Certificate

$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/020EA2304929066809CA6F723574798639D77438.cer
File:                     020EA2304929066809CA6F723574798639D77438.cer (raw, json)
Hash identifier:          HsWbCMzo0zldqXd/TkBbDi8eNosPrhmTIMIJOtiT46o=
Subject key identifier:   02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer:       /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial:       59AFD119D29BEE4468BEC750D17A7791BB4AAADA
Authority info access:    rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest:                 rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft
caRepository:             rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/
Notify URL:               https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before:   Mon 08 Jul 2024 05:30:31 +0000
Certificate not after:    Mon 07 Jul 2025 05:35:31 +0000
Subordinate resources:    IP: 160.25.54.0/23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            59:af:d1:19:d2:9b:ee:44:68:be:c7:50:d1:7a:77:91:bb:4a:aa:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862140000
        Validity
            Not Before: Jul  8 05:30:31 2024 GMT
            Not After : Jul  7 05:35:31 2025 GMT
        Subject: CN=020EA2304929066809CA6F723574798639D77438
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:f5:d6:73:1c:ef:d0:f5:07:c7:c7:0a:57:f2:
                    63:49:c9:e9:89:cc:44:8d:ef:ce:4f:3f:40:1a:57:
                    79:66:b1:f3:1b:a7:c3:53:04:e3:69:6b:9a:76:c7:
                    fb:f7:82:c2:fc:ba:63:c0:2a:74:db:d5:53:39:3d:
                    0f:7e:b5:58:c3:30:cb:15:da:05:54:bd:5c:c2:51:
                    1f:58:1e:08:8e:64:a8:26:e7:03:6c:99:db:e9:2f:
                    49:60:61:14:85:fb:c2:18:f1:86:67:17:d0:c2:6b:
                    90:a5:5e:17:9d:2a:56:be:bb:0d:6d:13:64:9e:73:
                    58:ae:4e:eb:cb:e2:6a:1a:cf:db:a3:b6:c3:7d:4d:
                    5e:ca:68:5e:a5:e8:45:68:24:aa:65:3b:dc:4f:7a:
                    6d:15:33:ef:8a:aa:ee:f2:71:b5:5a:bc:fe:28:90:
                    92:0c:2b:74:7a:f4:ea:a7:4d:89:c3:fb:76:52:ea:
                    ba:4e:f5:4c:2d:25:da:5b:29:7b:86:fe:ed:98:83:
                    a4:a8:ae:e3:dc:41:be:b2:36:4a:08:59:61:73:bd:
                    14:d7:03:84:fc:bb:3c:48:df:d2:6d:04:09:af:3f:
                    37:52:92:c3:99:61:9d:a8:9e:40:fc:9c:fa:da:59:
                    82:6c:31:2b:2b:f2:9f:64:40:f0:b1:18:dd:2f:25:
                    0d:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Subject Key Identifier:
                02:0E:A2:30:49:29:06:68:09:CA:6F:72:35:74:79:86:39:D7:74:38
            X509v3 Authority Key Identifier:
                keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer

            Subject Information Access:
                CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0
                RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aea26a10-58e8-43c7-947e-722173d66614/0/020EA2304929066809CA6F723574798639D77438.mft
                RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  160.25.54.0/23

    Signature Algorithm: sha256WithRSAEncryption
         49:d6:b0:44:a8:8f:9b:98:e1:1e:ea:39:d6:68:b6:26:7f:92:
         7b:9d:45:59:db:92:b2:20:d8:0a:d3:5d:d5:44:76:cc:24:81:
         1c:80:7e:53:d8:2c:5c:ca:20:3b:8a:bf:b5:fe:85:a4:7a:77:
         2c:d9:16:fb:0b:d0:a8:68:58:06:c5:f0:47:6a:95:a9:b6:f2:
         f1:f6:97:17:1b:33:5b:b7:40:c8:1f:a5:95:46:50:0e:33:60:
         da:3b:3c:06:a4:06:aa:b9:91:c5:f3:c8:ec:0a:6c:0e:7d:65:
         75:03:82:f0:28:67:60:cd:ba:4f:ef:5b:dc:d3:e5:f8:2b:13:
         be:04:d4:be:cd:20:e9:5e:89:43:b0:04:53:27:93:d0:d3:1a:
         67:da:41:9f:9e:3b:0f:6d:df:81:ff:03:6d:33:a2:ec:bb:4e:
         f4:d9:cd:bf:5f:88:18:04:f9:7c:b5:74:58:36:58:e4:19:23:
         4e:db:2a:70:d2:87:cf:87:4a:ff:bc:4a:f2:d8:99:20:69:97:
         a9:79:be:78:cd:d6:fe:32:2c:09:a6:39:01:80:e4:22:29:e3:
         b6:ff:d6:08:40:f9:05:3f:bd:19:77:8c:9d:48:1c:a0:11:51:
         d0:6d:97:5a:ee:c4:82:a4:4f:a3:be:4e:ac:6f:df:8f:70:f5:
         cd:d7:bf:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----