$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.cer File: CD4EAC0306D06F2109F2679DC9F52F7DE597590D.cer (raw, json) Hash identifier: bWdFkVsPCEIrrfqpbwc/9XLhCVqavs0tv90uPQ/sxhw= Subject key identifier: CD:4E:AC:03:06:D0:6F:21:09:F2:67:9D:C9:F5:2F:7D:E5:97:59:0D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F43940ACC92F93DA2605F04A5FC4AEC912B7043 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.mft caRepository: rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 12 Apr 2025 16:43:51 +0000 Certificate not after: Sat 11 Apr 2026 16:48:51 +0000 Subordinate resources: IP: 103.156.57.0/24 IP: 2406:8240::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:43:94:0a:cc:92:f9:3d:a2:60:5f:04:a5:fc:4a:ec:91:2b:70:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 12 16:43:51 2025 GMT Not After : Apr 11 16:48:51 2026 GMT Subject: CN=CD4EAC0306D06F2109F2679DC9F52F7DE597590D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1d:c7:3e:7b:8c:6f:64:de:6e:e1:ed:b6:2f: 3b:c8:32:d5:7e:c7:d8:2d:29:13:18:7a:fb:2a:6c: 43:cb:e3:17:ca:e7:63:03:e2:29:15:c2:a9:6d:e4: 87:bc:24:51:59:39:4b:72:98:fa:a5:91:60:b3:28: 4c:b3:37:f8:a8:75:2a:98:3b:d0:c7:63:27:29:f2: 65:6c:30:10:f6:78:a9:2d:00:95:f6:f7:43:ab:e6: 7a:4c:56:f1:f5:10:3b:5b:ee:b7:aa:07:43:93:e6: 6b:f5:27:f4:3f:e1:7c:34:fa:51:db:f4:58:1d:f8: e3:94:2b:74:a5:c2:42:bc:e1:de:90:db:49:bc:9c: 74:87:b9:c2:cf:b6:c9:f1:1e:09:8b:7c:e9:15:0a: 89:75:7b:0c:61:6f:bd:6d:2a:3a:88:5a:11:76:6d: 29:8d:f2:e9:02:51:d6:fb:d5:42:24:e3:da:3f:43: 18:35:08:69:af:32:8d:b7:9f:6b:3c:13:bc:9f:97: 0c:8e:e8:51:a6:af:c7:29:b0:68:c4:b3:b1:b5:ae: ab:37:13:a8:28:81:98:45:bb:ec:b4:3c:af:29:3b: db:43:da:08:7c:b7:96:18:ce:0c:f8:bc:7a:df:68: 88:ab:f6:e1:d1:64:fc:c5:3b:29:4e:33:d5:5f:23: 49:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CD:4E:AC:03:06:D0:6F:21:09:F2:67:9D:C9:F5:2F:7D:E5:97:59:0D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/378bbfd4-67b4-498d-8411-e964c5fe1172/0/CD4EAC0306D06F2109F2679DC9F52F7DE597590D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.57.0/24 IPv6: 2406:8240::/32 Signature Algorithm: sha256WithRSAEncryption 9c:26:dc:ef:0a:84:20:8c:4f:ed:81:1e:72:81:4d:b4:e7:01: ab:1e:95:28:0b:a7:44:06:0e:0f:4f:06:da:6c:f2:31:e9:af: e1:a6:84:dd:93:d6:1b:45:18:21:a7:13:c4:21:76:b6:36:dd: 2b:98:70:1e:d2:f0:45:b3:57:f4:96:ae:a0:7d:8e:5a:b6:59: 4d:37:d0:8d:c2:b3:9b:5a:b5:16:c2:46:c6:75:dd:db:02:bd: e4:1e:cf:1b:dd:94:a2:da:7c:e6:29:9f:89:69:04:78:70:73: 51:4f:f7:1a:e2:c3:ec:26:30:b1:08:c3:4b:90:06:31:15:be: a2:9f:93:69:81:2e:6a:54:73:d3:c2:c6:86:49:4a:6e:f3:89: 7a:0c:2c:fe:13:c4:38:10:69:3f:33:dc:3e:e9:97:f9:03:ea: 33:57:d5:74:02:21:e5:60:5e:cc:6e:6b:13:67:e0:fe:35:eb: 17:a9:b8:4f:ce:1f:95:19:ca:c1:00:a4:71:a5:8f:10:a4:e9: 0b:b4:a1:6b:a5:6b:92:40:7e:21:c0:1e:13:99:d9:6f:21:47: 90:ec:7d:d7:5d:59:7e:6c:1a:11:50:2f:12:01:7f:ca:2c:1c: 5a:c0:17:19:cf:23:bb:01:3b:0d:f9:a5:54:b6:51:2c:ae:5a: 8b:e8:b4:dc -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUP0OUCsyS+T2iYF8EpfxK7JErcEMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxMjE2NDM1MVoX DTI2MDQxMTE2NDg1MVowMzExMC8GA1UEAxMoQ0Q0RUFDMDMwNkQwNkYyMTA5RjI2 NzlEQzlGNTJGN0RFNTk3NTkwRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANgdxz57jG9k3m7h7bYvO8gy1X7H2C0pExh6+ypsQ8vjF8rnYwPiKRXCqW3k h7wkUVk5S3KY+qWRYLMoTLM3+Kh1Kpg70MdjJynyZWwwEPZ4qS0Alfb3Q6vmekxW 8fUQO1vut6oHQ5Pma/Un9D/hfDT6Udv0WB3445QrdKXCQrzh3pDbSbycdIe5ws+2 yfEeCYt86RUKiXV7DGFvvW0qOohaEXZtKY3y6QJR1vvVQiTj2j9DGDUIaa8yjbef azwTvJ+XDI7oUaavxymwaMSzsbWuqzcTqCiBmEW77LQ8ryk720PaCHy3lhjODPi8 et9oiKv24dFk/MU7KU4z1V8jSS8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM1OrAMG0G8hCfJnncn1L33ll1kNMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNzhiYmZkNC02N2I0LTQ5OGQtODQxMS1lOTY0YzVmZTExNzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3OGJiZmQ0 LTY3YjQtNDk4ZC04NDExLWU5NjRjNWZlMTE3Mi8wL0NENEVBQzAzMDZEMDZGMjEw OUYyNjc5REM5RjUyRjdERTU5NzU5MEQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BABnnDkwDQQCAAIwBwMFACQGgkAwDQYJKoZIhvcNAQELBQADggEBAJwm3O8KhCCM T+2BHnKBTbTnAaselSgLp0QGDg9PBtps8jHpr+GmhN2T1htFGCGnE8QhdrY23SuY cB7S8EWzV/SWrqB9jlq2WU030I3Cs5tatRbCRsZ13dsCveQezxvdlKLafOYpn4lp BHhwc1FP9xriw+wmMLEIw0uQBjEVvqKfk2mBLmpUc9PCxoZJSm7ziXoMLP4TxDgQ aT8z3D7pl/kD6jNX1XQCIeVgXsxuaxNn4P416xepuE/OH5UZysEApHGljxCk6Qu0 oWula5JAfiHAHhOZ2W8hR5DsfdddWX5sGhFQLxIBf8osHFrAFxnPI7sBOw35pVS2 USyuWovotNw= -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:22 2025 by rpki-client on console.sobornost.net