Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer
File: A500108F09BF54E5603B5C1F6E6325A561FE7126.cer (raw, json)
Hash identifier: KFMQ8m1r5UdlJTxkbS1tOiJG8hbgfkstsqHeoPNjvsI=
Subject key identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 25D3B93100622BE281F40F0C61962D89EC2ACE7C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft
caRepository: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Mon 01 Jul 2024 16:29:17 +0000
Certificate not after: Mon 30 Jun 2025 16:34:17 +0000
Subordinate resources: IP: 103.112.162.0/23
IP: 103.133.222.0/23
IP: 2001:df4:b100::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:d3:b9:31:00:62:2b:e2:81:f4:0f:0c:61:96:2d:89:ec:2a:ce:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 1 16:29:17 2024 GMT
Not After : Jun 30 16:34:17 2025 GMT
Subject: CN=A500108F09BF54E5603B5C1F6E6325A561FE7126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e8:08:7c:6b:20:49:ed:10:fe:40:03:13:6d:
74:91:9b:dd:0c:ff:de:d2:3a:ef:48:d5:56:42:b3:
8f:77:c5:5e:2f:5c:07:fe:70:6c:20:18:8a:ec:63:
09:65:7c:a8:44:3f:7f:5f:a4:7e:12:7c:8b:5c:d4:
29:16:f9:df:87:35:b2:f1:e8:7e:83:c1:6f:ff:bc:
ad:2f:b4:0a:0c:50:0a:ac:c6:6d:ed:f4:ed:0f:38:
7b:ac:38:ee:df:b9:e0:cd:8a:7a:31:9f:11:cf:3b:
d5:b9:87:e7:a7:65:09:d4:25:13:29:bb:66:7b:31:
f7:75:f3:b0:3b:89:94:e6:ca:ab:34:84:d2:19:2a:
35:5e:a6:bb:c9:f8:3e:39:1b:15:78:47:b6:d7:be:
b1:15:c5:73:3b:91:7a:02:ed:7e:2e:12:af:47:54:
fe:60:a9:9d:f2:ad:54:8a:4d:69:c7:0b:08:e0:e4:
28:2c:17:95:24:b1:a3:a7:98:42:49:a8:7a:72:bb:
7c:6f:52:83:2b:cb:c5:8d:be:be:59:47:f9:b4:01:
c3:16:c5:5a:74:8b:56:0a:a0:37:fc:1e:84:01:ab:
2f:96:28:7d:2c:14:45:99:65:c6:42:90:83:74:19:
5d:58:5f:e5:f9:e4:7a:26:02:22:22:03:8c:73:d7:
46:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.112.162.0/23
103.133.222.0/23
IPv6:
2001:df4:b100::/48
Signature Algorithm: sha256WithRSAEncryption
5b:d5:60:12:0a:f9:f7:09:98:aa:2c:a5:3d:10:f5:46:61:ba:
9c:a2:44:9f:70:71:32:2e:7c:13:0e:59:e5:75:f3:b0:00:83:
ef:d6:c7:5e:5d:71:2c:f1:ee:b3:37:73:79:0c:2f:58:6b:01:
8a:aa:c0:78:33:6f:a5:5d:c2:0c:91:c2:d1:09:70:42:f4:69:
8d:a0:b5:99:87:69:60:c1:d0:1d:7b:61:32:fa:00:2c:b9:67:
4d:49:77:03:c7:77:c8:65:b1:dc:2b:21:e0:07:73:94:ff:0e:
52:0f:59:a1:5f:84:51:3f:e6:1b:b0:84:a2:e3:d9:74:55:2a:
b2:5c:1a:38:6c:db:d0:a7:73:95:65:6d:cf:3b:a4:eb:9b:f9:
81:3c:f2:cb:bc:a7:74:97:3d:6b:c1:f1:7a:20:fa:90:82:78:
85:65:04:a9:88:9d:d5:db:9d:6f:06:a7:f6:cf:c7:ca:2d:ca:
df:3c:ea:f1:b2:85:ca:b3:04:fd:fe:5e:81:55:35:22:00:98:
ad:ee:b4:76:e0:28:e2:7f:c7:fc:06:89:1b:45:97:40:c0:b2:
a6:e7:ba:48:1b:a2:c6:3f:5a:45:db:ca:83:95:97:d6:d7:89:
38:20:20:92:de:20:ce:66:a9:dd:44:c9:3a:25:42:6c:92:71:
75:1d:8c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:10:50 2025 by rpki-client