Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer
File: 0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer (raw, json)
Hash identifier: HBTVLGBkIvs/HOczT/WzQF5+2eIt5osSBpR4afRACkc=
Subject key identifier: D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942827C9778762EF25161380975199EE28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:54:43 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 21448
AS: 197898
AS: 200707
AS: 202415
IP: 185.98.176.0/22
IP: 185.110.52.0/22
IP: 193.110.88.0/24
IP: 194.28.136.0/22
IP: 195.69.92.0/22
IP: 217.9.192.0/20
IP: 2a00:8000::/29
IP: 2a03:37e0::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:c9:77:87:62:ef:25:16:13:80:97:51:99:ee:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:54:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d2a4452602c9df977c9d5dd8dc13b6661df40136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:98:35:77:ea:d2:f3:c0:a5:a1:d5:82:0d:f2:
db:f5:07:10:34:7b:66:74:50:49:b7:42:91:55:b7:
f4:0b:e4:7d:5b:ee:76:f2:df:32:60:92:ad:e3:2c:
fb:a1:c1:ca:57:eb:5b:a5:e9:50:91:b7:2e:d6:9e:
ae:fe:36:00:8f:59:39:70:34:bf:0e:49:ad:05:f3:
b0:4d:48:22:ed:4d:98:92:04:ef:3a:7a:ad:5a:b7:
b9:23:99:a5:f3:15:42:e3:77:2a:92:4e:56:52:09:
68:ea:58:08:30:b5:f7:7e:b0:74:65:a0:27:b3:eb:
20:fb:93:f9:08:89:70:21:11:c1:e6:20:eb:5f:7f:
b1:fa:5a:00:52:25:36:f8:32:3f:35:15:21:23:de:
1d:94:69:26:11:a5:e9:d9:0d:b6:78:30:35:72:26:
d9:b3:fc:e8:10:8d:89:dc:c8:19:74:c2:ae:16:b1:
96:99:dc:2f:30:67:85:ac:e8:e2:71:3e:fb:52:dd:
78:32:fd:0b:07:7e:75:23:d7:2d:3d:d0:99:2e:33:
64:6d:8b:a2:49:bb:eb:96:7d:19:7d:05:48:b6:99:
59:73:d4:63:79:ce:68:dd:09:d0:1a:5d:75:d2:f8:
62:95:d0:3f:7b:37:b3:cb:01:92:f6:1e:4c:8f:e0:
ca:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.176.0/22
185.110.52.0/22
193.110.88.0/24
194.28.136.0/22
195.69.92.0/22
217.9.192.0/20
IPv6:
2a00:8000::/29
2a03:37e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21448
197898
200707
202415
Signature Algorithm: sha256WithRSAEncryption
8a:21:d6:98:f5:ae:20:f6:c9:6e:fb:6b:73:70:92:76:4a:da:
42:31:10:ff:18:71:ad:a5:94:43:81:7d:b0:7e:0b:c6:58:44:
6f:5e:d9:ef:ac:28:2e:92:34:7a:ab:39:4c:89:30:96:9d:9f:
4e:b6:fc:cf:fc:26:15:a2:73:60:c5:0e:cb:10:a0:1d:34:b0:
27:03:f1:86:d1:83:65:b8:de:27:75:1e:e4:31:5c:5d:69:49:
b0:ba:60:f1:37:68:d7:8b:ad:4e:51:a2:81:b2:80:3a:75:7c:
95:95:26:89:66:02:3b:6c:90:0b:2f:59:dd:0b:76:14:a3:45:
3b:11:0e:79:83:3b:5f:c9:98:b8:d7:73:98:aa:27:37:f1:3a:
1d:46:e3:9b:7a:de:50:ce:4c:40:6a:96:dd:18:72:1d:14:bf:
e6:78:45:60:90:c3:67:d0:dd:a7:4f:d9:d6:d8:98:67:11:50:
90:9e:e7:c6:be:67:79:02:c9:3f:9b:cc:70:1c:6f:88:85:20:
c1:8e:c4:ac:8d:ed:e0:25:8f:0c:ff:ed:43:a4:68:00:0b:38:
be:7b:18:8d:1c:47:7f:3e:22:e0:22:74:46:49:35:ce:ba:dd:
f1:6f:e3:f2:39:d0:3e:06:f9:4b:8f:44:4d:44:ee:3e:f0:45:
17:c9:a6:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:59 2025 by rpki-client on console.sobornost.net