Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-75S2DTiaNxpiDApL95LY8faOS4.cer
File: 1-75S2DTiaNxpiDApL95LY8faOS4.cer (raw, json)
Hash identifier: 2zQq2VAaA7UjrQd0WTpsB4dXx76mLswEGxlc3cDHKDM=
Subject key identifier: FB:BE:52:D8:34:E2:68:DC:69:88:30:29:2F:DE:4B:63:C7:DA:39:2E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194236A34B78D3D49603E475D1865EEE4CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/d84b7a-7eb0-46a2-8a8a-026626ae31f5/1/1-75S2DTiaNxpiDApL95LY8faOS4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/d84b7a-7eb0-46a2-8a8a-026626ae31f5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:49:10 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 15411
IP: 193.149.128.0/24
IP: 193.149.137.0 -- 193.149.138.255
IP: 193.149.140.0/23
IP: 193.149.146.0/23
IP: 193.149.150.0/24
IP: 193.149.152.0/24
IP: 193.149.154.0/24
IP: 193.149.165.0/24
IP: 193.149.171.0 -- 193.149.172.255
IP: 193.149.177.0/24
IP: 193.149.184.0/24
IP: 193.149.186.0/24
IP: 193.149.188.0/24
IP: 193.149.191.0/24
IP: 195.85.0.0/23
IP: 195.85.4.0/23
IP: 195.85.8.0/23
IP: 195.85.13.0 -- 195.85.18.255
IP: 195.85.22.0/24
IP: 195.85.24.0 -- 195.85.26.255
IP: 195.85.28.0/22
IP: 195.85.37.0/24
IP: 195.85.39.0/24
IP: 195.85.45.0 -- 195.85.47.255
IP: 195.85.50.0/24
IP: 195.85.52.0/23
IP: 195.85.55.0 -- 195.85.58.255
IP: 195.85.60.0/23
IP: 195.85.66.0/23
IP: 195.85.74.0/24
IP: 195.85.76.0/23
IP: 195.85.80.0 -- 195.85.84.255
IP: 195.85.86.0/23
IP: 195.85.89.0 -- 195.85.93.255
IP: 195.85.96.0 -- 195.85.101.255
IP: 195.85.104.0/23
IP: 195.85.109.0 -- 195.85.112.255
IP: 195.85.117.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:34:b7:8d:3d:49:60:3e:47:5d:18:65:ee:e4:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:49:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fbbe52d834e268dc698830292fde4b63c7da392e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c0:5e:20:b3:d1:93:a8:40:ef:1a:ea:34:63:
4c:eb:ee:c8:6a:69:8d:03:76:b1:83:2a:b3:a7:b4:
75:14:53:44:d4:e5:2a:c7:cf:9d:88:ec:ca:ff:b2:
b0:11:88:93:53:b6:97:c2:24:82:ad:61:79:77:28:
59:84:c7:01:d1:d7:47:f6:92:4b:e7:d5:b2:9c:ed:
03:a9:ac:64:91:72:d2:f1:ac:f0:6a:86:cc:28:c0:
14:52:ab:b1:26:89:44:2e:e0:5c:48:b0:12:cf:8c:
19:17:c8:12:aa:b8:dd:67:b4:02:cc:b1:9f:bd:a1:
1d:87:66:65:68:84:db:3a:2e:e4:74:1f:e8:a8:5a:
81:c8:fb:1e:3a:08:87:d9:10:54:a7:be:d3:5e:06:
27:96:61:e5:fd:17:68:0d:7e:a0:02:60:53:ee:47:
4d:c5:33:39:c5:54:29:a9:d8:82:7b:3a:0c:1c:14:
aa:dd:a7:c4:c7:7b:da:b3:25:6d:59:d2:f5:d2:8a:
b8:c9:4f:3b:cc:a0:3d:84:25:b5:5d:c4:e8:35:27:
50:06:f7:44:78:8b:a0:d2:73:b8:06:2b:39:91:75:
e9:ea:c8:31:0b:48:4a:20:1a:be:11:55:60:de:4a:
28:06:7f:2d:d8:8b:b4:ee:73:b9:ac:c7:61:de:f1:
ad:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BE:52:D8:34:E2:68:DC:69:88:30:29:2F:DE:4B:63:C7:DA:39:2E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/d84b7a-7eb0-46a2-8a8a-026626ae31f5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/d84b7a-7eb0-46a2-8a8a-026626ae31f5/1/1-75S2DTiaNxpiDApL95LY8faOS4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.149.128.0/24
193.149.137.0-193.149.138.255
193.149.140.0/23
193.149.146.0/23
193.149.150.0/24
193.149.152.0/24
193.149.154.0/24
193.149.165.0/24
193.149.171.0-193.149.172.255
193.149.177.0/24
193.149.184.0/24
193.149.186.0/24
193.149.188.0/24
193.149.191.0/24
195.85.0.0/23
195.85.4.0/23
195.85.8.0/23
195.85.13.0-195.85.18.255
195.85.22.0/24
195.85.24.0-195.85.26.255
195.85.28.0/22
195.85.37.0/24
195.85.39.0/24
195.85.45.0-195.85.47.255
195.85.50.0/24
195.85.52.0/23
195.85.55.0-195.85.58.255
195.85.60.0/23
195.85.66.0/23
195.85.74.0/24
195.85.76.0/23
195.85.80.0-195.85.84.255
195.85.86.0/23
195.85.89.0-195.85.93.255
195.85.96.0-195.85.101.255
195.85.104.0/23
195.85.109.0-195.85.112.255
195.85.117.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15411
Signature Algorithm: sha256WithRSAEncryption
25:5a:48:52:07:05:1f:8d:c5:3b:15:f4:26:3f:1c:3b:29:34:
c1:c0:d1:3c:96:be:76:a9:e7:9b:ff:5c:c2:98:81:de:39:a7:
ec:3a:03:4a:a3:1f:96:3e:d9:81:8f:77:48:20:e4:f0:fc:e4:
51:a8:5f:ff:f4:c6:bb:43:59:b7:e7:c3:e8:ce:ce:1b:30:ff:
c1:ef:00:34:f6:77:f6:ea:e8:77:e5:34:e1:5d:9e:0d:76:4e:
65:e4:53:4b:46:36:4d:aa:de:2f:c4:7a:e3:53:2d:cf:7c:b0:
99:22:85:5a:6b:12:e6:9c:80:71:ec:ec:ed:01:5f:4d:d4:7d:
28:ec:80:8b:fe:f1:87:36:31:f3:72:62:15:7c:3f:ca:fa:00:
63:d0:75:c2:9e:e8:c3:25:55:1a:7a:ed:15:14:1a:f5:6b:82:
f0:df:45:bf:71:b0:2a:3d:a6:0b:f4:79:3d:bd:9c:27:2f:ae:
e8:94:cb:eb:a5:fd:c7:10:4d:f6:e9:e6:38:2c:39:0a:46:39:
2e:22:98:4e:c7:46:a2:2e:95:60:9f:b7:2e:51:8f:f5:69:38:
35:c4:36:50:ef:1a:52:bb:7c:3e:25:15:30:4e:f7:8f:ae:88:
47:0a:dd:e4:76:31:34:54:4f:43:91:0d:00:2e:bd:3c:26:af:
7d:73:bf:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:59 2025 by rpki-client on console.sobornost.net