Certificate

$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/361B6D7E16A02B7316B6F91ED34B22A907EE866B.cer
File:                     361B6D7E16A02B7316B6F91ED34B22A907EE866B.cer (raw, json)
Hash identifier:          93/+aHBXORtvB2S0bHLsy3HJPOwnrlGBtbc9/rNWpkc=
Subject key identifier:   36:1B:6D:7E:16:A0:2B:73:16:B6:F9:1E:D3:4B:22:A9:07:EE:86:6B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer:       /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial:       7FCB95416C8D37496793021CC8FA90057AB4C2B2
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest:                 rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/361B6D7E16A02B7316B6F91ED34B22A907EE866B.mft
caRepository:             rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/
Notify URL:               https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before:   Sat 21 Dec 2024 02:54:35 +0000
Certificate not after:    Sat 20 Dec 2025 02:59:35 +0000
Subordinate resources:    IP: 103.13.234.0/23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7f:cb:95:41:6c:8d:37:49:67:93:02:1c:c8:fa:90:05:7a:b4:c2:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862140000
        Validity
            Not Before: Dec 21 02:54:35 2024 GMT
            Not After : Dec 20 02:59:35 2025 GMT
        Subject: CN=361B6D7E16A02B7316B6F91ED34B22A907EE866B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:9a:61:d4:d1:7a:e0:b2:ae:00:d7:43:b2:76:
                    00:69:1a:6d:72:4c:6d:7d:99:8f:b3:b1:2a:8b:ac:
                    57:bd:5c:8d:7b:dc:9c:cf:5e:b0:4f:5a:92:9d:12:
                    14:9e:a2:ea:66:dc:af:7a:e2:69:a2:cb:13:2b:2a:
                    37:eb:17:bc:cc:6d:2e:be:ab:0c:39:15:97:9b:e6:
                    9e:6b:7d:f9:2a:55:63:a0:ef:5f:23:9f:d6:31:9e:
                    17:a6:9e:bd:53:02:2a:56:be:49:db:63:fe:7c:a9:
                    bc:9c:07:d6:36:38:f9:48:5f:1d:32:57:9b:7d:41:
                    c3:54:9f:e5:42:50:b7:61:ce:0c:df:4e:e4:13:ce:
                    1a:ed:09:ad:d7:09:2d:1d:6a:c6:51:4a:df:15:af:
                    1d:62:eb:d3:50:83:4d:5a:ef:3e:f4:0e:71:7d:3d:
                    a4:7d:8a:ff:af:ee:47:5c:61:61:bd:7f:d7:98:c5:
                    91:97:ec:8e:17:5a:83:6d:28:5b:5b:cc:bf:16:8f:
                    31:11:4a:b5:b5:2d:99:26:db:ab:50:a5:19:86:30:
                    07:92:46:91:3a:47:e4:7e:ea:94:12:ca:e3:09:3a:
                    cd:b6:eb:fc:f0:f0:e8:00:91:4c:6d:79:8e:ce:c0:
                    1c:5e:94:6f:da:21:e0:3b:d1:af:ad:6d:da:55:55:
                    d1:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Subject Key Identifier:
                36:1B:6D:7E:16:A0:2B:73:16:B6:F9:1E:D3:4B:22:A9:07:EE:86:6B
            X509v3 Authority Key Identifier:
                keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer

            Subject Information Access:
                CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0
                RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/361B6D7E16A02B7316B6F91ED34B22A907EE866B.mft
                RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.13.234.0/23

    Signature Algorithm: sha256WithRSAEncryption
         3a:f7:92:89:c3:e0:a2:e9:ab:46:b1:48:a5:65:03:2d:34:d3:
         e8:62:d1:95:4a:37:ec:b7:63:c3:88:29:1a:46:42:62:8b:bc:
         23:7c:60:86:d0:50:cc:b0:dd:0c:d7:6b:1a:ae:ca:9f:6f:93:
         50:52:3b:6d:5c:26:bc:43:ee:da:02:47:bd:53:3d:d1:4d:29:
         0a:05:76:c3:54:3a:5d:db:9d:98:5b:d3:aa:e1:ed:61:78:23:
         32:b1:02:af:94:af:60:2f:77:c7:ff:ce:11:64:35:ab:7f:60:
         3b:de:d0:54:b0:70:e6:da:d7:d9:12:1d:7d:5f:14:d6:b2:ca:
         e2:9d:e4:a7:ee:be:34:83:1a:28:10:84:bd:f5:41:5b:34:51:
         6b:7f:cf:fc:59:d1:a1:cb:9e:64:aa:ab:bb:47:68:e3:50:2d:
         77:ab:c6:44:e8:9d:25:88:d8:98:a1:54:83:4d:cd:5f:8b:e7:
         2f:77:0b:16:1a:8e:c7:81:bb:c7:f5:5f:e8:d0:78:0f:88:67:
         61:45:80:48:cc:d9:d5:86:5d:d2:af:46:83:c3:da:13:79:c5:
         56:07:8f:63:d1:3f:37:b3:a5:71:2e:72:7e:51:1c:1a:2f:c6:
         ec:46:e0:9e:ce:33:b4:7d:00:21:27:81:e8:a1:6e:d7:39:73:
         e1:56:6a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----