Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer
File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer (raw, json)
Hash identifier: bEn5zdFdn0EI1MGGdOl52EAEHMKs/jUrYFw2QVZK7Jw=
Subject key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23
Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4
Certificate serial: 4029DD3C366AAF7C688D45522C13C5D761906D85
Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Manifest: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
caRepository: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 27 Feb 2025 11:17:49 +0000
Certificate not after: Thu 26 Feb 2026 11:22:49 +0000
Subordinate resources: IP: 157.20.126.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:29:dd:3c:36:6a:af:7c:68:8d:45:52:2c:13:c5:d7:61:90:6d:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 27 11:17:49 2025 GMT
Not After : Feb 26 11:22:49 2026 GMT
Subject: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f0:6e:04:5b:27:85:92:6c:19:26:28:a7:e8:
3b:3c:6e:1b:48:a0:ce:52:86:ab:11:d2:bd:6d:28:
e9:55:52:df:b6:4f:b6:e6:cb:65:73:37:83:40:38:
be:54:48:28:81:f2:3f:cc:eb:51:7f:4a:81:e3:28:
68:0c:74:b6:c1:64:c6:27:36:b5:49:9f:1b:40:c8:
84:64:d9:6c:a5:da:26:96:67:80:e7:cb:0f:6c:4c:
73:de:c0:d0:de:e9:ca:93:5a:32:93:e8:28:50:de:
92:0b:20:08:10:8c:72:f1:0c:39:d8:7f:f7:90:a8:
34:24:bc:ac:72:1a:99:46:aa:bf:03:d1:da:60:e4:
59:80:43:25:d7:c9:6a:bb:8f:a3:36:72:51:cd:1f:
54:91:ab:a3:b5:c1:f6:26:cb:8d:2a:cf:ef:bf:4e:
a4:b2:cc:2d:c7:44:27:f8:08:a6:45:7c:6c:58:ae:
79:09:02:9a:ea:c2:0d:63:e3:81:57:61:fb:af:34:
8b:3d:80:7b:e1:11:ad:44:b3:75:61:b8:d2:45:33:
81:3b:59:d0:ff:97:f6:75:9f:6d:76:ef:34:75:1b:
8d:ce:f1:d6:b3:d7:bf:20:85:b4:54:73:b5:51:85:
85:90:dc:27:63:fb:62:55:6d:b9:1e:ca:e9:2c:e9:
1c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23
X509v3 Authority Key Identifier:
keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.126.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:f1:a0:ae:b6:1e:77:01:17:07:46:31:ee:51:18:d8:72:ce:
f1:c4:7d:94:72:97:80:29:5f:bb:36:28:77:ad:b8:85:68:62:
01:78:59:e3:0f:57:ed:8d:4c:00:76:56:ac:1e:75:b7:25:5d:
e5:6e:1f:9c:3d:93:db:ae:34:28:b4:70:27:03:06:69:34:2c:
55:1d:95:41:91:36:21:2e:86:5e:9e:5d:3e:bc:ed:f7:2e:66:
d3:2a:40:3e:56:73:85:27:13:79:fd:13:9e:01:e9:dc:a5:12:
c5:09:d1:f8:77:87:68:f7:e4:c4:f4:94:63:98:dd:74:c3:84:
f0:a9:ee:af:6c:c5:1b:1f:e5:53:9c:31:69:46:80:09:12:3a:
f9:5b:2f:38:7c:45:e8:6b:e0:65:aa:f5:08:b8:03:fe:5b:df:
d3:03:3b:c3:45:82:0e:99:15:5e:0f:cd:2e:b8:92:27:85:43:
8f:b7:b0:df:74:91:a2:94:1d:c9:fd:86:95:d5:b3:43:34:dc:
52:2b:75:19:70:6f:b6:ae:53:2f:1e:c0:0a:51:3a:75:ad:1e:
54:d7:aa:cb:05:28:cb:a9:97:76:df:a8:cf:52:a6:b1:0f:5d:
32:61:0d:40:7f:68:4e:e0:4f:71:22:3e:42:7d:66:65:d9:74:
7f:88:e9:10
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUQCndPDZqr3xojUVSLBPF12GQbYUwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2
NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDIyNzExMTc0OVoX
DTI2MDIyNjExMjI0OVowMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBD
RkQxQzYxNjIyQkE1RUEyRTYyMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJ3wbgRbJ4WSbBkmKKfoOzxuG0igzlKGqxHSvW0o6VVS37ZPtubLZXM3g0A4
vlRIKIHyP8zrUX9KgeMoaAx0tsFkxic2tUmfG0DIhGTZbKXaJpZngOfLD2xMc97A
0N7pypNaMpPoKFDekgsgCBCMcvEMOdh/95CoNCS8rHIamUaqvwPR2mDkWYBDJdfJ
aruPozZyUc0fVJGro7XB9ibLjSrP779OpLLMLcdEJ/gIpkV8bFiueQkCmurCDWPj
gVdh+680iz2Ae+ERrUSzdWG40kUzgTtZ0P+X9nWfbXbvNHUbjc7x1rPXvyCFtFRz
tVGFhZDcJ2P7YlVtuR7K6SzpHKUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFP18WkSjyq980UDP0cYWIrpeouYjMB8GA1UdIwQYMBaAFGD4
vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g
XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x
LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G
CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l
dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ
aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw
ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw
by9hMGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMDCBgAYIKwYB
BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwZjc4YmQ0
LWMxOWItNGQ0MC1hYTU0LWVkOGQ3YmM3NzJjYS8wL0ZEN0M1QTQ0QTNDQUFGN0NE
MTQwQ0ZEMUM2MTYyMkJBNUVBMkU2MjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov
L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAGdFH4wDQYJKoZIhvcNAQELBQADggEBAC/xoK62HncBFwdGMe5RGNhyzvHEfZRy
l4ApX7s2KHetuIVoYgF4WeMPV+2NTAB2VqwedbclXeVuH5w9k9uuNCi0cCcDBmk0
LFUdlUGRNiEuhl6eXT687fcuZtMqQD5Wc4UnE3n9E54B6dylEsUJ0fh3h2j35MT0
lGOY3XTDhPCp7q9sxRsf5VOcMWlGgAkSOvlbLzh8Rehr4GWq9Qi4A/5b39MDO8NF
gg6ZFV4PzS64kieFQ4+3sN90kaKUHcn9hpXVs0M03FIrdRlwb7auUy8ewApROnWt
HlTXqssFKMupl3bfqM9SprEPXTJhDUB/aE7gT3EiPkJ9ZmXZdH+I6RA=
-----END CERTIFICATE-----
Generated at Mon Apr 7 03:44:06 2025 by rpki-client