Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.cer
File: 8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.cer (raw, json)
Hash identifier: s7NA9xUkabVD8QvbipPf3ZECKPY9Mipp2KWqIy6SM1k=
Subject key identifier: 8D:5A:49:C9:E4:2E:37:1B:FD:1E:67:AC:E1:B3:D5:5E:C1:AB:F7:3F
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5FB3B19D0BD534E2A63ADEC1F17A0E71136038C0
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0/8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.mft
caRepository: rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Wed 25 Sep 2024 07:38:58 +0000
Certificate not after: Wed 24 Sep 2025 07:43:58 +0000
Subordinate resources: IP: 103.216.105.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:b3:b1:9d:0b:d5:34:e2:a6:3a:de:c1:f1:7a:0e:71:13:60:38:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Sep 25 07:38:58 2024 GMT
Not After : Sep 24 07:43:58 2025 GMT
Subject: CN=8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a9:e9:71:74:54:08:cb:03:63:d7:d0:20:30:
dd:28:dc:f0:65:29:ab:7c:cd:e1:9c:75:6b:6c:93:
fa:82:c4:6f:c3:6e:dc:fe:63:f6:f8:6d:76:23:93:
db:4d:44:2e:46:95:a6:d7:a9:aa:ee:73:29:fe:b2:
8b:03:ed:21:95:a4:83:7d:57:7d:e8:42:0a:f3:71:
e3:62:88:97:80:d7:10:6b:bd:b7:75:e8:db:f3:4c:
9b:97:92:83:12:5a:2c:7a:99:b6:f8:32:fc:b6:c0:
1a:77:9d:77:c2:56:06:72:49:94:00:ab:e4:f8:dc:
26:4e:ef:ad:be:c7:1c:99:54:01:3f:ab:f0:c9:f7:
1a:c2:8e:db:4e:13:68:52:49:14:67:f9:b4:ca:d9:
bc:04:e6:59:e6:68:79:cb:91:04:30:ba:11:37:eb:
60:ef:55:c0:f2:c2:83:3c:29:5d:20:5e:81:b3:b1:
47:01:eb:f2:98:6d:35:22:03:b8:fb:b1:e5:e6:37:
9d:da:9a:fd:23:f0:f8:6a:d1:2e:ef:49:22:39:b5:
81:8e:eb:e4:c6:12:a0:b4:99:d1:d7:aa:12:34:8d:
7f:01:0f:1a:7c:12:cd:ef:c4:12:12:71:3b:6b:40:
52:2f:ca:8d:72:65:50:d9:61:34:11:32:85:15:03:
03:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8D:5A:49:C9:E4:2E:37:1B:FD:1E:67:AC:E1:B3:D5:5E:C1:AB:F7:3F
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0/8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.216.105.0/24
Signature Algorithm: sha256WithRSAEncryption
27:81:d8:6b:3f:49:31:2c:44:a0:c3:bd:99:49:09:0a:0d:3f:
dd:cc:34:30:c8:30:9b:a5:24:99:3f:a3:d1:18:a2:2b:9e:f0:
35:5e:32:c9:10:70:83:53:76:df:10:13:3e:e6:d6:07:19:fd:
0f:15:5d:48:3b:9c:9b:a3:e1:a9:7b:d5:90:7d:b0:d9:89:8f:
96:64:a5:e1:e8:ce:53:05:a8:f8:24:eb:38:26:11:b2:3e:a3:
c8:b3:46:36:f9:46:4b:e1:40:7e:b7:c0:d8:c6:ad:86:ed:76:
81:34:49:c8:2a:90:9c:86:67:cb:6d:b0:19:a7:63:bf:88:96:
62:90:23:16:dd:b6:5c:ac:88:3a:2f:d0:1f:2b:73:a5:64:2c:
6a:4e:8c:87:11:7e:82:69:dd:43:05:6d:90:e6:86:83:31:5f:
7b:1d:0f:99:c4:3c:72:60:c1:7a:10:0a:5c:8d:1f:63:39:12:
7a:2e:0c:1a:c1:91:40:64:15:9b:99:a6:a8:06:bb:f0:90:92:
60:c8:ad:e2:71:f0:d7:a5:4c:fe:c9:f7:b6:7a:88:27:90:b3:
83:80:ee:d5:23:9c:be:36:9d:c4:a0:c5:96:1b:65:a8:4f:ca:
75:3e:2f:f3:d5:c5:e6:03:42:da:cd:4c:1d:72:5c:3a:da:a9:
d9:ce:22:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:19:55 2025 by rpki-client