Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.cer
File: F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.cer (raw, json)
Hash identifier: tC6x1A/6zuBlNJ4csvfKfhsY0yaL8bupd5XL4vz06oU=
Subject key identifier: F8:FA:AE:F9:7E:D3:DB:A7:D2:72:43:70:7C:7C:0D:16:05:89:6B:AF
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 2C61F04F1CF405F70B391E28B9EE8CCFBBC42B5E
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.mft
caRepository: rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Tue 04 Mar 2025 15:04:15 +0000
Certificate not after: Tue 03 Mar 2026 15:09:15 +0000
Subordinate resources: IP: 157.20.130.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:61:f0:4f:1c:f4:05:f7:0b:39:1e:28:b9:ee:8c:cf:bb:c4:2b:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 4 15:04:15 2025 GMT
Not After : Mar 3 15:09:15 2026 GMT
Subject: CN=F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7c:fe:7f:92:e8:9e:ff:c8:cb:71:6a:55:03:
72:db:15:99:e0:72:a0:99:22:08:76:34:d9:25:62:
f6:22:fb:4b:08:72:e0:53:99:75:e0:c4:a8:dd:e2:
e3:75:1d:24:9b:12:d4:57:9e:00:e5:a2:45:63:44:
18:bd:ec:f7:33:d5:92:f3:8a:da:96:5c:47:49:20:
d2:2d:97:f0:b7:ae:b8:45:3f:0e:6d:15:fc:23:3f:
7e:38:8f:24:19:8c:09:50:ee:50:4e:f7:e1:c0:db:
67:99:a5:25:dc:5f:32:2e:79:22:75:3e:b4:33:36:
13:65:9a:b7:ae:08:bd:5a:ed:0c:10:4d:45:15:c2:
b2:35:9f:54:5b:67:2a:4a:d9:a7:53:92:38:b3:25:
7c:67:27:93:4f:26:36:05:36:7c:f2:13:e8:d4:04:
af:cf:9b:4b:c1:4f:71:81:fc:7c:40:86:8f:c4:20:
79:f2:ff:94:d2:fb:9f:6b:b2:38:76:eb:b9:6f:78:
b8:bf:f8:a9:55:ba:43:66:2b:77:1c:3e:26:ab:f9:
b4:f3:5b:88:44:64:c5:60:b9:1e:aa:f4:22:16:b3:
25:cd:1b:71:ec:31:8f:67:a0:d8:14:ab:ad:f6:60:
e9:2a:e5:4e:7b:4b:65:48:34:6f:50:cc:94:71:75:
49:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
F8:FA:AE:F9:7E:D3:DB:A7:D2:72:43:70:7C:7C:0D:16:05:89:6B:AF
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c86ff264-ff25-4fe6-86ef-d84b7d288354/0/F8FAAEF97ED3DBA7D27243707C7C0D1605896BAF.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.130.0/23
Signature Algorithm: sha256WithRSAEncryption
35:eb:01:1e:3c:19:41:c7:f5:12:00:9e:f2:85:5e:02:ac:b2:
86:2e:2f:0a:38:9f:fb:b0:47:0d:3f:1d:96:c0:63:ae:ad:28:
80:e7:2f:4a:41:35:f6:b4:34:5a:9f:19:b1:61:e9:77:cc:5e:
8c:c4:f1:35:a7:04:8c:f2:58:4c:49:70:fd:da:ee:6e:7f:ee:
f0:29:65:40:8f:ed:3b:0a:2a:41:de:7b:5a:1b:6c:d4:73:77:
74:d8:ad:28:f4:d9:82:c7:80:50:8d:57:59:b6:d3:29:2f:91:
91:5c:bd:a1:55:0f:b0:35:50:75:91:c1:9e:76:61:b6:9d:9b:
61:0d:dd:7c:2f:bb:c6:58:60:e5:b1:31:21:2c:84:e2:31:e5:
96:7e:e9:7f:77:53:58:08:34:ba:de:1e:ca:a2:08:e3:8a:c8:
9d:3d:1f:d9:1b:27:87:43:9e:93:2a:40:57:23:f8:2d:bb:f9:
67:16:97:ed:2a:4f:63:74:83:46:23:55:a7:0a:ce:73:03:90:
c9:ee:41:1d:c0:8b:69:58:5c:19:c0:29:56:43:b3:30:7c:e2:
87:f0:74:80:57:7d:fd:75:c6:87:08:39:50:ab:a8:4e:5f:d6:
5f:97:f0:e6:1e:ad:f4:11:f9:54:f1:f9:a6:f9:a0:06:8c:f5:
6f:1d:91:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:48:32 2025 by rpki-client