not after: Wed 08 Apr 2026 08:16:12 +0000 Subordinate resources: IP: 2001:df3:c340::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 00:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:eb:73:4b:4f:67:aa:86:cd:2a:9b:44:ad:60:40:10:a7:08:c7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 9 08:11:12 2025 GMT Not After : Apr 8 08:16:12 2026 GMT Subject: CN=97776FFF02B90FFC17B658A0B1A598DBEA888F04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:61:d9:91:d1:f2:23:a6:58:ec:05:7d:cc:87: 7e:c6:4c:3a:01:89:a3:c4:c3:8e:32:e0:87:b1:5f: 9b:e8:58:f6:43:3f:14:0b:f7:7b:66:55:1b:8f:a7: f8:88:ab:92:59:99:03:33:d7:d2:31:a8:be:fd:ea: 12:6d:2f:30:ba:b5:c5:84:77:5c:73:a5:64:54:9f: dc:4c:5c:ae:24:99:ed:93:04:66:b8:41:f0:7b:90: 55:5e:d4:a2:57:5a:d2:07:43:0a:ea:e2:ab:f3:44: f4:b5:b7:bc:05:db:a4:b2:13:6c:d9:e7:38:eb:0f: df:1d:e7:c6:03:7a:c6:0e:fc:ec:b8:fa:84:6e:3d: 74:55:63:0c:fc:b0:a4:2f:e5:96:c2:93:a6:35:34: 4e:fc:ca:fa:9c:cb:77:da:0f:7f:03:15:8a:0d:1b: 39:8e:b0:3b:37:01:c7:33:da:fc:e7:65:f8:8f:1a: 22:85:aa:38:1f:46:8e:8f:7a:dd:4f:64:29:7d:52: 65:85:16:da:b2:9f:9e:04:de:c6:23:cc:a0:5c:aa: 52:bf:7f:aa:9c:fc:3a:ff:d7:2b:42:73:b8:2e:9a: 5c:0a:10:c1:87:8a:cc:b9:87:9e:c7:3c:bb:2a:3e: e3:f5:f7:ce:73:c4:51:54:3e:33:c8:fa:87:7e:b8: 10:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 97:77:6F:FF:02:B9:0F:FC:17:B6:58:A0:B1:A5:98:DB:EA:88:8F:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/1/97776FFF02B90FFC17B658A0B1A598DBEA888F04.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:c340::/48 Signature Algorithm: sha256WithRSAEncryption 5f:7e:13:26:4d:cb:b6:41:a8:75:8d:ae:c5:6c:cb:75:37:53: 8e:7b:f4:e7:f1:e2:24:47:f7:d0:a3:0a:a3:12:86:e1:1a:4a: 88:c9:2e:a1:f2:77:2e:c7:59:a7:0d:f7:2f:49:a8:13:ba:2a: 21:86:1f:23:17:70:94:9e:23:a2:03:fd:56:99:f2:04:4e:da: 77:1e:ed:a0:f5:cc:d0:62:3e:99:51:92:76:b7:a1:d8:77:34: d5:92:85:61:15:8d:e8:7b:b5:66:ea:40:d3:42:cd:6d:8f:88: 38:5c:00:92:9c:1d:d8:ff:8b:61:ef:01:20:54:9f:70:bd:bb: eb:da:f0:bc:05:ed:fa:e6:64:27:76:a4:91:21:5f:f7:5f:54: 9d:5e:bf:f3:12:c9:7d:48:48:75:78:f7:8c:34:e4:5b:5f:37: 68:4b:75:04:7c:99:49:5e:34:9f:18:97:99:87:28:c8:fa:3a: 7a:0f:61:f2:f8:0d:bf:60:c1:c7:52:62:9f:d6:5f:04:43:29: 27:2c:84:79:86:19:d6:0a:0e:b5:35:6a:59:a9:12:55:50:c4: e0:56:6f:5f:79:01:4c:aa:10:56:00:41:25:bb:1e:f9:53:1e: e8:5f:f1:35:c4:27:81:da:9b:de:bb:45:eb:36:f6:d9:14:9e: ce:0b:84:7e -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUGutzS09nqobNKptErWBAEKcIx88wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwOTA4MTExMloX DTI2MDQwODA4MTYxMlowMzExMC8GA1UEAxMoOTc3NzZGRkYwMkI5MEZGQzE3QjY1 OEEwQjFBNTk4REJFQTg4OEYwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOlh2ZHR8iOmWOwFfcyHfsZMOgGJo8TDjjLgh7Ffm+hY9kM/FAv3e2ZVG4+n +IirklmZAzPX0jGovv3qEm0vMLq1xYR3XHOlZFSf3ExcriSZ7ZMEZrhB8HuQVV7U olda0gdDCuriq/NE9LW3vAXbpLITbNnnOOsP3x3nxgN6xg787Lj6hG49dFVjDPyw pC/llsKTpjU0TvzK+pzLd9oPfwMVig0bOY6wOzcBxzPa/Odl+I8aIoWqOB9Gjo96 3U9kKX1SZYUW2rKfngTexiPMoFyqUr9/qpz8Ov/XK0JzuC6aXAoQwYeKzLmHnsc8 uyo+4/X3znPEUVQ+M8j6h364EIECAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJd3b/8CuQ/8F7ZYoLGlmNvqiI8EMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ODhkZmY3 LTZhOTItNDI5My04ODAwLWI1M2UyYTkxOGFjYS8xLzk3Nzc2RkZGMDJCOTBGRkMx N0I2NThBMEIxQTU5OERCRUE4ODhGMDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ3zw0AwDQYJKoZIhvcNAQELBQADggEBAF9+EyZNy7ZBqHWNrsVsy3U3U457 9Ofx4iRH99CjCqMShuEaSojJLqHydy7HWacN9y9JqBO6KiGGHyMXcJSeI6ID/VaZ 8gRO2nce7aD1zNBiPplRkna3odh3NNWShWEVjeh7tWbqQNNCzW2PiDhcAJKcHdj/ i2HvASBUn3C9u+va8LwF7frmZCd2pJEhX/dfVJ1ev/MSyX1ISHV494w05FtfN2hL dQR8mUleNJ8Yl5mHKMj6OnoPYfL4Db9gwcdSYp/WXwRDKScshHmGGdYKDrU1almp ElVQxOBWb195AUyqEFYAQSW7HvlTHuhf8TXEJ4Ham967Res29tkUns4LhH4= -----END CERTIFICATE-----Generated at Fri Apr 25 17:11:56 2025 by rpki-client on console.sobornost.net