Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer
File: D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer (raw, json)
Hash identifier: XE4rwc+KeCplaDmtlkmI4tZg0rthfBImQaT2LZ2Xq8Q=
Subject key identifier: D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0C051D8C5D0719C0D4010E1729271E8E691D954B
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft
caRepository: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Sun 14 Jul 2024 23:54:32 +0000
Certificate not after: Sun 13 Jul 2025 23:59:32 +0000
Subordinate resources: IP: 103.84.200.0/23
IP: 2001:df0:3700::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:05:1d:8c:5d:07:19:c0:d4:01:0e:17:29:27:1e:8e:69:1d:95:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jul 14 23:54:32 2024 GMT
Not After : Jul 13 23:59:32 2025 GMT
Subject: CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:35:d9:77:b3:14:40:ad:66:41:b4:b9:58:8d:
a5:cb:4b:75:ff:2f:f8:41:d5:f2:f9:52:38:18:92:
e6:37:ad:ce:fe:c5:29:ca:e0:84:0a:86:10:b6:eb:
27:64:f9:82:dd:2b:bc:f5:eb:81:e2:09:35:44:61:
c1:de:95:45:fb:6a:e6:62:ed:df:b0:a8:99:7b:f5:
8b:58:84:fb:ec:a0:0b:4e:f7:b4:e4:71:68:e6:e6:
c4:f0:50:a6:56:4f:ae:6e:4e:10:2c:5b:f1:e7:e7:
27:2f:ad:e2:12:a6:41:b2:44:d1:5c:f1:cd:19:4e:
18:62:76:48:f1:81:1c:c2:88:45:e6:4f:8d:43:33:
f3:30:29:73:ce:3a:73:fd:7e:39:c8:ce:6f:4d:a1:
14:b9:bb:3b:e2:bd:f8:98:58:25:d0:b6:95:a6:2c:
03:7e:ef:82:88:36:8c:56:fe:98:67:85:1e:07:61:
41:51:8f:28:62:05:ac:b4:ce:56:f0:44:fd:0e:17:
41:45:c8:d7:b3:b9:43:46:1a:96:32:c9:de:df:c4:
fd:4e:cd:49:73:b8:c6:ab:81:65:45:1c:dc:1b:e7:
48:11:24:93:9f:79:a0:25:13:44:8b:60:df:57:b5:
dc:ac:58:cf:dd:b9:87:fc:72:c8:4f:b4:e5:e1:63:
6c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.84.200.0/23
IPv6:
2001:df0:3700::/48
Signature Algorithm: sha256WithRSAEncryption
65:0b:a0:7d:17:da:de:e8:b6:7d:1f:92:ff:f1:f6:bc:6f:c6:
33:86:34:7c:77:48:16:fb:11:98:2b:56:77:6e:02:83:8b:16:
e8:93:00:02:57:f6:a0:ea:e1:ac:2a:b3:0b:5b:9a:7c:af:91:
63:5b:7c:ed:97:74:c5:9c:9a:d0:ed:c6:b2:95:75:24:9b:38:
f5:2c:fd:bd:0b:fe:c7:4e:95:53:b6:6a:be:14:23:19:b7:b7:
d2:44:66:c9:8d:6a:e1:63:6d:a2:5f:2d:7c:7c:bd:ea:d8:62:
66:f4:e1:51:5e:10:40:7b:04:9e:1f:cb:81:78:36:70:ed:f3:
56:e8:64:e3:7b:d4:28:04:14:15:95:98:46:d8:75:ee:7a:2b:
b2:0d:1a:d8:f5:a4:aa:07:37:19:0f:30:41:7b:33:37:bd:0e:
19:76:37:62:f6:7f:59:e0:31:0d:e6:87:fe:b4:77:8a:15:f7:
cd:19:9e:f4:1d:d0:4b:a5:d6:95:2d:1c:82:ae:2a:cd:79:4a:
03:4e:1f:81:5d:0b:56:b4:90:ed:07:9b:e3:58:cc:78:92:35:
aa:26:4f:58:d4:d6:63:44:ac:38:32:bc:66:45:1c:59:41:b1:
71:8d:03:92:f2:49:3e:ef:96:4f:bd:f0:e3:d1:f1:38:34:e1:
ce:f2:e9:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:28:51 2025 by rpki-client