Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer
File: 71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer (raw, json)
Hash identifier: BExA2hazHKO5eMRXa+7lenqS3tSCfznClk1k0QccBHU=
Subject key identifier: 71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3005404A47F8BC90AA931144B3C133E96C95D95D
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.mft
caRepository: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Fri 14 Feb 2025 07:01:01 +0000
Certificate not after: Fri 13 Feb 2026 07:06:01 +0000
Subordinate resources: IP: 103.107.187.0/24
IP: 2001:df3:e900::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:05:40:4a:47:f8:bc:90:aa:93:11:44:b3:c1:33:e9:6c:95:d9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 14 07:01:01 2025 GMT
Not After : Feb 13 07:06:01 2026 GMT
Subject: CN=71E51A9B65D8A123513A350F0D99F98D6C9B72E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c3:f9:22:04:15:11:32:6e:d5:0b:05:f4:b3:
b8:7d:21:c8:64:13:d9:ee:9b:e4:28:08:e9:9c:5b:
67:2a:97:d1:1b:05:d7:8e:e6:cb:4c:ee:03:d2:63:
2e:ce:a9:74:2a:a9:b3:ed:ee:cd:79:7e:24:86:82:
14:96:a4:cf:93:8a:ce:26:fc:eb:fd:3c:b9:57:a8:
67:ca:1f:9c:f3:d8:62:0e:51:06:b4:67:be:77:c3:
f7:77:c9:9e:9d:41:c6:d8:5b:f2:16:b7:19:ea:6a:
fc:2c:16:f1:a3:ba:54:65:95:ed:37:66:a5:fd:2f:
7e:7e:44:7c:1e:03:be:bd:07:df:6b:b3:81:a6:26:
86:e7:ea:ee:ca:57:c5:f3:42:ce:84:50:52:63:63:
08:13:f0:55:f5:02:5c:94:6e:0e:8c:6a:54:28:80:
a7:86:c8:bc:15:23:dd:ec:2e:4e:d2:63:67:db:68:
12:36:fc:42:e7:3a:74:0d:2b:cf:b8:bb:4e:da:bb:
50:e4:00:da:44:bd:61:3d:84:f3:f5:41:19:69:e5:
83:d9:68:8d:94:d4:51:9b:b2:ae:ac:f5:53:82:dd:
5b:6c:8e:d8:0b:b2:a2:97:1f:db:36:16:98:20:02:
57:66:c3:7c:a5:48:5f:a1:5f:26:13:be:9d:c4:c7:
24:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.107.187.0/24
IPv6:
2001:df3:e900::/48
Signature Algorithm: sha256WithRSAEncryption
1d:90:c7:f2:52:25:6d:ce:b1:17:32:f1:0b:98:00:e9:2e:7f:
dd:18:b4:09:8f:b7:30:aa:64:0a:e7:03:5b:fd:21:a4:a0:d6:
2d:cc:ab:1d:1c:6e:3e:2c:fd:d2:a9:fa:60:63:19:1e:3c:f7:
82:85:a5:1a:d4:25:80:af:58:84:31:ff:23:05:0f:1f:3e:2c:
6f:5d:0a:f3:cb:b2:88:8f:56:cb:ed:97:b7:5b:eb:a0:ac:99:
bf:d2:6c:f1:25:46:8e:47:bd:f4:de:06:4c:ae:a5:7d:9d:c2:
35:ce:b6:14:56:ef:9d:90:9b:e5:c8:e8:6b:6f:5e:23:ba:f2:
ca:b0:4f:ac:ba:cc:69:6b:38:e9:d0:8c:d5:fc:c5:71:4c:61:
7d:e3:22:aa:59:1d:75:09:d4:fb:97:52:86:a6:e5:73:07:4a:
74:1d:32:6f:be:87:a4:a9:7e:39:4d:d2:f8:22:6f:74:0a:da:
a4:9c:7d:f8:4a:c0:48:26:69:46:89:14:3b:f3:e0:a7:28:17:
e5:4b:bd:0f:e2:12:cc:c7:52:fd:af:23:9a:ab:cd:28:43:c6:
eb:8c:7b:52:0d:25:7f:af:ff:40:af:8a:f8:b7:7f:51:75:8d:
b7:2a:6f:05:d8:f4:de:b5:60:da:6d:f8:30:ee:92:d9:2f:f8:
8a:91:94:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:51:30 2025 by rpki-client