Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A4A4C426A4F42A29829636FB3223FA7F5C68509A.cer
File: A4A4C426A4F42A29829636FB3223FA7F5C68509A.cer (raw, json)
Hash identifier: csR9eZX8xW0cCJ/8UhYIJJk+iDDZWtkBD/hQ6gscWvQ=
Subject key identifier: A4:A4:C4:26:A4:F4:2A:29:82:96:36:FB:32:23:FA:7F:5C:68:50:9A
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 603B8C8D9893D79B5DF8CFAF6B61882E03F3B2EF
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/A4A4C426A4F42A29829636FB3223FA7F5C68509A.mft
caRepository: rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Fri 10 Jan 2025 06:03:32 +0000
Certificate not after: Fri 09 Jan 2026 06:08:32 +0000
Subordinate resources: IP: 103.13.36.0/24
IP: 2001:df0:418::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:3b:8c:8d:98:93:d7:9b:5d:f8:cf:af:6b:61:88:2e:03:f3:b2:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 10 06:03:32 2025 GMT
Not After : Jan 9 06:08:32 2026 GMT
Subject: CN=A4A4C426A4F42A29829636FB3223FA7F5C68509A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:27:c3:0b:f7:e2:08:9b:d9:d9:74:76:4c:73:
82:3f:d2:4e:d8:2d:c3:0a:0d:ac:a0:36:8a:f9:d1:
eb:12:c9:98:b8:70:cd:b7:d4:5b:11:12:37:c6:66:
5b:2c:cc:64:c9:4f:5f:30:77:51:23:e2:bd:77:19:
32:91:86:f7:c1:d1:26:01:9b:e0:55:b2:6d:3d:08:
df:ce:fb:1d:ce:f4:bb:03:25:f3:53:d4:64:8d:87:
44:11:e8:37:5d:6e:5e:9d:9a:2e:3f:32:b7:fa:5c:
8a:88:93:9a:dd:41:1e:b1:b4:26:eb:49:b5:18:24:
f2:ba:fe:74:03:e1:f3:a2:c2:20:16:33:de:1d:cb:
a5:b2:d0:3a:ca:ec:68:13:a5:27:fd:8b:d7:d4:dc:
ae:3e:b8:a9:b7:6b:f4:52:93:38:31:29:3c:79:eb:
c1:a9:4d:6b:ea:8d:21:f7:3b:21:fe:5d:a6:34:2e:
06:1f:f0:66:1b:e3:8d:1a:6d:d0:0c:34:cb:47:28:
c4:b3:af:e8:da:e3:ef:55:57:4e:ee:65:c8:42:c8:
10:73:e8:e3:76:81:75:7b:70:d2:7f:11:3c:4b:95:
bd:a3:ff:7e:7d:0f:e3:11:d8:0c:60:90:14:1a:e3:
d7:18:3f:b8:d7:01:23:0e:db:38:94:86:9a:bb:15:
e0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
A4:A4:C4:26:A4:F4:2A:29:82:96:36:FB:32:23:FA:7F:5C:68:50:9A
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/A4A4C426A4F42A29829636FB3223FA7F5C68509A.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.13.36.0/24
IPv6:
2001:df0:418::/48
Signature Algorithm: sha256WithRSAEncryption
85:30:3c:bb:3f:ae:bc:22:54:27:8a:ba:7f:97:01:a2:25:83:
a3:46:03:ab:3f:d7:6b:63:e2:fb:e4:28:e3:2c:d1:41:c4:43:
94:36:b4:95:b2:a2:06:91:80:9f:3e:23:55:7d:f5:61:59:a2:
14:54:78:b2:f3:9c:dc:5e:0b:36:51:1e:52:6f:08:02:5f:98:
78:60:36:2f:dc:5b:60:e3:6a:6c:74:ca:59:7e:1f:de:ff:84:
a2:64:07:c2:80:2c:74:0a:a9:e3:d2:92:01:d0:02:cc:71:00:
49:11:5c:bd:e6:d3:3d:70:34:e5:9a:73:8d:6f:a4:5c:97:bc:
98:7f:59:40:a8:7a:c3:8b:27:97:e3:09:63:b2:cd:8e:24:32:
e5:3e:10:5d:54:e6:5e:83:3f:36:b7:cb:38:08:67:83:c1:8b:
e7:19:b5:17:c2:e7:a0:c7:45:1e:50:da:74:ea:18:61:8d:08:
e7:7f:93:5d:6c:ba:0f:f9:26:1a:80:81:f3:4d:5b:52:2d:e4:
20:84:f8:4c:5b:5f:26:25:dd:9e:2f:44:d5:44:67:2b:22:a8:
17:6d:e3:f9:58:92:0b:b7:e9:05:85:5d:0b:ac:38:80:d4:04:
4f:b3:c3:55:ff:72:54:f1:88:2b:8a:a4:36:f8:98:15:b3:fe:
08:0e:06:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:16:33 2025 by rpki-client