Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer
File: 142A78CA51D88042BA512A1BB46D6DF44F63BBD7.cer (raw, json)
Hash identifier: e3VhNV+V82ub7evTUpmsgVCOlcB/llIasadOuxXAVYo=
Subject key identifier: 14:2A:78:CA:51:D8:80:42:BA:51:2A:1B:B4:6D:6D:F4:4F:63:BB:D7
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 621982D1FE37891EF632D93155594DCC60BEE246
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.mft
caRepository: rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Tue 30 Jul 2024 01:23:43 +0000
Certificate not after: Tue 29 Jul 2025 01:28:43 +0000
Subordinate resources: IP: 160.20.240.0/24
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 14 Apr 2025 12:07:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:19:82:d1:fe:37:89:1e:f6:32:d9:31:55:59:4d:cc:60:be:e2:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Validity
Not Before: Jul 30 01:23:43 2024 GMT
Not After : Jul 29 01:28:43 2025 GMT
Subject: CN=142A78CA51D88042BA512A1BB46D6DF44F63BBD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d8:8f:cf:04:e3:d6:5c:17:97:23:13:c7:f2:
70:cd:2b:ac:8a:d6:73:95:ca:0c:39:95:ba:96:d0:
8c:55:54:6b:3f:d1:fe:4a:f5:33:25:7f:06:80:ba:
31:0c:37:32:ff:47:04:35:ae:63:c5:04:d7:72:23:
97:8a:60:a0:0b:6d:90:b1:1a:35:5b:94:b4:53:4c:
d0:d7:ef:74:f5:cd:17:46:03:3e:0b:ac:4a:76:81:
4e:c1:24:d2:3d:e5:4a:80:ba:d4:fb:5b:fa:f1:48:
5d:6d:21:96:fc:5e:43:22:70:d3:36:22:02:18:56:
36:e4:7e:a4:0e:a8:f4:a2:74:0f:46:00:c8:1e:b8:
9d:0c:29:83:8b:c7:65:a5:c9:1b:da:95:da:11:8a:
4d:3d:86:c2:20:45:9b:92:6e:7a:e2:fe:ab:59:53:
49:ff:91:8c:0e:73:81:94:10:37:01:2c:aa:b6:fd:
4e:f4:e3:f0:15:ee:d4:29:29:5a:11:8f:6a:8c:08:
83:05:67:37:71:ca:07:af:48:d6:06:ab:0e:65:5c:
b6:15:06:05:ee:47:92:93:84:6d:f9:1f:cc:90:ca:
99:02:bb:08:97:0e:21:a4:d2:33:53:6d:e2:08:c8:
e8:45:b1:5e:75:cd:d4:8e:0c:c4:10:51:be:32:2a:
8a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
14:2A:78:CA:51:D8:80:42:BA:51:2A:1B:B4:6D:6D:F4:4F:63:BB:D7
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7fc5a1cc-cc5e-4e58-8df4-f886718313aa/0/142A78CA51D88042BA512A1BB46D6DF44F63BBD7.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.240.0/24
Signature Algorithm: sha256WithRSAEncryption
40:37:b2:a7:39:82:39:77:a1:e8:39:d6:b5:3b:1b:30:de:74:
ca:d0:3a:e5:27:ac:7f:61:ba:1b:98:4b:c4:0d:5e:5d:70:fc:
1e:c4:4d:90:c9:44:f3:57:1c:1e:03:89:98:24:af:89:54:31:
11:a4:63:22:45:8d:79:18:03:af:78:28:6e:e7:f7:3c:d4:82:
62:16:1c:b4:a6:13:60:c6:05:59:36:1b:59:ad:70:36:67:68:
be:cc:1d:61:d2:07:a6:ba:1d:47:92:07:67:af:a7:20:3e:06:
48:d2:dc:81:da:47:ea:8a:76:8a:7a:43:2b:05:66:f5:2b:10:
3d:1c:5a:e5:24:31:08:61:77:37:c8:e1:c6:25:0c:ca:61:ba:
0f:97:72:ae:cf:58:0a:d6:9d:f3:87:c6:79:94:03:2a:cd:08:
1b:72:7d:cb:9b:de:8a:b2:29:cb:d1:e0:5d:78:7f:62:38:75:
78:01:e1:79:33:de:05:d8:d4:97:08:9e:ab:91:bd:a8:fb:e4:
73:d6:b0:a6:e7:1e:28:1d:a0:b7:d4:57:2d:56:68:85:fb:1d:
f6:8b:9b:47:a4:09:d4:11:16:30:37:a2:fd:d8:b3:7c:d8:24:
ba:ef:42:77:53:85:d9:d5:98:38:d3:b6:9e:94:d2:5d:4e:46:
a7:d1:3b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 09:09:48 2025 by rpki-client