Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/4ED16B9231905A1C7A353DF749BF99487E69E313.cer
File: 4ED16B9231905A1C7A353DF749BF99487E69E313.cer (raw, json)
Hash identifier: VsMgGxKB9uICxeJ5FaE8jBOlevf46Qzo9vbVkId7E/Y=
Subject key identifier: 4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 4BD630AB6B03F3164345EBFCAF463D1B2B06EBAC
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft
caRepository: rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Tue 04 Mar 2025 08:34:28 +0000
Certificate not after: Tue 03 Mar 2026 08:39:28 +0000
Subordinate resources: IP: 157.20.100.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:d6:30:ab:6b:03:f3:16:43:45:eb:fc:af:46:3d:1b:2b:06:eb:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 4 08:34:28 2025 GMT
Not After : Mar 3 08:39:28 2026 GMT
Subject: CN=4ED16B9231905A1C7A353DF749BF99487E69E313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:df:fd:d0:83:03:34:e7:f9:25:b6:05:6e:
71:c6:80:9f:ba:0a:31:e4:94:ba:01:ad:68:da:40:
bd:5e:4a:0d:d8:c0:ef:14:0e:20:20:0c:94:ed:ff:
6a:4f:39:52:93:fd:46:eb:01:53:df:85:65:2c:b4:
41:64:7b:07:4b:e6:23:ed:7a:f5:97:67:49:44:26:
c9:71:78:b5:c7:8a:17:52:48:06:4a:c2:79:15:dd:
fd:e5:7d:9c:ca:67:02:1a:27:fc:be:db:59:96:c7:
be:79:ba:3b:bc:24:8e:4c:d7:05:f5:b0:fd:77:39:
cc:4f:07:a6:42:c9:18:72:3f:ce:fe:4c:a4:3a:cd:
e0:15:9c:3f:44:a6:04:fe:76:32:a4:ca:aa:c7:b9:
17:0a:7d:37:06:84:94:0e:87:02:81:13:aa:fe:72:
a4:a9:e6:2d:83:31:e8:de:64:5e:ee:b8:66:9d:33:
7c:e2:dd:6e:f7:68:9b:0e:64:8d:16:53:ba:53:13:
76:00:1b:09:80:c0:3e:77:46:cb:b2:2f:ab:c3:84:
fe:38:f5:07:e6:52:81:55:8e:0a:67:fc:aa:92:cf:
40:bf:5d:6a:57:a8:a3:a2:52:9e:ec:e9:71:2f:3f:
f8:f3:57:a6:90:8c:f3:cc:05:79:81:55:8c:a1:5c:
9c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
4E:D1:6B:92:31:90:5A:1C:7A:35:3D:F7:49:BF:99:48:7E:69:E3:13
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ab88d2ca-229b-4aac-9b5c-42c15105bb82/0/4ED16B9231905A1C7A353DF749BF99487E69E313.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.100.0/24
Signature Algorithm: sha256WithRSAEncryption
33:f9:82:31:6b:e6:d8:49:81:21:a2:d6:0f:dd:f5:3d:e6:f0:
ee:c2:7f:9e:ac:52:d6:89:93:0f:28:2e:21:cb:c4:64:82:3c:
de:c8:90:32:90:0e:8f:06:f3:21:d8:81:c3:b7:33:23:e6:e0:
06:1c:cb:5c:87:9f:ef:f4:73:79:56:3b:85:dd:30:5c:fe:32:
cf:cd:e8:fa:ec:af:9a:28:51:62:ec:7f:37:68:17:0d:d7:68:
81:a8:d4:aa:76:66:46:90:0c:39:fc:67:e8:17:45:92:81:6f:
b5:e7:f8:68:9e:e1:67:96:07:dc:9f:7c:46:bc:c1:fe:84:3b:
3b:08:14:5c:af:98:08:94:47:b6:ea:ed:a7:c9:2b:24:d2:c3:
89:69:51:fd:52:80:dc:41:6b:58:55:8a:5d:96:05:42:b7:19:
94:a5:bd:c1:f6:03:ec:55:62:be:ef:42:c5:ee:c5:73:a8:46:
cf:20:6c:80:28:1a:19:44:38:dd:9a:8d:d6:61:23:b9:74:38:
b2:a4:14:31:e0:c6:1a:b6:0e:91:14:f1:28:6b:2a:a8:94:d8:
c8:d5:71:7d:73:70:03:9f:83:8d:fe:34:23:23:4c:9f:f3:85:
fd:05:06:19:29:51:46:f6:09:6b:ff:98:ef:f9:54:08:04:0a:
a9:dc:09:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:51:19 2025 by rpki-client