Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D7F23D7B54890F0EECF550FFA42799B64D9BD4C9.cer
File: D7F23D7B54890F0EECF550FFA42799B64D9BD4C9.cer (raw, json)
Hash identifier: u4MpN5m/x7ItQe51tHH3SbQfEX5to5BBOx7t2MmANCI=
Subject key identifier: D7:F2:3D:7B:54:89:0F:0E:EC:F5:50:FF:A4:27:99:B6:4D:9B:D4:C9
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 6276CC0BED08178B772A2FC81FF084D29121A46C
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/bb9851b1-5a6d-4e75-9fff-c03a9c49cf69/0/D7F23D7B54890F0EECF550FFA42799B64D9BD4C9.mft
caRepository: rsync://repo-rpki.idnic.net/repo/bb9851b1-5a6d-4e75-9fff-c03a9c49cf69/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Sat 18 Jan 2025 09:41:12 +0000
Certificate not after: Sat 17 Jan 2026 09:46:12 +0000
Subordinate resources: IP: 103.222.255.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:76:cc:0b:ed:08:17:8b:77:2a:2f:c8:1f:f0:84:d2:91:21:a4:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Jan 18 09:41:12 2025 GMT
Not After : Jan 17 09:46:12 2026 GMT
Subject: CN=D7F23D7B54890F0EECF550FFA42799B64D9BD4C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:38:02:f1:c0:19:7c:99:5e:7a:43:c5:61:3b:
bf:6a:03:f0:44:68:ac:d9:cf:69:98:1c:f6:17:34:
8d:17:77:d9:60:d1:59:b3:54:9e:6c:e9:f0:d2:55:
c1:a4:82:d8:d6:6d:aa:9c:f1:d9:27:e9:0b:48:2c:
04:a5:32:72:52:f2:77:9f:06:a3:68:71:8d:24:15:
23:f2:64:d8:88:2f:41:3d:c0:dd:4d:54:dd:cc:6e:
4c:39:ca:e7:b5:25:d6:c8:39:bf:a1:e2:81:81:63:
03:44:23:8b:02:44:94:4e:62:15:65:a3:58:e0:24:
22:bd:ba:1b:14:56:27:cd:93:4b:bf:1b:a5:d0:23:
f8:35:a7:aa:c2:cc:d8:97:17:66:83:ec:d5:59:53:
ec:f2:90:48:64:4f:38:8d:da:e4:26:57:71:cb:81:
d4:86:12:3c:ee:d1:22:df:70:f4:fd:a9:01:d5:a5:
c6:83:55:0f:5e:13:47:af:66:6c:58:f7:23:38:4d:
52:27:b4:74:76:a4:47:04:24:d8:ed:2c:cd:32:fa:
3a:4b:a7:ea:82:98:db:e8:2d:c2:c2:ac:f5:43:0a:
ab:f0:c0:f9:25:67:7c:80:58:87:9c:a6:53:33:92:
df:42:ad:09:67:78:b5:de:d2:d0:a7:27:86:6e:6e:
bf:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
D7:F2:3D:7B:54:89:0F:0E:EC:F5:50:FF:A4:27:99:B6:4D:9B:D4:C9
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bb9851b1-5a6d-4e75-9fff-c03a9c49cf69/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bb9851b1-5a6d-4e75-9fff-c03a9c49cf69/0/D7F23D7B54890F0EECF550FFA42799B64D9BD4C9.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.222.255.0/24
Signature Algorithm: sha256WithRSAEncryption
45:c6:10:7d:a1:cf:b9:8e:d4:f0:25:a2:26:5f:3a:80:49:69:
80:4c:21:ec:3a:6a:6b:de:ae:92:6a:e0:88:20:86:82:99:6f:
47:ae:22:b0:4f:a9:5c:c1:f1:f9:90:40:cd:b6:48:d5:b7:d8:
5c:61:4b:ca:d2:21:66:0b:3a:16:e8:5c:37:50:cc:3e:da:e1:
37:19:9e:e1:17:b4:6a:c9:64:42:3c:d0:f2:69:8b:ba:97:de:
37:88:12:65:b5:9e:bf:6c:53:a6:03:59:65:61:e3:55:57:f4:
bb:c1:ef:c3:79:c0:7a:13:67:5a:be:cf:a3:c0:30:e9:85:66:
b5:ba:04:24:e2:b0:1e:06:8d:f4:ff:f9:60:99:f7:74:fb:b3:
87:d9:63:56:72:81:33:1a:fc:aa:e1:2b:a0:b1:2d:48:1a:ee:
e7:9a:62:2c:fb:93:76:f3:d9:18:63:14:6d:3e:58:7a:de:84:
86:dc:d1:b0:e6:61:e9:b6:52:5a:e8:12:22:3c:3e:4c:ba:5f:
6f:10:82:3b:35:2f:f2:9d:d6:8a:df:66:8c:96:55:ce:9e:fb:
1f:be:1d:90:67:59:41:6b:bd:31:10:6c:23:ab:ce:c1:af:64:
f6:ae:aa:38:03:0b:6c:09:aa:4a:e6:d9:44:5c:2f:a0:20:55:
e6:0a:ba:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:57:29 2025 by rpki-client