Certificate
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer
File: F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.cer (raw, json)
Hash identifier: OI60dPAYshWp9ECUOrVNsKU+nFaEsx+7cxOeI7vUpSQ=
Subject key identifier: F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D
Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B
Certificate serial: 0E271CC1F4C236E1DEC0BDC045B7FD930A64E437
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Manifest: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft
caRepository: rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/
Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml
Certificate not before: Tue 11 Feb 2025 06:33:42 +0000
Certificate not after: Tue 10 Feb 2026 06:38:42 +0000
Subordinate resources: IP: 103.159.196.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:27:1c:c1:f4:c2:36:e1:de:c0:bd:c0:45:b7:fd:93:0a:64:e4:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91862140000
Validity
Not Before: Feb 11 06:33:42 2025 GMT
Not After : Feb 10 06:38:42 2026 GMT
Subject: CN=F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a3:1d:3d:f3:54:23:20:b1:1f:8e:57:b6:53:
e4:40:4a:22:5a:df:fa:c4:a7:ab:94:78:8f:8f:e3:
81:8e:42:20:d2:04:5f:c0:a9:6e:e0:b5:e5:01:5a:
d1:7b:01:8a:ed:55:df:8f:fb:bc:25:3e:22:aa:b8:
27:59:8d:61:aa:b8:66:d8:ff:11:2f:41:f9:22:c9:
fe:02:10:d8:bf:91:97:2f:62:cc:ae:cf:03:d3:43:
13:5d:2e:5e:09:c4:10:5e:4a:00:b3:d5:7f:02:3d:
fd:09:9f:32:6e:c4:a9:90:54:f3:0e:bb:b3:96:21:
38:61:f9:80:ce:0e:21:8f:92:e7:40:3b:09:1e:f7:
a0:be:6d:4b:f6:ec:cf:4f:ac:f9:2d:ce:e9:77:33:
e1:64:ac:70:5a:3c:08:47:5a:9e:42:46:14:8e:9c:
dd:6b:da:27:f9:f8:85:99:a3:74:98:e5:33:1d:92:
97:ad:1f:cb:b0:4a:c8:d4:37:b1:b3:5d:2d:ec:33:
43:53:59:86:ae:9a:fe:57:e6:9d:b7:c4:e7:af:90:
2d:89:e1:87:c1:55:c0:4c:df:f0:2d:f8:18:c1:a6:
66:bc:59:51:e9:b1:13:80:e1:65:fb:10:88:ee:cd:
76:78:a7:4d:73:2c:9c:2d:63:ea:65:73:a9:12:14:
e0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
F7:A5:C0:89:7A:1A:B3:1B:FD:31:BE:0A:F2:1D:82:5C:5A:A6:97:2D
X509v3 Authority Key Identifier:
keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
Subject Information Access:
CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0
RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3cdd5774-30dd-4a00-b1a9-9b12826930c2/0/F7A5C0897A1AB31BFD31BE0AF21D825C5AA6972D.mft
RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.159.196.0/23
Signature Algorithm: sha256WithRSAEncryption
41:73:94:b9:34:dc:af:91:8d:40:95:1f:aa:28:48:c5:a7:07:
95:56:9c:e6:ea:e5:78:a6:91:aa:87:11:d3:7a:2a:5a:95:08:
f9:e4:44:ed:83:8f:33:bb:8b:c2:d0:89:c9:9b:fd:a6:fc:14:
e9:45:d0:e5:f2:89:79:d2:4d:c1:20:59:7d:f6:8d:65:89:fd:
1c:2d:1c:30:e5:ff:26:75:41:8d:15:32:86:d6:97:f8:d2:12:
3e:d3:94:77:43:3e:39:2a:46:ea:e8:19:c2:b7:ed:0f:e8:16:
a8:58:18:0d:9c:b0:40:93:78:3f:c5:11:63:d2:3d:8f:f8:d8:
0e:5e:14:f6:f3:f2:79:96:c4:fd:c8:ba:c3:c7:98:99:e9:d7:
f5:2d:62:31:51:bd:97:d6:28:b4:39:38:9a:db:32:7b:fc:66:
e3:08:28:be:a6:67:03:02:3d:e7:5b:79:ea:68:79:13:37:ac:
8c:85:e4:b3:df:ab:ad:31:f1:be:c7:54:02:77:fc:51:63:07:
23:c3:fd:98:21:d1:37:dd:99:d0:d1:e2:e4:e7:7e:09:f4:61:
32:ce:8d:9a:6d:0f:0b:bd:17:92:bd:d0:0d:54:ba:74:0b:3d:
be:cb:bd:d6:1d:5e:17:f2:02:f9:68:d9:69:7e:94:ef:bd:e4:
b5:a9:2f:6e
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUDiccwfTCNuHewL3ARbf9kwpk5DcwDQYJKoZIhvcNAQEL
BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF
NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxMTA2MzM0MloX
DTI2MDIxMDA2Mzg0MlowMzExMC8GA1UEAxMoRjdBNUMwODk3QTFBQjMxQkZEMzFC
RTBBRjIxRDgyNUM1QUE2OTcyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKujHT3zVCMgsR+OV7ZT5EBKIlrf+sSnq5R4j4/jgY5CINIEX8CpbuC15QFa
0XsBiu1V34/7vCU+Iqq4J1mNYaq4Ztj/ES9B+SLJ/gIQ2L+Rly9izK7PA9NDE10u
XgnEEF5KALPVfwI9/QmfMm7EqZBU8w67s5YhOGH5gM4OIY+S50A7CR73oL5tS/bs
z0+s+S3O6Xcz4WSscFo8CEdankJGFI6c3WvaJ/n4hZmjdJjlMx2Sl60fy7BKyNQ3
sbNdLewzQ1NZhq6a/lfmnbfE56+QLYnhh8FVwEzf8C34GMGmZrxZUemxE4DhZfsQ
iO7NdninTXMsnC1j6mVzqRIU4LsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB
Af8wHQYDVR0OBBYEFPelwIl6GrMb/TG+CvIdglxappctMB8GA1UdIwQYMBaAFLqP
d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g
XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y
L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G
CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l
dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv
OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw
ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw
by8zY2RkNTc3NC0zMGRkLTRhMDAtYjFhOS05YjEyODI2OTMwYzIvMDCBgAYIKwYB
BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjZGQ1Nzc0
LTMwZGQtNGEwMC1iMWE5LTliMTI4MjY5MzBjMi8wL0Y3QTVDMDg5N0ExQUIzMUJG
RDMxQkUwQUYyMUQ4MjVDNUFBNjk3MkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov
L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAFnn8QwDQYJKoZIhvcNAQELBQADggEBAEFzlLk03K+RjUCVH6ooSMWnB5VWnObq
5XimkaqHEdN6KlqVCPnkRO2DjzO7i8LQicmb/ab8FOlF0OXyiXnSTcEgWX32jWWJ
/RwtHDDl/yZ1QY0VMobWl/jSEj7TlHdDPjkqRuroGcK37Q/oFqhYGA2csECTeD/F
EWPSPY/42A5eFPbz8nmWxP3IusPHmJnp1/UtYjFRvZfWKLQ5OJrbMnv8ZuMIKL6m
ZwMCPedbeepoeRM3rIyF5LPfq60x8b7HVAJ3/FFjByPD/Zgh0TfdmdDR4uTnfgn0
YTLOjZptDwu9F5K90A1UunQLPb7LvdYdXhfyAvlo2Wl+lO+95LWpL24=
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:43:33 2025 by rpki-client