$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BA0937086D03009DB3422C9809596F09C430C76E.cer File: BA0937086D03009DB3422C9809596F09C430C76E.cer (raw, json) Hash identifier: 36V4lkOx7uDuIlCOg/UM9wFy5fs4sH1i/Qrk7WZlIwE= Subject key identifier: BA:09:37:08:6D:03:00:9D:B3:42:2C:98:09:59:6F:09:C4:30:C7:6E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 56F948E9DA0B78A2F827F7630F020EA5449DE6C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/BA0937086D03009DB3422C9809596F09C430C76E.mft caRepository: rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 11 Apr 2025 01:00:19 +0000 Certificate not after: Fri 10 Apr 2026 01:05:19 +0000 Subordinate resources: IP: 103.169.222.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f9:48:e9:da:0b:78:a2:f8:27:f7:63:0f:02:0e:a5:44:9d:e6:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 11 01:00:19 2025 GMT Not After : Apr 10 01:05:19 2026 GMT Subject: CN=BA0937086D03009DB3422C9809596F09C430C76E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f9:06:51:67:70:7c:25:73:84:e1:cf:84:e1: 72:b9:29:46:93:99:23:37:f4:da:d2:9c:fe:a5:66: e1:0a:9d:2c:86:19:87:15:0c:53:68:2b:78:6c:7c: 6b:ca:76:bc:99:48:94:c0:e0:df:0f:c4:e1:e2:33: ca:b2:cd:bd:85:a9:51:a0:a4:d2:2c:a0:a1:5d:12: fa:f7:88:51:2e:4a:0b:de:b0:f3:7d:3e:1b:ba:81: 25:27:3e:10:70:24:cc:1a:37:fd:6c:4f:8f:0c:8f: 54:68:9a:c4:2b:3c:88:4d:e8:f9:0f:53:c8:77:95: 04:17:c6:4e:bd:ce:0e:2e:8c:aa:75:f8:93:31:ac: 69:19:30:dd:41:a7:57:9b:12:ca:b0:2f:c6:0c:74: 54:6b:17:4f:5b:7c:92:ca:f3:55:e8:7c:c5:5a:9b: 50:ee:de:f2:79:fc:c9:2c:cd:e7:34:05:14:36:d6: dd:e9:05:60:c0:5d:8c:a0:2b:71:ec:9f:0d:94:a7: 85:54:3b:a7:21:fd:6d:55:e3:c0:53:68:97:82:a0: 41:d3:c2:2c:56:59:2c:18:9b:43:91:8a:49:9b:51: 2b:ed:40:00:a2:56:c9:38:39:3e:c3:76:cd:24:80: e3:04:5e:4b:6f:2f:a2:89:94:fd:ae:e0:8e:a0:dc: 88:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:09:37:08:6D:03:00:9D:B3:42:2C:98:09:59:6F:09:C4:30:C7:6E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/69fead9d-d7a7-483b-8f17-31b323d97d8f/0/BA0937086D03009DB3422C9809596F09C430C76E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.222.0/23 Signature Algorithm: sha256WithRSAEncryption 2c:e2:5b:b7:c8:83:58:35:96:0c:6a:93:d3:1c:b4:8d:0b:bb: e8:51:f2:56:2f:7f:d9:78:a1:38:2f:42:f1:52:c0:30:3c:29: 7e:3e:bd:29:bb:a3:e6:95:df:6a:b0:ab:3a:e2:75:32:5f:7a: 3a:a0:62:69:82:2e:67:f3:f1:66:26:bf:3e:08:1b:33:63:80: 1b:1f:a3:65:9c:de:a0:f0:fd:71:d8:1f:65:83:02:78:f5:8b: a2:fa:5c:7a:04:47:74:a4:da:24:8c:6f:d6:27:bd:f7:dc:2c: 0c:3e:1d:34:4b:b8:25:5f:30:ac:09:27:a3:e0:41:d1:16:76: dc:49:15:64:01:4b:78:20:bc:77:58:0d:7f:28:e2:97:f4:d4: 9a:99:3f:08:13:b7:75:db:e4:f3:fc:b9:ac:0e:d9:62:77:eb: e9:4d:9d:bf:b0:ec:77:84:61:1b:11:cb:80:57:3e:20:8e:ec: de:13:3a:8b:61:de:50:9c:1b:4e:7d:f2:d8:96:59:c7:b5:83: dc:bf:2d:bb:8f:2f:29:8f:fc:4e:bc:3c:2c:f6:32:7f:da:57: 18:9f:6b:4d:93:5b:35:18:63:43:a9:17:35:d8:87:54:8b:f5: b9:81:bd:15:b1:f7:9c:06:05:21:61:30:3c:ed:6f:5f:e9:86: e8:b4:b7:6c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVvlI6doLeKL4J/djDwIOpUSd5sMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxMTAxMDAxOVoX DTI2MDQxMDAxMDUxOVowMzExMC8GA1UEAxMoQkEwOTM3MDg2RDAzMDA5REIzNDIy Qzk4MDk1OTZGMDlDNDMwQzc2RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/5BlFncHwlc4Thz4ThcrkpRpOZIzf02tKc/qVm4QqdLIYZhxUMU2greGx8 a8p2vJlIlMDg3w/E4eIzyrLNvYWpUaCk0iygoV0S+veIUS5KC96w830+G7qBJSc+ EHAkzBo3/WxPjwyPVGiaxCs8iE3o+Q9TyHeVBBfGTr3ODi6MqnX4kzGsaRkw3UGn V5sSyrAvxgx0VGsXT1t8ksrzVeh8xVqbUO7e8nn8ySzN5zQFFDbW3ekFYMBdjKAr ceyfDZSnhVQ7pyH9bVXjwFNol4KgQdPCLFZZLBibQ5GKSZtRK+1AAKJWyTg5PsN2 zSSA4wReS28voomU/a7gjqDciE8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLoJNwhtAwCds0IsmAlZbwnEMMduMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82OWZlYWQ5ZC1kN2E3LTQ4M2ItOGYxNy0zMWIzMjNkOTdkOGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY5ZmVhZDlk LWQ3YTctNDgzYi04ZjE3LTMxYjMyM2Q5N2Q4Zi8wL0JBMDkzNzA4NkQwMzAwOURC MzQyMkM5ODA5NTk2RjA5QzQzMEM3NkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqd4wDQYJKoZIhvcNAQELBQADggEBACziW7fIg1g1lgxqk9MctI0Lu+hR8lYv f9l4oTgvQvFSwDA8KX4+vSm7o+aV32qwqzridTJfejqgYmmCLmfz8WYmvz4IGzNj gBsfo2Wc3qDw/XHYH2WDAnj1i6L6XHoER3Sk2iSMb9YnvffcLAw+HTRLuCVfMKwJ J6PgQdEWdtxJFWQBS3ggvHdYDX8o4pf01JqZPwgTt3Xb5PP8uawO2WJ36+lNnb+w 7HeEYRsRy4BXPiCO7N4TOoth3lCcG0598tiWWce1g9y/LbuPLymP/E68PCz2Mn/a Vxifa02TWzUYY0OpFzXYh1SL9bmBvRWx95wGBSFhMDztb1/phui0t2w= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:21 2025 by rpki-client on console.sobornost.net