Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer
File: D4D0F3E6E684847D602FC73758893CE2BB05D399.cer (raw, json)
Hash identifier: chhbisryufSPrf9V0ILIr7OW6avjKT203QFT0bsNHdw=
Subject key identifier: D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 5BAD0C3B2E4C4F4898EAF45CFDB930BD0E7CD398
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft
caRepository: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Fri 29 Nov 2024 22:03:09 +0000
Certificate not after: Fri 28 Nov 2025 22:08:09 +0000
Subordinate resources: IP: 103.29.187.0/24
IP: 103.123.14.0/23
IP: 103.234.195.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:ad:0c:3b:2e:4c:4f:48:98:ea:f4:5c:fd:b9:30:bd:0e:7c:d3:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Nov 29 22:03:09 2024 GMT
Not After : Nov 28 22:08:09 2025 GMT
Subject: CN=D4D0F3E6E684847D602FC73758893CE2BB05D399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:d1:d7:fb:9b:ed:70:e9:76:8a:8b:e1:97:
7b:c7:cf:0a:96:24:0d:0d:c2:73:99:cc:b0:e1:c7:
dd:58:c9:46:27:80:4a:62:e0:13:8c:df:90:a6:ef:
83:62:72:fd:71:ac:43:99:f3:29:11:c6:e5:6c:a5:
0f:da:f6:35:d9:3c:bb:2c:86:25:bb:f1:33:94:66:
be:82:4d:d2:1c:1b:b3:b6:f9:28:f9:11:90:41:58:
d6:84:86:b7:30:1c:e4:b5:e7:7f:02:7f:75:da:0b:
d5:15:f0:71:c1:1b:73:d9:5f:d1:a3:39:23:23:52:
da:ba:96:04:50:65:a9:2f:9b:fe:ba:96:83:07:0d:
c7:83:82:5d:37:c1:fb:be:ac:9d:53:17:92:12:c6:
97:e9:f1:80:3f:e9:d1:ac:30:a3:a6:fa:8f:30:26:
24:69:33:5b:bf:11:c5:28:a7:11:7a:60:57:b2:e8:
aa:03:dc:47:53:21:d6:17:b3:80:7c:11:2d:9b:f1:
10:da:ce:e8:87:3a:08:68:2f:5a:8f:af:96:f6:c5:
19:25:6f:1f:96:ca:45:62:31:da:e0:73:0d:60:7a:
22:6d:3c:db:01:50:63:28:7d:46:4f:b2:55:07:2c:
f8:8a:4b:96:26:b0:f8:7b:21:4f:92:42:ce:c6:15:
4e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.29.187.0/24
103.123.14.0/23
103.234.195.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f6:99:11:2e:18:17:6e:3a:17:9b:a7:09:7d:c0:e5:d8:fe:
d9:75:6a:47:ee:cf:df:3f:89:52:5d:16:67:16:52:ae:f6:07:
95:cb:9a:fb:2b:f1:20:18:d6:84:dc:6a:42:b6:a6:d4:0f:ab:
41:ea:0e:46:13:33:fb:30:a1:d4:4f:a1:fc:07:5c:24:d6:8e:
69:ad:af:02:a9:ee:6f:b6:c3:96:cc:35:a0:0e:06:99:5e:45:
b2:85:82:ed:f2:f1:e1:e4:b6:2e:76:c0:02:ee:ad:a3:b6:9d:
9f:3c:61:07:cb:bd:77:31:8d:fb:b7:20:86:2e:b6:5d:4b:7c:
55:a5:09:ba:59:fd:51:14:58:87:03:d5:d7:45:af:1a:00:0e:
4c:05:a3:18:d4:bc:30:dd:32:d9:2b:9f:d0:4b:93:3c:b8:e6:
88:2e:43:ce:8d:37:65:02:9b:36:94:f4:ef:72:23:5b:d1:42:
8b:57:b4:87:26:6e:55:e2:d7:ef:a2:ed:85:d5:1d:d2:bc:c3:
c3:60:3f:e3:83:92:3d:4b:89:c9:c3:2f:c0:78:70:87:e1:77:
5a:92:6e:01:ba:30:6a:1d:e7:17:20:65:7e:c7:82:de:6f:fc:
6f:80:f0:3e:9d:39:b0:e5:21:e4:64:c3:60:72:d2:8f:c1:a6:
b6:72:f9:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:26:15 2025 by rpki-client