Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D2892BABEE5F3B298F674D48B1A6A8D638546CDF.cer
File: D2892BABEE5F3B298F674D48B1A6A8D638546CDF.cer (raw, json)
Hash identifier: MPeUUAKlfVIMN+vv2EtRWDrgykOnuMUnl86V2+enhu0=
Subject key identifier: D2:89:2B:AB:EE:5F:3B:29:8F:67:4D:48:B1:A6:A8:D6:38:54:6C:DF
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 44763423763EEEE59A32463BF7D3E7C0585B6B01
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/62bcf1ec-922d-4cd7-8ca6-72724f66e5fb/0/D2892BABEE5F3B298F674D48B1A6A8D638546CDF.mft
caRepository: rsync://repo-rpki.idnic.net/repo/62bcf1ec-922d-4cd7-8ca6-72724f66e5fb/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Sat 12 Apr 2025 21:13:32 +0000
Certificate not after: Sat 11 Apr 2026 21:18:32 +0000
Subordinate resources: IP: 27.112.76.0/22
IP: 27.131.248.0/22
IP: 49.0.24.0/22
IP: 103.5.48.0/23
IP: 103.5.215.0/24
IP: 103.6.34.0/24
IP: 103.6.180.0/24
IP: 103.6.200.0/22
IP: 103.7.173.0/24
IP: 103.8.224.0/22
IP: 103.8.244.0/22
IP: 103.12.12.0/22
IP: 103.12.167.0/24
IP: 103.13.37.0 -- 103.13.38.255
IP: 103.13.200.0/22
IP: 103.14.108.0/24
IP: 103.16.48.0/23
IP: 103.16.188.0/22
IP: 103.16.197.0/24
IP: 103.16.232.0/22
IP: 103.17.172.0/22
IP: 103.17.182.0/23
IP: 103.18.16.0/22
IP: 103.18.96.0/22
IP: 103.18.190.0/23
IP: 103.19.76.0/22
IP: 103.19.184.0/22
IP: 103.19.204.0/22
IP: 103.20.21.0/24
IP: 103.20.106.0/23
IP: 103.23.151.0/24
IP: 103.25.165.0/24
IP: 103.27.3.0/24
IP: 103.29.120.0/22
IP: 103.31.36.0/22
IP: 103.31.164.0/22
IP: 103.35.236.0/22
IP: 103.36.40.0/22
IP: 103.37.230.0/23
IP: 103.37.244.0/22
IP: 103.40.68.0/23
IP: 103.52.213.0/24
IP: 103.54.1.0/24
IP: 103.55.56.0/23
IP: 103.58.147.0/24
IP: 103.74.6.0/23
IP: 103.74.12.0/23
IP: 103.76.132.0/22
IP: 103.86.94.0/24
IP: 103.90.8.0/22
IP: 103.93.164.0/23
IP: 103.195.158.0/23
IP: 103.215.68.0/22
IP: 103.224.140.0/23
IP: 103.225.184.0/23
IP: 103.225.242.0/24
IP: 103.226.136.0/22
IP: 103.227.14.0/24
IP: 103.227.220.0/22
IP: 103.228.80.0/23
IP: 103.229.164.0/22
IP: 103.230.83.0/24
IP: 103.231.171.0/24
IP: 103.231.198.0/23
IP: 103.242.208.0/23
IP: 103.243.108.0/23
IP: 103.245.177.0/24
IP: 103.246.76.0/24
IP: 103.246.129.0/24
IP: 103.247.16.0/23
IP: 103.247.32.0/22
IP: 103.247.126.0/23
IP: 103.249.58.0/23
IP: 103.249.210.0/24
IP: 103.252.85.0/24
IP: 103.254.51.0/24
IP: 110.92.72.0/22
IP: 114.30.88.0/21
IP: 116.193.188.0/22
IP: 116.254.96.0/22
IP: 117.103.48.0/20
IP: 119.252.128.0/21
IP: 121.50.32.0/21
IP: 124.66.162.0/23
IP: 180.222.216.0/22
IP: 202.4.185.0/24
IP: 202.37.120.0/24
IP: 202.43.88.0/23
IP: 202.59.192.0/20
IP: 202.59.255.0/24
IP: 202.65.224.0/20
IP: 202.122.160.0/20
IP: 202.150.64.0/19
