Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer
File: B14E4E1C1AA1291BA83356968F8AE48E844359A9.cer (raw, json)
Hash identifier: dJdEvtn9DAgN8coDU3AG/soBEzebwMJufooTNs51WeQ=
Subject key identifier: B1:4E:4E:1C:1A:A1:29:1B:A8:33:56:96:8F:8A:E4:8E:84:43:59:A9
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 2C72290662D6048FF6C192DAB50ED99F3731E542
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.mft
caRepository: rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Sun 09 Jun 2024 04:34:16 +0000
Certificate not after: Sun 08 Jun 2025 04:39:16 +0000
Subordinate resources: IP: 160.22.28.0/23
Validation: OK
Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 16 Apr 2025 22:10:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:72:29:06:62:d6:04:8f:f6:c1:92:da:b5:0e:d9:9f:37:31:e5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Validity
Not Before: Jun 9 04:34:16 2024 GMT
Not After : Jun 8 04:39:16 2025 GMT
Subject: CN=B14E4E1C1AA1291BA83356968F8AE48E844359A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:98:60:59:69:be:33:3d:44:b4:33:cc:4b:14:
69:cc:94:1b:5e:90:c8:28:b9:b4:6e:fc:6f:43:86:
5a:a3:6a:66:c2:b6:2d:24:94:10:c6:37:17:67:02:
33:b4:a0:99:4e:c9:f5:62:96:e4:8f:a4:32:6e:50:
f5:c1:07:03:97:c6:4e:f4:39:c1:12:37:9d:8a:c0:
32:93:2d:b5:5a:d0:9b:a9:c9:21:34:b7:d5:d9:5b:
52:47:bc:47:c2:33:c5:43:3e:08:d5:63:b7:5c:c9:
45:eb:87:47:0c:91:56:c8:bf:0f:a0:08:64:a7:d8:
6f:ec:c1:3b:e8:95:bf:c4:26:0b:9f:f9:95:c5:42:
c5:81:29:bb:f1:ac:58:db:20:f4:a6:83:6b:3d:7b:
3a:00:b5:76:d9:3f:44:9d:8c:b2:07:de:58:fc:84:
ac:f0:11:fb:2a:84:47:ee:b8:dc:43:56:e4:d8:18:
08:a3:b2:15:79:45:1c:9d:f9:b7:92:c3:34:a0:9b:
a9:76:af:da:28:f5:37:3b:f1:fe:58:6d:c6:2b:aa:
f9:b6:3e:38:3f:06:b9:d6:7f:28:0e:d8:6d:8c:bf:
66:35:d3:c3:28:c8:9e:6b:54:cf:fb:6c:59:8f:76:
15:6c:eb:11:64:04:a9:2a:35:64:0d:a4:64:69:f1:
90:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
B1:4E:4E:1C:1A:A1:29:1B:A8:33:56:96:8F:8A:E4:8E:84:43:59:A9
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/09142c82-b043-46eb-b0a1-8e15fd5daa79/0/B14E4E1C1AA1291BA83356968F8AE48E844359A9.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.22.28.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:77:3e:31:fe:be:b8:ea:81:37:56:36:f1:97:61:fe:27:dc:
7b:10:c2:2b:34:71:f7:27:29:58:e5:24:65:7d:a3:ef:cb:c8:
46:ef:83:3d:cd:1f:8b:c2:fd:2f:bf:e0:61:3f:57:e0:14:b9:
9a:34:82:40:f0:f4:4e:b0:d9:b9:a7:cf:ea:f2:fd:9e:35:be:
a8:e3:eb:c7:54:cb:a3:b8:f4:2e:4a:65:4a:c0:a3:fe:7b:6f:
8a:c0:8e:62:1c:90:35:e1:1e:42:a5:97:01:17:47:24:d5:8a:
fc:3e:6a:08:72:fb:9f:5f:38:1b:bc:cc:0a:7b:26:66:84:f3:
0a:bb:a9:cd:8a:31:d2:a2:49:d2:f5:ad:b4:71:54:b9:27:1b:
fc:be:a7:89:d5:51:ce:ca:8f:7a:b5:63:a2:66:67:a5:d5:a4:
55:a4:55:f1:b6:ca:b9:95:56:0b:e6:d2:c5:dc:0d:9c:86:6c:
1a:52:21:b8:61:67:0b:dd:99:85:75:59:84:b0:a8:3d:0b:1e:
b5:33:00:d5:15:8c:cf:5c:36:d9:fc:f3:4c:b0:fe:b1:a3:ce:
90:c0:ca:56:af:83:db:2a:66:5f:05:ad:ad:3c:c0:ed:b9:09:
eb:d5:fd:b4:93:bc:d0:cf:e3:d0:72:07:8f:40:73:20:18:ca:
0f:8a:7f:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 00:07:51 2025 by rpki-client