$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B0AAB728B88975526C1741CCA8673CBC88F7697C.cer File: B0AAB728B88975526C1741CCA8673CBC88F7697C.cer (raw, json) Hash identifier: eIYHcNPSj/QMOkonstbTm9yP5amMnNEhrv23ND5dDLQ= Subject key identifier: B0:AA:B7:28:B8:89:75:52:6C:17:41:CC:A8:67:3C:BC:88:F7:69:7C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 765CA470572E3124A572B58540A472C5F15F8F7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0/B0AAB728B88975526C1741CCA8673CBC88F7697C.mft caRepository: rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 03 Apr 2025 12:13:26 +0000 Certificate not after: Thu 02 Apr 2026 12:18:26 +0000 Subordinate resources: IP: 103.170.100.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:5c:a4:70:57:2e:31:24:a5:72:b5:85:40:a4:72:c5:f1:5f:8f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 3 12:13:26 2025 GMT Not After : Apr 2 12:18:26 2026 GMT Subject: CN=B0AAB728B88975526C1741CCA8673CBC88F7697C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:61:e0:04:0d:f7:92:a9:7f:aa:0e:d5:4e: 8c:e9:e4:04:a7:76:f5:69:e7:35:21:ad:2f:ad:a1: 6c:20:a2:22:83:9e:c5:4f:e5:b3:e8:e5:57:8a:92: d5:08:c5:99:dc:ee:b3:5c:68:f1:6c:8c:bc:04:5d: dd:a5:f9:ac:37:5f:10:c2:8d:91:c3:72:f5:cc:bc: c6:57:ee:91:31:17:b0:47:a0:b6:8d:ff:5c:fe:6d: aa:f1:50:b5:ce:d0:60:48:25:67:cc:e3:a4:d6:f9: 8b:ea:67:e3:57:94:8b:1b:79:57:c4:83:38:7a:78: 60:4a:a9:ad:aa:ef:cc:1a:8f:09:f8:b4:36:79:34: f9:40:97:bf:1d:07:b9:4a:54:ae:c6:fb:d9:35:1c: 1d:52:f9:48:45:69:50:96:4b:36:85:f2:e2:a8:b6: a4:79:d1:fe:0b:e4:91:2a:a5:85:af:79:2b:1f:78: 91:e9:93:8e:7e:71:e5:64:38:33:b8:4c:b8:bc:9a: ba:5f:6b:43:32:c8:70:fa:49:be:83:c5:9c:1e:f2: 6d:9c:5c:fc:fc:9a:31:9b:c2:f4:90:f5:01:15:25: 53:89:53:c8:80:d9:55:d5:43:f9:3d:d4:1b:75:89: ad:ee:78:6b:01:da:2b:83:06:67:7a:e0:9d:e6:27: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B0:AA:B7:28:B8:89:75:52:6C:17:41:CC:A8:67:3C:BC:88:F7:69:7C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0e05a1ce-849f-417c-b673-fdd33f0d7447/0/B0AAB728B88975526C1741CCA8673CBC88F7697C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.100.0/23 Signature Algorithm: sha256WithRSAEncryption 31:ee:a5:30:2a:a2:d3:32:9c:9c:f2:93:5c:14:20:6d:78:4c: fa:b8:f7:d9:cc:05:40:ee:5d:95:24:4c:03:0c:15:53:7f:f8: 4d:43:ce:57:04:c7:c4:28:f3:5b:a8:c1:7d:6c:a4:94:c3:ad: 94:af:b7:ce:71:43:75:16:fc:b6:78:98:67:61:b8:3c:57:36: ae:d0:c2:2d:f1:71:c8:9d:b8:cf:6c:4f:10:c8:ca:9d:f8:35: fe:cc:39:bd:cb:a9:71:18:b2:cc:f9:b1:ed:26:33:0f:d9:62: 42:d0:8a:35:34:fc:ac:95:92:b8:32:ca:12:a0:a9:5e:e7:bc: 89:fe:35:67:d0:8e:16:dc:f6:e3:45:35:6d:5b:ec:f3:e4:f8: da:19:d3:cb:ad:6b:e1:f7:49:30:48:a2:5d:61:b9:f9:81:d1: 49:69:ff:cb:9e:f7:06:0d:4b:95:91:a6:a8:04:c6:e0:49:71: ee:c0:a3:fd:21:ad:ec:00:66:5f:41:98:6d:34:09:28:fc:d4: 98:81:03:99:36:6d:83:ce:19:ec:d4:e6:a1:38:0f:5e:59:38: a1:25:f7:cd:2e:13:f4:c3:1c:c6:fb:fd:15:bb:ba:63:4f:91: 3f:03:85:6d:11:e3:22:60:ee:ae:ef:0f:4d:f8:28:99:a1:96: 0e:28:b2:7f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdlykcFcuMSSlcrWFQKRyxfFfj3swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwMzEyMTMyNloX DTI2MDQwMjEyMTgyNlowMzExMC8GA1UEAxMoQjBBQUI3MjhCODg5NzU1MjZDMTc0 MUNDQTg2NzNDQkM4OEY3Njk3QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALKNYeAEDfeSqX+qDtVOjOnkBKd29WnnNSGtL62hbCCiIoOexU/ls+jlV4qS 1QjFmdzus1xo8WyMvARd3aX5rDdfEMKNkcNy9cy8xlfukTEXsEegto3/XP5tqvFQ tc7QYEglZ8zjpNb5i+pn41eUixt5V8SDOHp4YEqprarvzBqPCfi0Nnk0+UCXvx0H uUpUrsb72TUcHVL5SEVpUJZLNoXy4qi2pHnR/gvkkSqlha95Kx94kemTjn5x5WQ4 M7hMuLyaul9rQzLIcPpJvoPFnB7ybZxc/PyaMZvC9JD1ARUlU4lTyIDZVdVD+T3U G3WJre54awHaK4MGZ3rgneYnn0sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLCqtyi4iXVSbBdBzKhnPLyI92l8MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZTA1YTFjZS04NDlmLTQxN2MtYjY3My1mZGQzM2YwZDc0NDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlMDVhMWNl LTg0OWYtNDE3Yy1iNjczLWZkZDMzZjBkNzQ0Ny8wL0IwQUFCNzI4Qjg4OTc1NTI2 QzE3NDFDQ0E4NjczQ0JDODhGNzY5N0MubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqmQwDQYJKoZIhvcNAQELBQADggEBADHupTAqotMynJzyk1wUIG14TPq499nM BUDuXZUkTAMMFVN/+E1DzlcEx8Qo81uowX1spJTDrZSvt85xQ3UW/LZ4mGdhuDxX Nq7Qwi3xcciduM9sTxDIyp34Nf7MOb3LqXEYssz5se0mMw/ZYkLQijU0/KyVkrgy yhKgqV7nvIn+NWfQjhbc9uNFNW1b7PPk+NoZ08uta+H3STBIol1hufmB0Ulp/8ue 9wYNS5WRpqgExuBJce7Ao/0hrewAZl9BmG00CSj81JiBA5k2bYPOGezU5qE4D15Z OKEl980uE/TDHMb7/RW7umNPkT8DhW0R4yJg7q7vD034KJmhlg4osn8= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:21 2025 by rpki-client on console.sobornost.net