Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer
File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer (raw, json)
Hash identifier: NsvQJF936frt2EOQsfOzEkdJv9pEp0MiQtj4xxmK0rk=
Subject key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 5C6A26438AD2E201C0E4883AE3046212EB4904AB
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft
caRepository: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 16 Jan 2025 08:21:21 +0000
Certificate not after: Thu 15 Jan 2026 08:26:21 +0000
Subordinate resources: IP: 157.10.158.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:6a:26:43:8a:d2:e2:01:c0:e4:88:3a:e3:04:62:12:eb:49:04:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 16 08:21:21 2025 GMT
Not After : Jan 15 08:26:21 2026 GMT
Subject: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:7e:d9:98:d6:b5:00:4d:29:be:4c:b1:1e:6f:
18:b4:9f:74:14:39:95:88:f0:a1:16:57:db:30:cb:
15:d6:12:b0:71:0d:0b:06:f4:f4:a2:63:78:32:1b:
df:65:05:d4:ab:88:84:19:30:be:02:a6:06:75:bb:
4d:de:06:72:16:bf:b7:42:84:b3:7b:87:51:88:b1:
3f:93:03:10:c3:09:96:3e:ad:6d:14:ba:29:2d:89:
f6:e2:30:99:2b:30:28:22:9f:38:2b:c4:3a:1c:88:
ce:d5:61:ee:71:d7:d9:65:c1:78:38:d6:d7:9c:38:
45:ce:14:62:fe:b6:47:2a:d2:3a:2f:45:be:df:42:
e3:09:b5:e1:fd:cc:1f:01:f7:b4:0e:3a:e4:d8:9c:
99:eb:f2:f8:aa:6c:bd:7d:66:e6:69:9e:f1:17:79:
a4:d7:91:b0:db:83:86:1a:56:6c:07:f2:1e:0c:99:
3e:c6:eb:4a:9c:c0:9b:6d:3a:4d:ac:95:1a:c3:8b:
1f:38:e0:c9:5c:66:31:12:88:70:38:be:cd:b9:8d:
84:f2:0e:ca:04:91:f4:66:b0:54:51:9b:69:f5:f7:
40:6c:01:b3:bb:19:a5:f6:97:4a:f3:11:43:64:b3:
83:33:90:d7:8c:c4:19:c0:5d:ea:c4:6e:b0:3f:39:
ef:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.158.0/23
Signature Algorithm: sha256WithRSAEncryption
72:41:f2:6f:6a:ef:87:a4:40:08:55:da:94:ad:47:00:ff:bd:
8b:c1:0f:c4:ea:d3:d2:e3:3f:a3:b6:df:07:53:93:90:1f:b9:
83:28:9a:28:86:93:fb:b0:eb:5d:a1:3a:c1:d5:39:19:1f:c8:
1f:a0:9f:25:9b:33:19:17:6a:e6:07:2c:6a:fd:36:09:2e:79:
83:2a:29:b4:64:88:e5:61:a2:7b:58:05:fa:f6:a0:4a:4c:7f:
17:d7:0a:26:99:af:34:09:1e:4b:db:37:07:05:33:90:d3:57:
b2:34:d6:b6:bc:e5:ac:24:19:52:9a:9a:32:f9:17:6e:dd:43:
30:ce:6c:7c:89:16:56:31:23:62:3b:63:67:1f:c3:00:bf:ec:
9d:dc:42:b4:3f:17:8d:da:59:09:42:77:c5:c7:70:4b:89:af:
56:3b:3a:9c:1e:0e:82:27:df:ae:0a:fe:16:cc:0d:ef:b4:52:
5e:39:a9:6c:f5:f5:24:be:97:8f:fb:e9:80:f0:79:62:ec:f3:
2d:b1:1a:06:a0:5e:3c:84:82:16:cc:dc:46:ee:30:56:57:64:
f5:6d:14:84:a5:45:0b:04:c8:e5:e8:31:0d:c8:56:05:de:9b:
5a:7e:f7:60:a0:41:cb:6d:bb:77:b7:c3:df:b0:0f:65:a6:7c:
4c:14:1a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:34:02 2025 by rpki-client