IP: 202.158.252.0/24
IP: 202.171.237.0/24
IP: 203.1.25.0/24
IP: 203.19.4.0/24
IP: 203.79.26.0/23
IP: 203.83.24.0/21
IP: 203.119.52.0/22
IP: 203.161.190.0/23
IP: 203.171.216.0/22
IP: 203.217.134.0/23
IP: 203.223.90.0/23
IP: 210.23.64.0/20
IP: 2001:dc6::/32
IP: 2001:de8:2::/48
IP: 2001:df0:263::/48
IP: 2001:df0:268::/48
IP: 2001:df0:2e6::/48
IP: 2001:df0:409::/48
IP: 2001:df1:4700::/48
IP: 2001:df5:ec00::/48
IP: 2404:400::/32
IP: 2404:e300::/32
IP: 2404:f500::/32
IP: 2406:5400::/32
IP: 2406:6b00::/32
IP: 2407:6b80::/32
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 27 Apr 2025 20:52:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:76:34:23:76:3e:ee:e5:9a:32:46:3b:f7:d3:e7:c0:58:5b:6b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Validity
Not Before: Apr 12 21:13:32 2025 GMT
Not After : Apr 11 21:18:32 2026 GMT
Subject: CN=D2892BABEE5F3B298F674D48B1A6A8D638546CDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:90:be:da:2c:76:b7:f6:e4:95:9e:46:88:be:
6f:ed:0c:51:45:cb:fa:91:b3:93:54:31:91:4a:fa:
b2:71:24:7c:01:5d:08:4f:88:ae:95:6c:8a:60:ed:
8f:63:89:67:51:fc:9f:0e:8a:50:0d:a5:b2:09:8f:
66:5c:e0:39:56:54:05:03:14:40:8d:11:3d:f2:af:
25:68:6b:e1:97:82:3d:58:52:fb:81:93:0e:7a:66:
57:7b:b6:f5:ef:82:9d:4b:37:81:0e:a3:8f:21:1e:
04:28:52:0a:fd:00:d0:fd:a5:77:eb:f4:65:2b:d0:
ab:6c:76:bf:4a:d5:5e:4c:d2:df:30:b6:80:af:32:
77:0f:6c:c8:8d:bc:de:05:dc:bd:6e:7d:78:09:c8:
6c:fb:8a:0e:76:44:67:c7:08:ec:b9:a2:42:51:45:
73:f0:bc:3a:60:f5:28:8e:f1:d6:61:ea:0b:e0:aa:
44:d6:b2:2f:fd:42:a2:2f:c4:04:a1:2f:56:c4:84:
39:f8:4b:44:1b:23:be:db:6b:22:07:49:8a:d6:9e:
87:61:71:6a:19:85:64:f2:0c:55:ea:11:b3:cb:4e:
66:30:d7:cb:53:dc:12:44:db:7f:67:a4:ee:c9:8a:
79:c0:05:d0:c1:b9:13:6c:c3:31:67:78:b2:50:b4:
48:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D2:89:2B:AB:EE:5F:3B:29:8F:67:4D:48:B1:A6:A8:D6:38:54:6C:DF
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/62bcf1ec-922d-4cd7-8ca6-72724f66e5fb/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/62bcf1ec-922d-4cd7-8ca6-72724f66e5fb/0/D2892BABEE5F3B298F674D48B1A6A8D638546CDF.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.112.76.0/22
27.131.248.0/22
49.0.24.0/22
103.5.48.0/23
103.5.215.0/24
103.6.34.0/24
103.6.180.0/24
103.6.200.0/22
103.7.173.0/24
103.8.224.0/22
103.8.244.0/22
103.12.12.0/22
103.12.167.0/24
103.13.37.0-103.13.38.255
103.13.200.0/22
103.14.108.0/24
103.16.48.0/23
103.16.188.0/22
103.16.197.0/24
103.16.232.0/22
103.17.172.0/22
103.17.182.0/23
103.18.16.0/22
103.18.96.0/22
103.18.190.0/23
103.19.76.0/22
103.19.184.0/22
103.19.204.0/22
103.20.21.0/24
103.20.106.0/23
103.23.151.0/24
103.25.165.0/24
