Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer
File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer (raw, json)
Hash identifier: PupNarb0pjjzy7jkK4vTO4/JLH9BfRJn8tuP3At0avo=
Subject key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 59DE802828BBC5D27BF5EB907460191EDCFFE76F
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft
caRepository: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 19 Sep 2024 16:17:42 +0000
Certificate not after: Thu 18 Sep 2025 16:22:42 +0000
Subordinate resources: IP: 160.22.250.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:de:80:28:28:bb:c5:d2:7b:f5:eb:90:74:60:19:1e:dc:ff:e7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 19 16:17:42 2024 GMT
Not After : Sep 18 16:22:42 2025 GMT
Subject: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:86:06:ca:78:af:75:81:e2:1a:81:f3:cf:
ac:16:d4:a9:6f:d5:01:19:ba:5f:b3:04:dd:f3:30:
01:78:13:04:3c:5b:8d:79:5d:7a:b0:26:ae:ae:cf:
4a:e9:a6:79:1e:5e:6e:72:a1:b5:f1:35:25:2d:ca:
6e:ce:9e:60:38:2a:aa:7e:31:7a:83:e9:1b:1f:8d:
04:b3:86:66:83:18:b6:97:52:4c:85:09:a9:b7:7a:
4d:06:fb:8d:b7:6f:7d:11:38:0c:5c:ba:6d:94:98:
03:d0:74:bc:ce:d6:5a:95:ea:4d:5c:16:6a:67:c4:
8a:2e:7b:fe:26:96:ea:6f:a6:c8:6c:3b:e6:35:a1:
0e:98:75:2a:d2:d8:0c:23:9a:1b:98:77:74:d9:a2:
4c:6f:9a:38:ee:f1:48:0f:c4:3e:b3:f1:5a:44:7a:
71:30:86:95:a9:b7:b5:e4:24:09:72:da:e0:c5:d5:
69:da:25:85:56:1b:f5:7b:e9:34:ad:8b:60:3b:76:
99:21:64:c0:9f:cd:26:8c:53:ad:fb:6a:d3:d5:ae:
55:6d:08:6c:e7:45:41:e4:1e:2d:88:da:f9:0f:8a:
8b:60:b7:15:a8:44:d4:48:02:b5:d7:38:04:ae:8e:
11:77:cf:72:5a:42:a0:eb:16:fc:a8:ba:14:47:67:
d3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.250.0/23
Signature Algorithm: sha256WithRSAEncryption
28:1e:9c:f7:f5:49:ef:c5:1a:1a:43:0b:bd:3f:dc:9f:02:62:
1f:fe:0d:25:13:fd:01:c3:e7:2b:b9:bd:38:a8:5a:7b:1e:5c:
25:19:d6:0b:c4:c4:7e:be:52:37:8e:e7:70:db:4f:9d:09:63:
02:88:14:fe:66:95:63:72:17:a4:83:24:bb:79:e1:91:8e:bd:
29:bd:83:61:22:a3:48:6b:34:c1:7e:2a:af:2e:a2:15:72:5e:
5f:3d:9a:15:d0:e8:b4:53:78:f4:1d:f8:ec:ee:89:74:be:6b:
02:8a:d2:b6:30:f3:4b:58:3d:eb:ad:46:99:3f:5a:91:71:ec:
f3:38:60:b7:69:ad:e2:9d:d1:02:ff:98:10:9f:46:0d:f7:c4:
e9:03:ca:fb:56:20:8d:3d:44:7e:15:d1:a8:67:b8:6a:c8:92:
b2:96:34:c5:6e:f3:0d:32:37:da:a5:f5:19:9e:b4:bf:29:ed:
3b:39:66:47:01:82:f1:1d:67:e4:e3:05:11:a8:c5:63:7b:f5:
81:88:0d:a4:b1:1e:fc:4d:b0:8f:b0:e0:71:bf:26:f4:c1:2d:
72:7b:bb:19:d4:cc:7a:a5:5d:21:0d:a2:35:e9:ce:12:d5:88:
58:f9:6e:69:76:11:1b:fb:97:b0:6f:34:55:d1:de:38:e3:e7:
2a:b2:7f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:04:20 2025 by rpki-client