Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer
File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer (raw, json)
Hash identifier: JUvwqCCCrMa0EBZ/L51KHFt6BMso8xNWTQT5Qr2aS3c=
Subject key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6B3A7F7713A1FE0A1945578200E3295FF0F7AAE7
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft
caRepository: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Wed 12 Feb 2025 20:34:54 +0000
Certificate not after: Wed 11 Feb 2026 20:39:54 +0000
Subordinate resources: IP: 103.130.82.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:3a:7f:77:13:a1:fe:0a:19:45:57:82:00:e3:29:5f:f0:f7:aa:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 12 20:34:54 2025 GMT
Not After : Feb 11 20:39:54 2026 GMT
Subject: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:48:28:f3:83:ef:4e:43:a3:cf:bb:1c:a3:e6:
f6:ce:bb:c5:e0:03:38:98:53:54:de:f5:a5:4f:12:
21:35:83:2c:1a:0b:fc:b1:6c:1c:5b:be:8f:44:a6:
14:b4:4b:a0:41:a7:c6:79:26:13:b5:7b:87:fb:d2:
37:af:89:7f:f7:b8:9c:4a:ba:8d:02:f5:d5:c0:a6:
ad:62:61:1e:a8:8e:b3:db:54:b2:26:f5:82:83:fe:
81:49:3b:29:eb:51:af:44:f5:04:4b:a7:32:c0:52:
4b:9e:3d:95:86:a2:ef:fe:04:16:a2:23:b3:fc:3e:
b9:1c:18:dc:4d:4e:81:fa:db:39:d8:3c:72:64:25:
51:81:13:47:d0:07:bf:4a:d5:94:30:2a:9f:ed:4d:
48:79:4e:6c:29:70:0a:5a:40:95:b9:be:fb:82:4f:
25:83:63:42:f9:fb:9b:55:98:34:04:2e:23:8b:c3:
92:fc:ed:7b:9a:ac:5f:4d:7a:db:79:fb:59:d2:80:
30:76:f3:7e:36:0a:40:18:77:a4:64:12:59:c9:fe:
35:43:a8:6b:bf:72:aa:8c:8e:bd:44:ab:9b:bb:ad:
d0:02:f7:22:15:8f:d4:29:d7:67:eb:df:be:58:92:
00:d0:97:08:d1:2f:dd:f1:fa:f4:e5:0d:68:db:c7:
e7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.130.82.0/23
Signature Algorithm: sha256WithRSAEncryption
76:1b:14:85:f4:21:8b:94:38:22:65:d2:1e:d7:25:05:67:d4:
6d:ee:a2:65:8c:50:12:2a:40:75:97:3e:4f:33:07:a4:01:7a:
ba:25:c9:f7:e1:46:3a:92:cd:7b:32:e4:37:f2:38:c4:1c:af:
51:ae:fb:59:72:0b:ed:97:ba:21:4e:2b:09:c5:3e:77:9b:38:
60:0a:da:d4:76:e8:71:49:ea:83:01:17:e3:2c:39:c9:1c:0c:
3a:79:a2:31:af:e2:0d:3c:3e:8d:48:a5:37:a3:fb:af:b3:28:
b6:81:79:68:ea:0c:e5:3e:fc:c0:76:13:00:6e:f4:5a:b9:a9:
2a:bb:ae:09:1d:b1:4a:1f:ed:9f:82:48:b3:82:dd:1c:d5:6c:
ba:aa:21:a5:81:36:53:6d:cf:a3:13:f3:60:55:42:aa:a7:38:
c5:7f:5a:88:2d:40:6b:44:b5:ca:10:bd:9a:2b:9a:7c:93:35:
e0:fc:53:b1:45:5f:4d:0f:29:cd:b4:a1:19:58:2b:33:4b:43:
76:b5:07:ac:21:6f:4b:26:04:eb:1f:af:04:cd:b5:3f:e5:67:
6a:95:fe:52:cb:99:ff:a3:5c:86:3c:58:70:1e:b3:29:06:74:
93:76:e6:9f:19:93:eb:3a:e6:7f:74:72:01:e0:02:7c:48:9e:
0a:74:da:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:30:33 2025 by rpki-client