Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer
File: 2098B3BD046CFFF28B48954F288A333FADDD1DE9.cer (raw, json)
Hash identifier: tAeePQRhDIjy76yLsyclws10cu3JHr6wL5x78IUjodI=
Subject key identifier: 20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 649148245062CC6E838DA2FFE8831C737374105B
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.mft
caRepository: rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Fri 04 Oct 2024 09:01:31 +0000
Certificate not after: Fri 03 Oct 2025 09:06:31 +0000
Subordinate resources: IP: 160.25.229.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:91:48:24:50:62:cc:6e:83:8d:a2:ff:e8:83:1c:73:73:74:10:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Oct 4 09:01:31 2024 GMT
Not After : Oct 3 09:06:31 2025 GMT
Subject: CN=2098B3BD046CFFF28B48954F288A333FADDD1DE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3e:16:31:b2:48:d4:e7:88:27:da:92:1e:7e:
38:92:be:1c:6e:1a:93:e2:c1:25:1a:04:b5:c3:eb:
05:e7:8f:f8:69:3a:d9:b2:27:b1:2c:44:f4:c3:89:
d6:ed:e5:e1:52:d0:68:2b:2b:63:40:63:b8:60:08:
9d:a8:6a:5b:fa:7f:c1:d1:14:54:52:58:4e:94:3c:
d7:92:c9:48:ff:c8:b4:c3:b8:bf:c2:fa:3c:05:a4:
8e:d8:9b:10:fe:b1:f3:cf:af:a7:7b:73:3c:ed:b4:
3d:37:dc:e6:b1:ae:39:41:26:60:33:8b:6f:5a:84:
40:2e:bb:8e:ac:ef:f3:9b:a1:4f:07:9a:ef:85:46:
33:ad:bf:c4:d2:7c:94:4a:a2:4a:42:f9:cf:10:09:
22:46:90:c8:21:c4:74:7a:25:38:70:7c:53:22:41:
8f:e0:e3:2d:34:12:79:21:8b:00:3c:a9:3d:a5:0e:
db:77:68:c5:e8:2c:00:5f:51:97:a3:12:fd:dd:50:
a7:c8:a7:cc:b6:7e:cc:2d:ef:c9:a1:ed:47:49:a3:
a5:ac:ab:d4:c7:25:01:6e:e5:01:8b:72:a6:44:2e:
b5:4b:5b:a9:7f:b1:3b:ee:28:04:c3:aa:b4:05:4d:
e7:68:c9:09:13:7d:b4:ae:03:51:6e:4d:dc:5f:48:
dc:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
20:98:B3:BD:04:6C:FF:F2:8B:48:95:4F:28:8A:33:3F:AD:DD:1D:E9
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aa417608-16b8-4497-81e3-947d78dbcf11/0/2098B3BD046CFFF28B48954F288A333FADDD1DE9.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.25.229.0/24
Signature Algorithm: sha256WithRSAEncryption
63:71:51:74:6c:da:1c:bc:44:c5:02:4d:7d:31:d7:09:6e:f9:
8f:3e:c9:2d:7e:c4:bb:ff:9d:09:8c:69:63:23:e2:39:98:78:
57:53:73:4c:b4:5d:49:7f:2e:c5:fe:42:48:a3:a3:34:1d:ec:
ce:26:18:f9:0b:04:69:0a:23:2b:db:e8:85:ff:e6:49:30:55:
5f:97:7e:f5:9b:a1:43:55:3e:7a:48:84:9d:39:0f:35:25:19:
d4:f1:52:73:bd:d7:a9:54:8d:81:ec:22:b5:1b:5a:db:d3:73:
12:84:42:00:3e:33:47:8e:3d:7e:10:12:84:91:02:6a:dc:d5:
34:0b:42:e9:35:fd:91:42:3d:6c:bd:fe:52:f9:02:fa:f2:e8:
51:0c:84:6b:f6:f4:48:f0:af:31:8b:af:5a:46:c7:58:e8:9d:
b6:e5:d6:72:d2:f7:08:03:4d:9b:e9:aa:e4:0f:25:6e:8e:50:
7b:4b:36:c8:5e:cd:c5:ae:03:4e:c7:e2:ed:4d:e0:3b:e9:ec:
01:67:e6:9d:96:0c:9f:62:b4:88:cd:7d:7f:03:ed:97:73:5f:
c8:91:e5:d7:37:45:d5:ee:16:37:d2:69:89:01:ce:09:2d:23:
9f:50:ad:3e:f8:e8:59:b3:26:c1:b0:62:61:dc:1f:d5:06:34:
63:70:22:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:24:06 2025 by rpki-client