Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer
File: 3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer (raw, json)
Hash identifier: SIkYoAmZYgvuvgPOTB3T89/sYhR14n5Vy1m6UtUwckI=
Subject key identifier: 3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6D4F69BACB58C4001F750C42368C47D780C9A4FC
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft
caRepository: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Mon 30 Dec 2024 18:22:09 +0000
Certificate not after: Mon 29 Dec 2025 18:27:09 +0000
Subordinate resources: IP: 103.184.122.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:4f:69:ba:cb:58:c4:00:1f:75:0c:42:36:8c:47:d7:80:c9:a4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 30 18:22:09 2024 GMT
Not After : Dec 29 18:27:09 2025 GMT
Subject: CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:30:77:3b:af:71:d3:6f:cd:23:ac:25:51:
04:9d:ed:d9:2a:aa:84:57:e0:98:bb:3d:ab:b7:a9:
73:34:30:0b:30:60:e0:e6:5b:30:80:25:35:0a:15:
ed:ee:e3:13:6b:41:cf:35:ac:63:34:40:b5:e4:cb:
38:f2:24:a8:71:64:05:69:60:c5:79:47:03:46:b6:
d4:fb:03:43:86:de:b4:16:b5:0f:a3:bf:ef:d1:58:
f4:a2:0c:69:d3:67:f2:d5:ba:c7:1d:91:97:4c:64:
bb:e3:a3:82:d5:47:d9:5c:12:b4:fa:67:16:8b:d1:
06:cb:d2:90:8a:b2:b2:31:00:9a:9c:3b:54:3d:ca:
6b:91:c4:12:ed:53:2a:4e:c8:0a:0a:8c:a3:e8:47:
ff:7d:55:9f:a9:b8:da:17:c5:d2:81:f6:47:e9:cd:
d1:34:05:3e:6a:b6:ab:22:f1:f5:fc:52:c0:e6:7e:
4e:af:77:bc:42:53:e8:81:d0:51:a2:f5:da:8f:57:
a3:b4:6c:3c:42:42:4d:7b:a4:ce:35:e5:07:b3:06:
40:92:4c:d9:80:6d:2b:63:bd:f8:05:09:e3:2e:6c:
a2:83:5d:c9:63:12:cc:b4:ee:2b:98:7d:3a:b1:aa:
67:f6:3b:71:e2:58:9b:16:79:cd:1a:19:6e:56:5d:
28:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.184.122.0/23
Signature Algorithm: sha256WithRSAEncryption
58:d4:d0:28:07:5d:5d:ed:a6:70:9b:f6:d6:06:95:21:9a:74:
79:6f:53:49:08:06:39:35:f8:67:82:62:d5:f0:e6:98:0b:29:
e6:04:ec:b0:19:62:a5:69:7b:c6:4a:08:d2:b3:a9:b7:84:d9:
c9:94:a8:9d:78:ef:8e:eb:6b:aa:61:c4:dd:1e:63:f0:8e:85:
9d:52:0e:60:ad:1f:80:74:c2:79:a8:b3:6c:6a:3d:5b:99:d5:
4e:aa:ae:05:7b:c9:b8:9c:85:c5:ce:74:cf:81:74:ff:0a:b8:
fb:49:f1:1b:89:b4:23:80:b3:bb:f3:1e:f4:4b:ad:6b:25:08:
c3:f9:b8:30:23:98:d1:ec:f4:29:86:23:06:4e:88:d1:d9:dc:
cf:93:8b:ec:74:6b:d2:d9:a8:c2:86:a6:b5:60:2d:4f:63:21:
a9:c7:0b:10:20:a5:d0:c2:af:31:c9:f3:3e:0b:20:ca:b3:6b:
90:ab:a5:0f:ea:2a:30:cd:8f:c0:96:3d:ab:e1:07:1c:d0:d0:
05:6b:8c:b1:4b:59:c2:54:52:bc:b8:3d:4a:36:99:6e:60:27:
38:84:07:31:95:66:1c:34:1b:40:06:3f:a3:05:ea:93:d6:6d:
1a:17:e3:a8:5c:b1:03:e1:b2:63:c1:cd:20:0e:31:9a:d6:f8:
3c:a3:cb:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:57:18 2025 by rpki-client