Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/611A205C7A5D6583CE5801C64DC8EAFAB57E4129.cer
File: 611A205C7A5D6583CE5801C64DC8EAFAB57E4129.cer (raw, json)
Hash identifier: O1j/DpvBNr+jQViFFF63x9u9NisD+6ZCeVdgmaezngo=
Subject key identifier: 61:1A:20:5C:7A:5D:65:83:CE:58:01:C6:4D:C8:EA:FA:B5:7E:41:29
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 07B79FE890EA22A0D71E157E508E6A3D1558AC3E
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0/611A205C7A5D6583CE5801C64DC8EAFAB57E4129.mft
caRepository: rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Fri 07 Mar 2025 13:18:10 +0000
Certificate not after: Fri 06 Mar 2026 13:23:10 +0000
Subordinate resources: IP: 157.10.212.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:b7:9f:e8:90:ea:22:a0:d7:1e:15:7e:50:8e:6a:3d:15:58:ac:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 7 13:18:10 2025 GMT
Not After : Mar 6 13:23:10 2026 GMT
Subject: CN=611A205C7A5D6583CE5801C64DC8EAFAB57E4129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:8c:80:08:5f:40:a1:4d:98:f9:b5:6d:53:8e:
15:0f:c5:f7:8a:ea:78:e4:c7:fd:2b:c5:57:21:ed:
1d:40:e5:a3:e5:38:7b:37:d4:e9:0f:7e:92:77:8a:
8d:2b:97:6f:d7:01:9c:45:1f:0b:25:10:1f:e5:6a:
dd:1c:33:f3:9d:3f:ca:4d:a5:e7:bd:ce:28:49:ab:
2c:d8:c8:6b:38:cc:57:59:1a:30:28:17:e0:93:17:
5f:30:f4:a8:24:ed:c0:b8:7b:e3:a3:af:a0:3f:92:
9d:79:44:ff:d7:79:c4:82:26:dc:70:9e:fc:c6:bb:
b6:cc:ce:09:9a:89:85:46:44:b1:6d:ba:f9:b0:14:
45:79:bb:cd:97:29:76:37:e1:79:a5:5f:98:a8:d4:
99:58:b1:ac:42:95:5c:5c:e4:c2:e5:a8:1d:b8:cf:
d1:70:41:cb:48:33:e1:0e:c2:c3:c4:e4:68:bb:c3:
dc:8a:f6:0c:98:66:92:2e:fe:76:f6:61:4d:0e:86:
ed:de:ec:e0:36:9a:f5:1f:8d:a1:d0:66:c1:98:ef:
99:a0:7e:72:d1:a0:2e:b8:b0:b1:dd:a4:fc:e6:f3:
03:f0:d2:8b:61:bc:d7:82:e1:1a:b7:4d:38:ae:ed:
d0:11:0d:f5:1a:0f:74:51:e3:84:42:a0:3a:66:78:
d7:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
61:1A:20:5C:7A:5D:65:83:CE:58:01:C6:4D:C8:EA:FA:B5:7E:41:29
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a7d50f27-7e88-4718-83df-6832ec80e624/0/611A205C7A5D6583CE5801C64DC8EAFAB57E4129.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.212.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:cc:86:61:f7:75:d9:86:24:2e:b6:7a:88:f2:c8:a5:91:d3:
b3:9e:45:6f:5b:9d:f3:bf:a8:b3:17:e3:8b:77:a0:40:93:c1:
49:2c:4e:46:12:35:97:b0:6e:f8:99:ea:af:b2:fd:c0:74:e5:
07:01:c2:e2:81:20:3d:d6:30:2b:16:69:e1:ae:95:ff:be:43:
0e:45:94:a7:a2:77:9c:4e:4b:ec:e0:54:bd:a4:70:f7:de:2f:
10:2a:ce:17:e8:43:d3:7a:2e:27:52:a5:43:3e:70:6f:91:af:
14:94:68:0b:19:ed:c8:42:81:0d:35:21:17:e1:7b:61:4d:7d:
ad:06:44:c4:1c:12:12:47:66:10:06:e2:a5:59:5c:2c:c4:d7:
32:90:07:5a:ff:1a:dd:de:22:2a:0b:8d:ba:46:a2:d9:5d:37:
f5:ba:be:8c:80:75:28:cd:4d:70:c7:1c:e4:b0:eb:43:0d:ed:
cb:96:24:6a:90:37:7a:be:94:d8:2f:c8:3a:04:ec:8c:00:01:
a3:c3:0d:ce:f7:52:88:9b:b7:7c:9f:fe:0e:cc:7b:c1:cc:58:
ca:25:a3:ea:6b:8e:9b:c2:3a:67:e7:be:44:b2:11:22:46:bf:
01:54:d3:14:75:fe:77:2a:83:a6:90:2b:08:5f:a0:dd:dd:c8:
79:bd:d8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:51:10 2025 by rpki-client