Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer
File: D0C90407CCD53717DFEA21D51A8921F20564AB25.cer (raw, json)
Hash identifier: 5QtRicI7zlUSXqQAn/cLYWIu3dbDa8mMpuNNvdfhANo=
Subject key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 7BC9A5570189EE552F5EE30C9E8561EE94B3B066
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft
caRepository: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Sun 16 Jun 2024 02:52:04 +0000
Certificate not after: Sun 15 Jun 2025 02:57:04 +0000
Subordinate resources: IP: 103.10.136.0/22
IP: 114.199.80.0/20
IP: 202.47.64.0/20
IP: 202.52.8.0/22
IP: 202.58.216.0/21
IP: 2402:fc00::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:c9:a5:57:01:89:ee:55:2f:5e:e3:0c:9e:85:61:ee:94:b3:b0:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jun 16 02:52:04 2024 GMT
Not After : Jun 15 02:57:04 2025 GMT
Subject: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:75:25:53:b0:00:78:46:6a:0d:cb:7f:b6:
f7:4d:72:71:fa:e5:a9:2f:e4:d2:8b:95:e2:02:ed:
fc:57:c5:e1:bb:be:8a:ed:3e:46:b9:14:9e:81:d4:
33:b2:ff:ea:a8:ad:f2:d6:bf:40:8c:74:97:33:7c:
b1:d3:9e:bb:c3:92:62:7c:5e:20:31:d3:3f:12:b3:
8c:b6:9e:e0:b5:cb:f4:e8:2c:d5:d4:30:70:f2:f6:
eb:d9:64:16:47:fb:87:12:af:db:d0:a0:a7:31:cc:
10:b5:c2:ac:96:ff:d4:a7:ee:3f:74:24:3d:cb:0e:
62:00:dd:6a:99:0e:05:99:5a:d6:15:2d:0a:65:f7:
d2:b1:bc:03:85:74:c3:14:0f:a5:78:aa:04:bf:64:
bf:63:63:77:0b:32:47:bf:0d:1f:1e:4a:da:b3:cc:
3b:37:6e:0a:38:f0:7b:03:4c:bf:c7:88:1b:bc:fc:
fc:22:15:f0:6d:39:6f:76:2e:27:e6:69:a9:bc:7f:
73:45:63:f3:eb:71:8b:f3:70:d2:fa:4e:e0:f0:00:
a7:5d:40:ab:22:a0:79:75:df:25:c8:9b:0a:5d:b8:
2f:19:dc:77:e2:46:a8:94:1d:f8:98:a5:a0:35:f9:
31:00:19:29:56:4a:56:be:0a:1e:5e:a5:51:5e:fe:
78:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.10.136.0/22
114.199.80.0/20
202.47.64.0/20
202.52.8.0/22
202.58.216.0/21
IPv6:
2402:fc00::/32
Signature Algorithm: sha256WithRSAEncryption
22:b8:34:e7:bb:8a:69:bb:e0:c7:08:a1:6d:ed:fd:62:e5:71:
fc:57:ef:32:b3:80:07:19:6c:08:8d:0c:7e:d5:cd:50:92:fe:
43:da:97:16:1b:87:27:06:c1:c2:1e:09:6c:d6:73:ff:af:3b:
4b:fd:8b:81:fb:c7:2b:ef:3e:4b:d9:ab:aa:09:58:b8:79:63:
20:81:04:41:3f:88:87:d3:d6:4f:66:89:be:90:79:df:8b:b7:
38:61:38:69:80:90:bb:04:9f:f0:8a:4a:44:45:d5:dc:f0:7d:
69:da:68:47:d8:fd:9a:75:3a:ef:ca:e2:e2:a9:90:7b:59:f2:
5a:94:35:22:fa:8b:91:fc:35:74:92:bb:0b:6b:2d:dd:da:aa:
13:12:f3:75:2f:91:b4:0d:fa:c5:b7:a5:c5:9b:8d:72:d4:a1:
f0:bf:d0:20:dd:cb:ba:02:9e:cb:85:d7:84:ed:ce:36:06:6c:
1f:38:26:31:2d:08:42:df:ae:f8:5d:2e:61:33:a6:d4:42:58:
ef:30:1a:55:6a:be:fd:d7:90:db:1c:8e:7a:19:81:3c:3c:94:
46:de:26:a7:e4:f4:28:f8:f3:17:f4:b0:f4:57:cc:50:ee:5f:
dd:83:f2:ca:d8:53:de:15:cc:c0:22:21:77:01:a5:82:0b:df:
ab:40:c6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:53:13 2025 by rpki-client