Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer
File: 8DAFDBD814B60F568505D65130E4661FCD7D665F.cer (raw, json)
Hash identifier: wp4nrQPm988SrErWIA/BBT4s8ldpWZwbrpAimtRFqMc=
Subject key identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0FC6979074913341586636BCA6DEF7076085D173
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft
caRepository: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Tue 24 Dec 2024 15:18:01 +0000
Certificate not after: Tue 23 Dec 2025 15:23:01 +0000
Subordinate resources: IP: 103.168.190.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:c6:97:90:74:91:33:41:58:66:36:bc:a6:de:f7:07:60:85:d1:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Dec 24 15:18:01 2024 GMT
Not After : Dec 23 15:23:01 2025 GMT
Subject: CN=8DAFDBD814B60F568505D65130E4661FCD7D665F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b6:c3:8b:f2:70:ff:df:10:7a:44:c6:a8:1f:
43:7b:11:2c:71:d3:d3:44:08:3b:93:a9:3a:a9:93:
c7:37:10:ea:f1:12:f3:7f:dc:63:1a:80:d6:d3:90:
01:8a:e7:ea:8b:a5:0f:e3:80:84:ac:d8:bb:d9:6e:
59:08:e0:ae:18:60:a6:53:36:92:01:c6:f1:7a:91:
97:b3:79:6f:d5:71:c9:15:8e:5c:bc:bd:88:1c:cf:
6f:e5:96:77:e4:1a:0f:f1:b3:a9:d5:fc:80:c8:2d:
d1:ee:4c:c1:0f:e1:64:ac:3a:d3:49:f5:c4:72:bb:
70:e5:64:1a:77:a4:f5:66:20:b9:9e:b7:4c:73:4f:
95:aa:a9:b2:0a:b9:82:57:07:c6:79:67:42:2a:c4:
43:f3:0c:83:fb:ea:36:72:ed:3a:7b:59:6a:0d:28:
82:14:52:00:d0:dd:e8:6f:b8:13:b6:20:d0:b2:8d:
32:9c:73:5c:ca:fe:97:58:fa:69:ea:54:32:a0:c1:
04:51:e7:ad:59:ab:23:0e:1d:a9:40:e7:15:7e:3a:
b1:d6:79:fc:aa:8b:51:3e:86:a8:ae:87:77:b8:be:
aa:83:6a:85:a3:88:06:d0:cd:4d:27:47:ff:93:59:
ea:f8:9b:2a:32:05:5d:1a:09:bf:fa:f5:1d:5f:64:
7e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.168.190.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:a8:80:65:71:92:0c:7c:23:d3:97:d4:2f:56:6c:aa:fd:d1:
8b:7a:ea:98:f7:00:01:17:ea:80:bc:4d:92:40:e2:6f:bb:24:
2b:0f:1b:b8:e7:b7:f8:bf:d5:1d:a8:3d:1f:25:b7:5e:01:91:
df:aa:b8:e6:8f:56:88:b2:3b:6c:57:82:76:bd:bc:69:14:75:
9b:09:c5:c9:bf:f5:68:97:f1:fc:de:e6:a2:97:fc:5e:46:08:
15:3f:29:c1:e5:cc:1a:68:4f:44:87:66:a3:6b:e2:1a:84:6c:
27:a2:8a:5d:0f:1d:da:99:d9:32:b9:44:a4:89:0b:be:2e:d1:
56:f5:11:ab:77:c5:7a:da:e7:1e:bc:6e:46:03:85:be:e0:fd:
20:6a:0b:ab:a6:67:2d:60:47:69:ab:e0:f1:f3:13:ba:f8:62:
71:36:bc:e8:9d:0d:34:fe:9b:6a:5d:89:7d:db:ba:7a:fd:6e:
34:cd:1b:ef:74:7f:23:32:f8:af:3d:7e:d3:d2:e8:df:e9:de:
4d:b4:63:b6:5e:7b:18:6c:fe:33:a7:2e:91:60:8f:d5:63:f8:
1a:c9:b2:d2:57:58:4f:4e:ba:4b:5b:e0:6e:3e:bb:66:14:78:
97:ca:43:c5:fc:2b:c8:4b:fa:6c:49:0a:fe:f1:3c:81:96:2e:
89:32:73:3b
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUD8aXkHSRM0FYZja8pt73B2CF0XMwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIyNDE1MTgwMVoX
DTI1MTIyMzE1MjMwMVowMzExMC8GA1UEAxMoOERBRkRCRDgxNEI2MEY1Njg1MDVE
NjUxMzBFNDY2MUZDRDdENjY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKq2w4vycP/fEHpExqgfQ3sRLHHT00QIO5OpOqmTxzcQ6vES83/cYxqA1tOQ
AYrn6oulD+OAhKzYu9luWQjgrhhgplM2kgHG8XqRl7N5b9VxyRWOXLy9iBzPb+WW
d+QaD/GzqdX8gMgt0e5MwQ/hZKw600n1xHK7cOVkGnek9WYguZ63THNPlaqpsgq5
glcHxnlnQirEQ/MMg/vqNnLtOntZag0oghRSANDd6G+4E7Yg0LKNMpxzXMr+l1j6
aepUMqDBBFHnrVmrIw4dqUDnFX46sdZ5/KqLUT6GqK6Hd7i+qoNqhaOIBtDNTSdH
/5NZ6vibKjIFXRoJv/r1HV9kfn0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFI2v29gUtg9WhQXWUTDkZh/NfWZfMB8GA1UdIwQYMBaAFLqP
d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g
XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y
L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G
CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l
dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv
OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw
ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw
by82ZTliMGJhZC02NmI5LTRmMjgtYTdjNS1lOWE5ZmUxMjBhZDcvMDCBgAYIKwYB
BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOWIwYmFk
LTY2YjktNGYyOC1hN2M1LWU5YTlmZTEyMGFkNy8wLzhEQUZEQkQ4MTRCNjBGNTY4
NTA1RDY1MTMwRTQ2NjFGQ0Q3RDY2NUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov
L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BABnqL4wDQYJKoZIhvcNAQELBQADggEBAD2ogGVxkgx8I9OX1C9WbKr90Yt66pj3
AAEX6oC8TZJA4m+7JCsPG7jnt/i/1R2oPR8lt14Bkd+quOaPVoiyO2xXgna9vGkU
dZsJxcm/9WiX8fze5qKX/F5GCBU/KcHlzBpoT0SHZqNr4hqEbCeiil0PHdqZ2TK5
RKSJC74u0Vb1Eat3xXra5x68bkYDhb7g/SBqC6umZy1gR2mr4PHzE7r4YnE2vOid
DTT+m2pdiX3bunr9bjTNG+90fyMy+K89ftPS6N/p3k20Y7Zeexhs/jOnLpFgj9Vj
+BrJstJXWE9Ouktb4G4+u2YUeJfKQ8X8K8hL+mxJCv7xPIGWLokyczs=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:55:34 2025 by rpki-client