Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer (raw, json)
Hash identifier: EnbomUJnRamgJ9LdvbbjfKoqt5oYksTBimxLsdj+9q8=
Subject key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 574D4D5D9A41CA24F39BD5ADE75E8376406356C7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft
caRepository: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 09 Jan 2025 23:49:50 +0000
Certificate not after: Thu 08 Jan 2026 23:54:50 +0000
Subordinate resources: IP: 27.124.80.0/20
IP: 103.25.108.0/22
IP: 119.47.88.0/22
IP: 119.47.95.0/24
IP: 124.109.20.0/22
IP: 2402:d680::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:4d:4d:5d:9a:41:ca:24:f3:9b:d5:ad:e7:5e:83:76:40:63:56:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 9 23:49:50 2025 GMT
Not After : Jan 8 23:54:50 2026 GMT
Subject: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:5a:e8:a1:6e:6a:ce:95:9d:b9:2a:1c:03:cd:
99:98:96:8a:84:82:5a:38:84:49:68:04:bf:f5:fe:
c5:c5:98:11:ff:f3:9c:a9:4b:8e:92:7d:93:b3:a7:
85:7a:ad:16:d5:c2:14:97:a4:14:f6:7f:08:c5:05:
24:b2:72:1a:4c:1d:a2:7d:2c:09:27:91:e0:12:cb:
c2:73:97:28:48:cf:02:78:d1:f4:d2:1a:01:ae:fd:
9e:3e:63:af:56:d7:4c:30:fc:ba:aa:5a:39:29:b8:
53:7d:60:48:ce:7e:de:cf:31:42:56:94:33:49:2c:
69:72:8b:e8:8b:7f:d9:ac:2d:02:97:98:5d:be:e4:
e6:4a:ca:0c:b6:bd:a9:c0:a6:4d:98:66:4e:d4:c6:
99:63:2b:57:72:d2:8f:11:e0:5d:79:da:c1:df:30:
36:00:45:22:c5:16:41:49:70:ac:0b:ee:61:3e:c9:
2e:01:67:75:43:4d:5d:b2:27:3b:22:b8:bc:f3:85:
c4:fd:80:21:15:07:14:0d:2c:0c:6e:0c:9b:98:d5:
2e:7d:af:ab:0c:a3:59:9c:32:72:1d:77:8c:69:2d:
d2:be:a8:e8:5e:0b:30:4a:55:86:f8:2e:14:1d:a1:
10:4d:72:45:b5:23:6e:2e:e9:c6:af:06:7a:fa:68:
18:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.80.0/20
103.25.108.0/22
119.47.88.0/22
119.47.95.0/24
124.109.20.0/22
IPv6:
2402:d680::/32
Signature Algorithm: sha256WithRSAEncryption
90:c0:68:31:f6:f2:d3:cf:40:93:cf:a5:1e:fa:83:2c:12:8f:
65:9d:98:48:ae:b1:17:42:e5:86:37:3a:6c:82:fd:13:a0:b0:
1d:13:89:b1:d2:b3:1e:eb:b9:87:9a:f8:95:0d:09:a2:49:74:
4d:02:3f:ea:82:47:6c:aa:54:d1:09:28:34:b0:ff:a6:8b:39:
ea:a6:b1:2d:78:00:46:a2:ec:f3:96:d4:17:ca:14:74:59:48:
14:cf:81:51:74:a5:18:05:65:c2:33:01:92:a0:3d:a9:51:99:
89:ac:48:23:9e:f5:cf:c8:df:db:b1:08:69:a1:11:15:95:55:
1a:bf:61:1d:f4:a2:49:5a:4f:bd:bd:c6:8e:40:ac:9d:3d:23:
16:2b:15:f7:0b:c2:93:ea:74:ba:4d:33:81:5d:4b:02:9a:6c:
13:f7:e2:42:bd:a6:8f:e7:61:32:1d:6a:55:4a:2e:c0:08:a8:
49:94:bc:1e:ff:5e:85:84:e5:d8:27:3f:82:74:c7:b9:43:7e:
c9:64:56:91:d5:78:a2:32:7d:e5:45:8b:2a:22:45:c8:b5:64:
b1:1d:f6:77:3a:74:db:db:da:8a:25:5b:6b:a3:1b:1c:d7:8c:
55:5b:57:b8:fd:b4:a3:bf:df:0a:45:eb:3e:58:ac:cb:1f:af:
da:3b:13:24
-----BEGIN CERTIFICATE-----
MIIF7DCCBNSgAwIBAgIUV01NXZpByiTzm9Wt516DdkBjVscwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwOTIzNDk1MFoX
DTI2MDEwODIzNTQ1MFowMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZG
M0QzODhFQ0VENTBDRjlBNjQ3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAN9a6KFuas6VnbkqHAPNmZiWioSCWjiESWgEv/X+xcWYEf/znKlLjpJ9k7On
hXqtFtXCFJekFPZ/CMUFJLJyGkwdon0sCSeR4BLLwnOXKEjPAnjR9NIaAa79nj5j
r1bXTDD8uqpaOSm4U31gSM5+3s8xQlaUM0ksaXKL6It/2awtApeYXb7k5krKDLa9
qcCmTZhmTtTGmWMrV3LSjxHgXXnawd8wNgBFIsUWQUlwrAvuYT7JLgFndUNNXbIn
OyK4vPOFxP2AIRUHFA0sDG4Mm5jVLn2vqwyjWZwych13jGkt0r6o6F4LMEpVhvgu
FB2hEE1yRbUjbi7pxq8GevpoGMUCAwEAAaOCAt8wggLbMA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFCKOdSu/uMFrO0bz04js7VDPmmRzMB8GA1UdIwQYMBaAFLqP
d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g
XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y
L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G
CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l
dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv
OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw
ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw
by8zMTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMDCBgAYIKwYB
BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMxN2VmZDJh
LTAyYWItNDIwMi05NzBmLWY2OTlkZmY5N2RlNS8wLzIyOEU3NTJCQkZCOEMxNkIz
QjQ2RjNEMzg4RUNFRDUwQ0Y5QTY0NzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov
L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4D
BAQbfFADBAJnGWwDBAJ3L1gDBAB3L18DBAJ8bRQwDQQCAAIwBwMFACQC1oAwDQYJ
KoZIhvcNAQELBQADggEBAJDAaDH28tPPQJPPpR76gywSj2WdmEiusRdC5YY3OmyC
/ROgsB0TibHSsx7ruYea+JUNCaJJdE0CP+qCR2yqVNEJKDSw/6aLOeqmsS14AEai
7POW1BfKFHRZSBTPgVF0pRgFZcIzAZKgPalRmYmsSCOe9c/I39uxCGmhERWVVRq/
YR30oklaT729xo5ArJ09IxYrFfcLwpPqdLpNM4FdSwKabBP34kK9po/nYTIdalVK
LsAIqEmUvB7/XoWE5dgnP4J0x7lDfslkVpHVeKIyfeVFiyoiRci1ZLEd9nc6dNvb
2oolW2ujGxzXjFVbV7j9tKO/3wpF6z5YrMsfr9o7EyQ=
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:25:28 2025 by rpki-client