Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer
File: AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.cer (raw, json)
Hash identifier: ya6RqGBDRPxldwZso1+OFFeYxvdSd8RzgsAk5bWMi8o=
Subject key identifier: AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 1B86452EF13AC6AD532A97AFBCBEFE1A8FFA8B5C
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.mft
caRepository: rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Fri 07 Mar 2025 15:58:00 +0000
Certificate not after: Fri 06 Mar 2026 16:03:00 +0000
Subordinate resources: IP: 157.10.181.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:86:45:2e:f1:3a:c6:ad:53:2a:97:af:bc:be:fe:1a:8f:fa:8b:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 7 15:58:00 2025 GMT
Not After : Mar 6 16:03:00 2026 GMT
Subject: CN=AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:4f:33:a2:87:df:bd:99:fa:07:f8:f5:a7:64:
6e:90:9b:03:f6:94:e4:98:55:d3:ce:38:91:b4:11:
9a:0d:00:33:2e:11:4b:e4:d7:43:ce:3f:cd:b2:97:
12:2e:59:2c:3b:c1:62:72:e6:4e:05:a7:94:b8:3a:
68:32:e6:e5:18:2b:bd:14:0c:d7:a4:7d:ab:ef:da:
e9:84:fc:dd:22:2a:d5:03:a3:8f:09:8e:7d:31:42:
42:9d:ad:96:87:f0:fe:a4:58:89:25:e9:c9:4c:ef:
bb:8a:25:af:46:58:43:31:af:a6:a6:5f:4a:29:ab:
a4:c5:34:3f:63:8f:23:63:e2:d7:97:f8:bf:17:e1:
bb:ea:81:ec:0a:a8:11:60:28:72:12:71:aa:32:c8:
4e:ca:ad:94:3c:72:95:72:3e:a6:90:8d:55:e1:f9:
ea:9b:08:f3:68:73:e6:27:4d:0d:65:83:c7:4b:99:
1b:d2:10:5a:82:f0:75:4c:29:0e:50:f7:db:a0:89:
b7:f6:b8:ee:ce:bd:67:a5:92:f0:91:7d:7c:7d:42:
92:79:df:81:f2:36:69:4f:ac:d6:e1:b2:9b:5f:61:
29:2d:38:6b:c8:0a:87:97:8a:b9:bf:a7:4e:a2:ba:
2c:a1:34:5f:6f:2c:8e:7d:cb:ad:66:ae:34:19:d1:
71:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AF:A7:AE:3D:79:0A:1F:0C:91:4B:83:99:E4:69:5F:4D:63:42:B4:C3
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b90d0265-2cc1-463d-948b-cded13a20295/0/AFA7AE3D790A1F0C914B8399E4695F4D6342B4C3.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.10.181.0/24
Signature Algorithm: sha256WithRSAEncryption
67:44:d7:0c:e4:d4:1e:a7:b6:37:83:d8:ae:dc:5b:74:25:1d:
58:c0:8a:64:3d:b3:63:df:dd:29:e0:35:7f:ce:83:d7:e2:29:
30:1d:a1:e5:25:40:41:5d:6b:cd:da:33:72:d8:40:d3:a7:be:
68:be:6d:76:7a:52:02:06:7e:b0:98:7d:bc:33:3e:c3:10:71:
d2:a5:3d:e4:a6:a0:2e:10:ba:a0:82:b2:c1:d9:13:9f:16:dd:
02:3b:f2:ac:de:1c:95:09:44:6c:e2:ed:be:fa:1c:5c:74:f6:
aa:d1:ea:34:cc:96:d3:0a:ed:6f:59:06:46:2e:29:50:2f:40:
d2:c5:52:bd:e6:26:ab:c8:d1:8f:d1:2e:4f:e8:20:4f:66:c1:
6b:7e:dd:34:07:73:dd:29:c9:96:9b:df:c1:78:f8:09:93:11:
fd:d1:2e:6f:97:5b:40:11:bc:b6:9e:9a:c9:04:46:a3:35:54:
89:c9:c5:44:f3:8a:e4:e0:17:52:f3:6b:a2:3a:ee:0e:ee:ec:
01:ba:2a:b6:85:5c:66:e2:b1:67:ad:c3:8e:5b:3e:0a:51:48:
81:ae:9f:ad:48:58:9f:f5:2f:b5:4c:01:01:66:de:ea:a8:2a:
96:cc:7e:1c:1f:fd:24:2d:af:65:fd:82:5a:ea:97:7b:ba:70:
cf:a3:1c:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 04:02:40 2025 by rpki-client