103.27.3.0/24
103.29.120.0/22
103.31.36.0/22
103.31.164.0/22
103.35.236.0/22
103.36.40.0/22
103.37.230.0/23
103.37.244.0/22
103.40.68.0/23
103.52.213.0/24
103.54.1.0/24
103.55.56.0/23
103.58.147.0/24
103.74.6.0/23
103.74.12.0/23
103.76.132.0/22
103.86.94.0/24
103.90.8.0/22
103.93.164.0/23
103.195.158.0/23
103.215.68.0/22
103.224.140.0/23
103.225.184.0/23
103.225.242.0/24
103.226.136.0/22
103.227.14.0/24
103.227.220.0/22
103.228.80.0/23
103.229.164.0/22
103.230.83.0/24
103.231.171.0/24
103.231.198.0/23
103.242.208.0/23
103.243.108.0/23
103.245.177.0/24
103.246.76.0/24
103.246.129.0/24
103.247.16.0/23
103.247.32.0/22
103.247.126.0/23
103.249.58.0/23
103.249.210.0/24
103.252.85.0/24
103.254.51.0/24
110.92.72.0/22
114.30.88.0/21
116.193.188.0/22
116.254.96.0/22
117.103.48.0/20
119.252.128.0/21
121.50.32.0/21
124.66.162.0/23
180.222.216.0/22
202.4.185.0/24
202.37.120.0/24
202.43.88.0/23
202.59.192.0/20
202.59.255.0/24
202.65.224.0/20
202.122.160.0/20
202.150.64.0/19
202.158.252.0/24
202.171.237.0/24
203.1.25.0/24
203.19.4.0/24
203.79.26.0/23
203.83.24.0/21
203.119.52.0/22
203.161.190.0/23
203.171.216.0/22
203.217.134.0/23
203.223.90.0/23
210.23.64.0/20
IPv6:
2001:dc6::/32
2001:de8:2::/48
2001:df0:263::/48
2001:df0:268::/48
2001:df0:2e6::/48
2001:df0:409::/48
2001:df1:4700::/48
2001:df5:ec00::/48
2404:400::/32
2404:e300::/32
2404:f500::/32
2406:5400::/32
2406:6b00::/32
2407:6b80::/32
Signature Algorithm: sha256WithRSAEncryption
21:6c:4a:03:22:4a:3d:68:e3:8f:30:bc:fe:2e:d7:42:cb:74:
67:e5:9c:44:72:ea:51:47:1f:2b:7d:4d:12:2d:95:16:33:56:
b8:89:96:e1:75:8d:9c:28:14:ed:76:c8:c7:7d:99:34:0f:b6:
f1:be:e6:f9:e1:07:76:72:2a:77:2a:00:65:a3:b7:d1:6f:1b:
db:fd:df:26:73:aa:b8:5d:c8:d1:65:1f:61:60:4a:a8:a9:cf:
9b:a1:91:c9:91:b0:56:d8:77:6d:f6:9d:9c:13:fa:5e:10:2a:
58:ef:eb:71:91:06:eb:1a:e5:ab:73:94:90:69:07:51:21:d8:
54:2e:0a:f3:6d:83:fc:a0:68:74:ad:03:1b:af:96:b5:58:be:
d5:ba:fd:60:e7:56:47:38:42:b4:63:14:95:bf:30:fd:36:66:
53:61:6e:ec:96:5a:ec:24:97:97:7b:43:0e:bb:e7:a0:39:a3:
e1:49:11:55:c4:00:85:05:27:e9:e6:04:94:f6:fe:22:a0:5e:
31:cb:db:af:0e:5f:e9:ea:a5:f9:ad:5e:7f:c1:bb:5d:ee:ec:
46:ed:6e:1e:a1:f0:c6:48:da:ff:ae:84:b8:d4:54:20:bd:7c:
0d:60:0d:d2:87:ec:49:df:5d:1e:38:ad:11:ee:41:2e:ab:c1:
56:44:dc:c2
-----BEGIN CERTIFICATE-----
MIIIvzCCB6egAwIBAgIURHY0I3Y+7uWaMkY799PnwFhbawEwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQxMjIxMTMzMloX
DTI2MDQxMTIxMTgzMlowMzExMC8GA1UEAxMoRDI4OTJCQUJFRTVGM0IyOThGNjc0
RDQ4QjFBNkE4RDYzODU0NkNERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALWQvtosdrf25JWeRoi+b+0MUUXL+pGzk1QxkUr6snEkfAFdCE+IrpVsimDt
j2OJZ1H8nw6KUA2lsgmPZlzgOVZUBQMUQI0RPfKvJWhr4ZeCPVhS+4GTDnpmV3u2
