Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer
File: 2AA6E65B86E4423AEC7D02D85B43BA008012D29D.cer (raw, json)
Hash identifier: G1zLcdox7NFtAyAxLb1WDvcAoAtdOuT+2ZsETWKTLU8=
Subject key identifier: 2A:A6:E6:5B:86:E4:42:3A:EC:7D:02:D8:5B:43:BA:00:80:12:D2:9D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 2A28CAEF176AA1141150218BD1D220F53949E78F
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.mft
caRepository: rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 05 Dec 2024 00:48:52 +0000
Certificate not after: Thu 04 Dec 2025 00:53:52 +0000
Subordinate resources: IP: 103.129.48.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:28:ca:ef:17:6a:a1:14:11:50:21:8b:d1:d2:20:f5:39:49:e7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 5 00:48:52 2024 GMT
Not After : Dec 4 00:53:52 2025 GMT
Subject: CN=2AA6E65B86E4423AEC7D02D85B43BA008012D29D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:10:33:1b:f3:95:e6:b4:2c:66:1a:87:98:c5:
bf:91:b6:a3:c5:6e:a1:fb:87:57:bd:67:1f:c8:71:
fd:9b:87:42:b8:ac:0a:67:a3:bc:2d:3d:3c:b7:70:
2e:53:a3:12:7b:fa:5a:31:26:1b:73:f6:f5:b2:0d:
e3:f2:34:a1:ab:e1:0b:cb:bc:c2:56:ef:bf:e1:eb:
8c:5e:06:ac:3c:bc:97:fa:d5:9a:11:07:24:f0:88:
8c:f4:d8:2c:ec:b3:64:0e:7c:4d:94:55:55:1c:cc:
ed:12:48:21:34:ac:3c:f1:69:52:20:c6:41:66:8a:
43:5d:26:aa:22:26:be:7b:75:7e:aa:5c:92:d8:f7:
f0:e9:33:ee:8d:66:6e:99:3c:6f:7e:4c:ea:7f:6c:
db:47:99:5c:26:89:a3:27:68:5a:63:0d:e1:48:d9:
68:64:f6:47:44:7b:19:0d:ff:da:58:3d:d8:9b:5c:
dc:1b:74:74:de:c4:5a:fe:ff:35:94:7f:7a:9b:cb:
ca:11:e8:0a:be:f0:99:9d:6e:68:8d:be:10:40:40:
c9:9e:86:79:be:64:04:f9:11:d1:56:2d:e2:dc:70:
80:69:d7:58:eb:5c:92:05:5b:fa:51:db:63:98:ba:
c7:aa:e0:93:57:48:1c:bd:aa:dd:41:b0:eb:b5:55:
5f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
2A:A6:E6:5B:86:E4:42:3A:EC:7D:02:D8:5B:43:BA:00:80:12:D2:9D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7e6bff9d-fb13-47b9-9cc0-dd6a0730a1c6/0/2AA6E65B86E4423AEC7D02D85B43BA008012D29D.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.129.48.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:5c:9a:7c:94:c4:10:a5:04:1c:7d:be:83:3e:cc:21:1f:a4:
6f:38:fe:5e:de:cf:4a:15:63:49:ed:5c:46:f4:77:a1:b2:1d:
fd:b9:2d:a5:22:44:36:52:f1:c7:f2:23:96:5b:32:79:f3:c4:
59:07:d8:0f:fa:54:77:1a:4d:3b:09:af:07:f0:60:23:d0:ba:
61:6c:7b:05:a6:6c:7b:90:da:02:73:72:1f:3d:45:15:21:f7:
f7:25:a9:8e:25:35:34:c8:13:7a:fb:82:06:9f:bd:eb:8d:29:
0e:2e:26:41:29:fd:6e:ff:bd:33:21:34:7c:c8:ea:e0:83:c7:
2b:b1:84:f2:f9:90:76:b5:f0:00:7c:9e:05:38:e5:16:41:3e:
18:f3:75:89:bd:bb:65:38:40:2e:15:09:5f:12:50:cc:fb:a0:
e3:0a:57:4e:35:16:22:76:4f:bb:95:09:ed:ea:2b:0b:3b:ba:
67:e4:60:37:f3:0e:c8:98:df:28:6d:01:8c:77:f0:90:a7:21:
7f:cd:b5:10:7b:d4:01:d1:50:a2:d1:64:99:2f:23:e2:b1:6b:
6e:7d:28:a4:61:d2:da:26:5c:3c:6e:86:67:3c:50:ea:34:dc:
40:1a:96:ef:64:4a:c8:4f:05:c1:6b:81:3a:29:f5:1e:cb:3e:
a0:e3:b2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:28:52 2025 by rpki-client