Certificate

$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer
File:                     B5F8E7712A83BE2BD78CFC40658C8032F03B6682.cer (raw, json)
Hash identifier:          pOXw0sMVrq0IGzebJ8/RAA7+mRqrceZprP5dwmZv6JA=
Subject key identifier:   B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer:       /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial:       097DFAE6D01926E77AAFA9702E6C718CBAA942F7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest:                 rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft
caRepository:             rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/
Notify URL:               https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before:   Thu 19 Sep 2024 19:02:57 +0000
Certificate not after:    Thu 18 Sep 2025 19:07:57 +0000
Subordinate resources:    IP: 103.38.108.0/23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:7d:fa:e6:d0:19:26:e7:7a:af:a9:70:2e:6c:71:8c:ba:a9:42:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91862140000
        Validity
            Not Before: Sep 19 19:02:57 2024 GMT
            Not After : Sep 18 19:07:57 2025 GMT
        Subject: CN=B5F8E7712A83BE2BD78CFC40658C8032F03B6682
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:44:3d:ce:8b:7f:5e:88:98:37:8b:6c:bc:35:
                    d6:ef:c2:b1:4a:07:72:10:94:9a:b0:12:38:d9:c8:
                    61:a6:89:9b:8b:6d:25:00:9d:97:89:77:88:40:a8:
                    5f:7b:54:28:9f:9e:85:04:f0:6a:7a:67:42:37:b9:
                    3f:8e:a7:2e:a4:62:de:13:86:98:9e:16:d4:5f:de:
                    e8:b4:aa:90:8a:d7:70:ab:4b:c4:a8:b8:05:c3:a8:
                    75:f5:7f:a6:00:5c:b6:69:fc:4d:e4:a1:ca:2c:45:
                    df:b6:db:73:41:a6:54:e3:66:c7:2b:49:b3:76:b7:
                    9e:6a:9e:86:c4:16:11:dc:51:b5:d8:ca:c0:cd:b6:
                    31:72:53:2d:f5:d3:18:fa:f5:04:5c:e1:d4:44:f8:
                    2f:08:8e:ea:e4:7a:71:25:0c:30:16:d1:3c:a4:d9:
                    5f:1a:e0:4f:da:2c:15:5e:4e:9d:81:34:57:9c:1f:
                    2d:38:96:80:4c:d3:20:c4:0a:60:bf:95:e0:0b:a2:
                    d5:1a:cf:ee:1b:08:b0:51:97:38:88:5c:b2:26:a3:
                    5c:bf:54:4a:8c:e4:d3:42:01:a3:5d:e2:90:2e:9e:
                    fd:6a:6b:a2:e8:4d:9d:2d:d4:0f:3a:5e:9c:e9:09:
                    a4:fb:82:48:61:4d:af:bc:c4:94:c8:b9:bb:2b:e8:
                    57:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Subject Key Identifier:
                B5:F8:E7:71:2A:83:BE:2B:D7:8C:FC:40:65:8C:80:32:F0:3B:66:82
            X509v3 Authority Key Identifier:
                keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer

            Subject Information Access:
                CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0
                RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cdb59a10-58d0-462e-b09b-1919b1c35d72/0/B5F8E7712A83BE2BD78CFC40658C8032F03B6682.mft
                RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.38.108.0/23

    Signature Algorithm: sha256WithRSAEncryption
         16:67:40:d8:18:be:87:23:f3:dc:f3:b7:2c:fc:e1:5a:e2:7b:
         cf:0c:dc:65:16:6a:7a:b7:27:00:3c:2e:3a:7b:02:d4:74:2e:
         1a:e7:4d:87:0c:a8:d8:22:3a:dc:20:1f:9f:c5:d8:2d:c6:65:
         d2:a9:57:1f:a2:48:bd:0b:e9:7b:3b:5c:64:e9:88:20:ed:90:
         f1:d9:d9:5a:30:61:bf:65:af:68:9b:1e:ec:dd:e9:e3:ba:64:
         c4:c5:0a:d6:93:78:ec:22:d3:71:f2:3f:15:51:cc:f0:6d:36:
         1f:06:20:13:4d:4d:44:77:41:7f:55:5b:4c:b5:db:c0:2d:c9:
         d5:0d:fb:1f:8a:8a:64:58:3f:4e:b2:c5:e2:d3:ef:79:00:bc:
         64:56:02:10:c7:0e:cb:76:cb:8f:64:57:3b:ac:c2:78:e6:d6:
         05:59:33:80:42:5a:db:cc:4d:25:e0:e1:6a:e5:3a:77:4c:2d:
         07:cf:fb:ab:3a:ed:b8:65:21:4e:e0:fe:29:1c:f0:57:37:a9:
         ac:31:d3:e0:e9:87:bf:3d:c8:38:dd:32:bb:b6:b9:1c:f3:99:
         85:9a:f9:59:0d:95:0a:2e:30:63:9c:a6:3b:26:0d:05:7d:bd:
         72:8b:c6:ca:c7:a5:74:b0:0f:48:54:40:f2:0e:08:19:13:31:
         08:1a:e9:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----