Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer
File: 350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.cer (raw, json)
Hash identifier: iHvgvmjWTqZRUFt9RBrpf72mwJh7nz2OYVAE2E/hgYg=
Subject key identifier: 35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 172CEAFF0CD66AE5779F78FB04395A5272AD093A
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.mft
caRepository: rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Mon 20 Jan 2025 08:10:41 +0000
Certificate not after: Mon 19 Jan 2026 08:15:41 +0000
Subordinate resources: IP: 157.15.66.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:2c:ea:ff:0c:d6:6a:e5:77:9f:78:fb:04:39:5a:52:72:ad:09:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 20 08:10:41 2025 GMT
Not After : Jan 19 08:15:41 2026 GMT
Subject: CN=350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:40:51:59:c9:db:9e:5b:8c:d7:25:84:57:be:
74:df:e1:51:c4:ae:19:94:8b:0f:d3:17:60:e9:54:
d6:41:fa:c5:67:fd:e1:38:32:34:cb:98:90:ef:d2:
0d:8a:b3:b7:e2:30:13:04:1f:0b:4b:7a:57:3d:52:
50:b6:96:3d:f3:c7:87:ef:5d:58:ac:ad:14:5d:43:
ce:31:49:df:69:d0:5f:1b:43:15:4f:d3:b8:47:99:
a3:2a:9f:89:47:08:b7:02:3e:da:e1:89:19:bb:f4:
60:c9:f7:c6:d6:a5:72:9b:8a:a0:50:90:8e:93:2e:
85:b8:b4:1d:00:a0:cd:26:e5:90:56:55:15:a5:7e:
de:7c:d7:1c:e3:16:f9:ed:7a:ba:4b:ec:00:93:32:
6d:50:af:3c:e0:94:c0:73:57:c3:45:1f:59:9c:1c:
71:2a:be:46:76:18:a5:0c:5e:71:c5:d1:75:82:e0:
a2:de:54:73:79:78:c6:2c:f7:3e:5e:24:ee:fb:32:
fa:b3:c3:ac:0d:dd:91:e8:17:45:47:aa:32:6b:82:
68:ed:2c:5d:b4:fe:a2:df:bb:d4:ce:fc:02:53:0d:
a9:26:d9:42:6f:77:4d:80:86:a4:c9:36:61:e2:bb:
e0:3d:2c:3b:00:8c:fc:6f:b0:6e:ed:e4:25:38:c2:
13:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
35:0B:AE:86:CA:7B:54:F1:B9:E5:3A:C6:0E:E2:BA:A5:15:63:F6:7B
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/350BAE86CA7B54F1B9E53AC60EE2BAA51563F67B.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.66.0/23
Signature Algorithm: sha256WithRSAEncryption
36:47:37:dd:40:1e:58:41:c4:b3:07:07:a1:56:a6:a9:6d:e1:
5e:07:07:ee:01:2a:36:79:ec:1a:84:f2:af:cc:0d:d8:7e:4b:
c8:39:42:0b:7e:ac:a3:c7:34:d4:75:fb:a3:34:38:11:ee:2c:
87:7d:97:e3:f0:d7:31:6a:b8:c7:cf:bb:4c:0e:36:f4:68:e7:
fe:bb:13:ef:d1:85:6b:9d:43:5b:90:ff:ef:4f:5c:17:a4:56:
3a:48:45:55:0e:e7:4a:0e:eb:7a:b1:26:2d:b5:52:8d:ff:80:
27:a6:d8:6f:c1:de:a6:a7:99:4a:be:e3:de:eb:90:6e:fd:a2:
ea:2f:8c:b9:f7:93:12:61:b3:a2:56:57:2b:2d:50:da:87:72:
b7:d6:18:14:ba:d8:84:0b:46:46:d9:ab:b0:3f:61:16:ef:68:
9d:a3:e2:ea:bf:63:d1:f1:14:75:2e:e2:6f:65:e4:66:c0:a2:
f7:e1:79:ff:51:b4:89:ec:b8:49:25:10:ed:7a:03:d0:c1:90:
12:39:a9:a4:52:49:22:a7:09:81:d2:9e:fc:89:1b:4a:ee:5f:
c2:2b:34:d0:ec:fb:76:71:35:30:4e:8e:d0:72:73:66:49:fd:
c3:36:a8:c1:13:3f:29:3c:f5:12:e8:67:55:16:95:59:1d:52:
51:72:bb:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:41:24 2025 by rpki-client