Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer
File: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer (raw, json)
Hash identifier: Wv+ZdBYlrO2FBLjNTHZoRuxp26zVEZ0De9S19UypY4M=
Subject key identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 3177AED9919B3E0D9E74600A175EF53FE914E49B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft
caRepository: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Thu 13 Feb 2025 12:50:08 +0000
Certificate not after: Thu 12 Feb 2026 12:55:08 +0000
Subordinate resources: IP: 103.183.6.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:77:ae:d9:91:9b:3e:0d:9e:74:60:0a:17:5e:f5:3f:e9:14:e4:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 13 12:50:08 2025 GMT
Not After : Feb 12 12:55:08 2026 GMT
Subject: CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e9:7c:9e:05:cb:40:5c:4a:70:34:c4:1b:67:
76:cf:02:ba:c4:a0:ef:52:14:3a:fa:dc:97:69:24:
3a:12:43:e6:95:38:e7:8e:38:be:76:5f:e6:87:96:
0a:3e:6d:ef:b8:b4:f5:00:43:b1:64:49:61:2f:c6:
86:2c:e7:b5:85:65:d2:2a:66:c7:62:cd:ad:f6:86:
47:0b:84:c9:c4:4e:c8:4f:4a:0c:08:47:2a:d9:87:
8a:f0:b0:cd:1e:87:ea:13:ca:2b:77:3c:94:3a:6a:
a9:08:fc:6f:5d:f8:da:0f:4a:b6:ad:3d:4f:fd:dd:
64:b8:df:e2:fa:84:f4:a9:08:00:88:7b:51:6a:49:
f0:74:d2:d1:75:3b:97:7b:e0:91:b2:38:2e:b1:39:
1b:4c:4f:55:39:c1:f9:35:29:d9:16:91:c3:f3:d5:
63:6e:ca:b5:13:bb:8e:71:d0:fb:81:ca:fa:88:8b:
76:28:25:c1:60:4c:1a:44:7f:59:13:60:8b:75:50:
0a:3e:96:ae:fc:8b:81:fd:fa:7e:d5:79:e2:e4:8c:
3a:3e:3f:54:a9:60:87:af:69:a4:d8:1d:76:06:9b:
bd:40:e5:56:d7:0e:53:f1:69:a4:07:e7:b1:5c:50:
36:52:95:a9:f8:cf:71:f0:0d:2f:3b:8f:25:f0:ed:
a7:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.183.6.0/23
Signature Algorithm: sha256WithRSAEncryption
77:70:99:aa:04:a5:56:df:bb:93:49:54:10:32:b4:21:cd:35:
c1:1c:3a:6d:14:89:0a:4d:76:7b:ca:c5:fc:cb:26:a3:79:42:
1f:80:13:5c:5b:17:bf:15:44:7e:99:ed:38:d3:60:86:24:84:
c3:80:5f:b3:a2:b1:cd:04:c5:77:40:96:15:2d:d3:cf:58:20:
89:6b:3f:f4:25:90:2a:71:f2:8a:1b:1e:dd:04:33:1c:f5:09:
d7:4e:c6:e9:71:52:7a:18:11:db:98:c7:a5:f8:eb:7f:0a:4d:
f4:3f:9b:d8:d1:ec:b8:8c:8c:0c:8f:d6:21:38:33:c1:e9:c2:
aa:31:f1:47:89:0c:51:15:e9:1e:d2:b4:24:ad:aa:78:d7:ea:
7a:52:1d:a6:4a:27:fb:2e:b0:5e:dc:4b:79:87:c1:64:61:45:
c2:74:f4:ff:68:1b:34:4c:4a:be:b3:74:fb:2b:e0:99:af:44:
26:91:12:b4:71:f0:1c:cf:fe:58:1b:ce:67:2f:27:51:99:05:
e2:d6:3a:fe:cf:a0:68:b5:20:d3:9a:ab:3e:5c:2f:45:79:77:
14:ad:78:55:77:c8:7a:24:2c:a4:54:bb:01:bf:dd:ab:34:1f:
25:d7:5b:9c:0c:44:10:39:fa:04:ec:b0:83:c9:81:d3:ca:26:
bc:db:0f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:29:08 2025 by rpki-client