Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer
File: 1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer (raw, json)
Hash identifier: FV0EEFbNpgSUjfkX7Yeiy4zuSHZU1JKrBWGdgruXC9U=
Subject key identifier: 1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 1913A1BFEAB46A9CDC7EB31FA67F2878D7476D00
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.mft
caRepository: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 06 Mar 2025 21:11:36 +0000
Certificate not after: Thu 05 Mar 2026 21:16:36 +0000
Subordinate resources: IP: 103.216.106.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:13:a1:bf:ea:b4:6a:9c:dc:7e:b3:1f:a6:7f:28:78:d7:47:6d:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Mar 6 21:11:36 2025 GMT
Not After : Mar 5 21:16:36 2026 GMT
Subject: CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:71:6b:22:12:b2:8d:b2:e3:a4:0c:93:5b:bf:
0c:78:10:b4:db:22:46:5d:27:6e:43:2b:bd:ed:0a:
ea:c1:75:6d:3b:ab:87:43:92:a3:14:83:78:4c:65:
6c:72:00:eb:fa:04:37:c9:8e:36:45:4d:d0:0b:4c:
f4:f7:21:01:bd:a5:38:69:e8:9a:e2:28:a5:81:5e:
04:fa:15:17:c4:2c:bf:2f:26:48:93:d0:03:40:5b:
ba:f0:ca:98:c6:cd:24:7f:65:b2:b7:58:6f:d3:47:
db:26:9a:aa:ea:e7:83:bb:54:80:4a:d7:f3:bf:d1:
84:52:c7:5c:a3:6b:64:53:be:12:59:96:21:6e:ad:
b6:11:f7:c6:e0:0d:be:b5:56:c8:14:fb:fc:41:26:
50:79:a9:57:d7:92:1f:c9:ea:2b:79:84:77:55:df:
a7:a1:8a:4d:9a:90:1b:c2:e4:6c:e7:b9:78:66:e3:
06:f9:9e:43:c6:ae:53:ca:58:2b:4a:1f:4e:27:71:
7d:75:62:f0:ca:8f:37:d1:01:64:24:9c:4e:6d:e5:
69:b5:3a:0a:f2:0f:78:dd:32:e6:f3:48:96:1d:bf:
b0:37:e5:c7:f0:05:02:92:39:19:0b:f4:a9:1b:fd:
7f:0a:18:45:b4:9e:8e:1f:5a:f2:0d:fd:e7:c2:20:
a0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.216.106.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:16:6e:b7:6a:49:cb:80:7c:22:06:73:21:ef:42:74:b4:5d:
75:23:c2:25:1c:c6:69:d5:2a:89:82:18:14:ab:7e:b9:97:45:
fa:95:3d:da:e1:9f:f5:a3:d5:ab:80:26:b4:ca:38:a1:1a:54:
1d:bd:de:a4:68:e7:fb:ac:96:53:d4:68:09:3f:9e:6a:02:7e:
ba:52:63:0e:8c:28:26:88:9d:ef:89:b2:e9:29:3e:8f:60:9d:
22:15:13:76:f0:4c:91:b6:bc:ef:4d:dc:55:eb:45:4f:58:80:
37:39:ca:2f:df:e3:cf:f3:73:ba:0a:84:78:e1:b4:87:5d:c8:
dd:b2:e3:2a:7d:d2:5a:f4:47:13:3d:da:d0:f5:f4:b1:e6:3d:
2e:a7:39:da:cf:a2:3b:63:63:55:d9:41:7c:60:48:eb:24:35:
35:73:66:c4:1d:7b:84:7d:59:a8:37:9d:30:cb:df:de:c8:4f:
c6:01:7e:cc:4b:e3:00:03:23:07:4f:68:b8:31:f0:a9:34:57:
1e:f1:7f:a4:65:81:ba:03:29:26:8a:f9:2a:6a:6c:07:0e:ae:
81:d0:06:1b:4e:04:49:ea:eb:55:26:33:ac:70:0a:ab:0d:09:
52:f3:b8:80:da:b9:a5:e3:96:66:08:16:b6:36:38:86:07:27:
54:86:26:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:34:40 2025 by rpki-client