9e+CnUs3gQ6jjyEeBChSCv0A0P2ld+v0ZSvQq2x2v0rVXkzS3zC2gK8ydw9syI28
3gXcvW59eAnIbPuKDnZEZ8cI7LmiQlFFc/C8OmD1KI7x1mHqC+CqRNayL/1Coi/E
BKEvVsSEOfhLRBsjvttrIgdJitaeh2FxahmFZPIMVeoRs8tOZjDXy1PcEkTbf2ek
7smKecAF0MG5E2zDMWd4slC0SOUCAwEAAaOCBbIwggWuMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFNKJK6vuXzspj2dNSLGmqNY4VGzfMB8GA1UdIwQYMBaAFLqP
d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g
XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y
L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G
CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l
dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv
OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw
ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw
by82MmJjZjFlYy05MjJkLTRjZDctOGNhNi03MjcyNGY2NmU1ZmIvMDCBgAYIKwYB
BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyYmNmMWVj
LTkyMmQtNGNkNy04Y2E2LTcyNzI0ZjY2ZTVmYi8wL0QyODkyQkFCRUU1RjNCMjk4
RjY3NEQ0OEIxQTZBOEQ2Mzg1NDZDREYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov
L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwggMXBggrBgEFBQcBBwEB/wSCAwYwggMCMIIC
hgQCAAEwggJ+AwQCG3BMAwQCG4P4AwQCMQAYAwQBZwUwAwQAZwXXAwQAZwYiAwQA
Zwa0AwQCZwbIAwQAZwetAwQCZwjgAwQCZwj0AwQCZwwMAwQAZwynMAwDBABnDSUD
BABnDSYDBAJnDcgDBABnDmwDBAFnEDADBAJnELwDBABnEMUDBAJnEOgDBAJnEawD
BAFnEbYDBAJnEhADBAJnEmADBAFnEr4DBAJnE0wDBAJnE7gDBAJnE8wDBABnFBUD
BAFnFGoDBABnF5cDBABnGaUDBABnGwMDBAJnHXgDBAJnHyQDBAJnH6QDBAJnI+wD
BAJnJCgDBAFnJeYDBAJnJfQDBAFnKEQDBABnNNUDBABnNgEDBAFnNzgDBABnOpMD
BAFnSgYDBAFnSgwDBAJnTIQDBABnVl4DBAJnWggDBAFnXaQDBAFnw54DBAJn10QD
BAFn4IwDBAFn4bgDBABn4fIDBAJn4ogDBABn4w4DBAJn49wDBAFn5FADBAJn5aQD
BABn5lMDBABn56sDBAFn58YDBAFn8tADBAFn82wDBABn9bEDBABn9kwDBABn9oED
BAFn9xADBAJn9yADBAFn934DBAFn+ToDBABn+dIDBABn/FUDBABn/jMDBAJuXEgD
BANyHlgDBAJ0wbwDBAJ0/mADBAR1ZzADBAN3/IADBAN5MiADBAF8QqIDBAK03tgD
BADKBLkDBADKJXgDBAHKK1gDBATKO8ADBADKO/8DBATKQeADBATKeqADBAXKlkAD
BADKnvwDBADKq+0DBADLARkDBADLEwQDBAHLTxoDBAPLUxgDBALLdzQDBAHLob4D
BALLq9gDBAHL2YYDBAHL31oDBATSF0AwdgQCAAIwcAMFACABDcYDBwAgAQ3oAAID
BwAgAQ3wAmMDBwAgAQ3wAmgDBwAgAQ3wAuYDBwAgAQ3wBAkDBwAgAQ3xRwADBwAg
AQ317AADBQAkBAQAAwUAJATjAAMFACQE9QADBQAkBlQAAwUAJAZrAAMFACQHa4Aw
DQYJKoZIhvcNAQELBQADggEBACFsSgMiSj1o448wvP4u10LLdGflnERy6lFHHyt9
TRItlRYzVriJluF1jZwoFO12yMd9mTQPtvG+5vnhB3ZyKncqAGWjt9FvG9v93yZz
qrhdyNFlH2FgSqipz5uhkcmRsFbYd232nZwT+l4QKljv63GRBusa5atzlJBpB1Eh
2FQuCvNtg/ygaHStAxuvlrVYvtW6/WDnVkc4QrRjFJW/MP02ZlNhbuyWWuwkl5d7
Qw6756A5o+FJEVXEAIUFJ+nmBJT2/iKgXjHL268OX+nqpfmtXn/Bu13u7Ebtbh6h
8MZI2v+uhLjUVCC9fA1gDdKH7EnfXR44rRHuQS6rwVZE3MI=
-----END CERTIFICATE-----
Generated at Thu Apr 24 20:37:22 2025 by rpki-client on console.sobornost.net