Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2rU_myHRPgeOPoRNZF7qhYDxzOE.cer
File: 2rU_myHRPgeOPoRNZF7qhYDxzOE.cer (raw, json)
Hash identifier: k6IwW649x/BvW8cMh2XjBYQaoXsGXGlZ0p/flx9X5Js=
Subject key identifier: DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228E23A722E224669456D5136E0ECD60
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 33874
IP: 37.75.32.0/19
IP: 77.25.128.0/17
IP: 77.243.64.0/20
IP: 80.85.96.0/20
IP: 109.200.32.0/19
IP: 159.20.24.0/21
IP: 176.99.32.0/20
IP: 185.5.48.0/22
IP: 188.172.0.0 -- 188.172.95.255
IP: 2a10:5500::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:23:a7:22:e2:24:66:94:56:d5:13:6e:0e:cd:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dab53f9b21d13e078e3e844d645eea8580f1cce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:35:40:c5:12:de:be:0d:cc:64:4a:99:76:d9:
8f:c9:af:6d:9d:39:b4:b6:70:56:7e:03:d4:3f:92:
58:d8:e1:89:a5:e2:c8:e4:df:8f:3f:7b:14:a9:c8:
c8:c9:ea:f8:73:90:15:86:b2:37:e9:32:fc:3a:da:
23:89:12:89:d2:40:18:b7:fb:61:76:76:8b:ee:33:
f6:6a:8b:f9:7f:b4:91:cd:ab:6c:2a:d7:8c:82:9a:
a4:32:b5:53:15:a0:7c:59:73:53:65:e4:15:bb:da:
8a:e5:14:15:25:95:76:22:42:e1:ab:be:fa:6f:5e:
c6:dc:92:15:9a:15:13:5e:9a:e1:94:3d:0f:9f:73:
54:98:04:80:a4:09:8c:ed:5a:31:46:4d:1b:c8:91:
64:4f:b8:72:e4:01:7d:3a:6c:fb:1e:a8:14:82:36:
ff:32:d9:2c:6c:da:28:3e:5f:ce:7e:11:41:5e:e2:
f0:9b:6b:eb:cc:44:c1:f4:81:e7:5c:bb:df:46:44:
31:9a:9e:8a:e7:e4:21:ce:79:64:5b:da:8e:12:a5:
02:5b:2b:4b:bf:de:69:07:cb:fb:06:39:87:2c:f4:
36:98:e2:f6:a2:73:9b:52:e3:23:4a:a8:f9:a2:34:
05:3e:75:5d:76:b8:b0:ce:42:0b:3e:69:da:45:65:
72:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B5:3F:9B:21:D1:3E:07:8E:3E:84:4D:64:5E:EA:85:80:F1:CC:E1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7f9ab1-bc7c-4d0d-a970-5b8bc590b197/1/2rU_myHRPgeOPoRNZF7qhYDxzOE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.75.32.0/19
77.25.128.0/17
77.243.64.0/20
80.85.96.0/20
109.200.32.0/19
159.20.24.0/21
176.99.32.0/20
185.5.48.0/22
188.172.0.0-188.172.95.255
IPv6:
2a10:5500::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
33874
Signature Algorithm: sha256WithRSAEncryption
2f:17:97:fb:7a:04:48:7a:30:33:86:e0:c9:8b:cd:03:d1:01:
75:59:b8:6e:03:f3:b5:a6:70:30:f5:f3:51:9d:7d:ed:23:0d:
f1:9a:22:b1:56:a7:95:80:0a:22:71:c2:79:02:5e:c7:cf:fd:
5d:41:77:fb:c9:49:52:da:bc:ea:42:d9:2f:f8:63:2e:28:65:
06:07:43:8a:06:f8:ed:00:74:ae:9b:72:f2:a2:90:c9:38:b6:
a9:f2:a6:93:dc:fb:22:81:a1:78:47:1a:58:7b:62:99:bf:38:
60:6a:47:32:6f:e6:80:1a:5f:1f:01:72:ad:88:bc:d7:7b:f2:
cd:0c:f3:94:96:6c:56:44:09:54:a6:f2:7e:e0:dd:97:1b:8e:
e3:3f:51:42:49:5c:00:ba:ee:95:27:f9:38:b1:26:6d:5b:3d:
a1:bd:46:82:91:12:6e:87:90:83:2e:06:f3:e5:23:e3:38:3e:
67:8e:4d:4a:58:75:f1:d3:5c:62:ff:a1:5f:7e:d9:6a:0b:e6:
94:76:84:55:d4:3a:62:aa:bc:77:0a:8f:3d:44:89:43:ed:e1:
99:6c:52:e5:0a:fd:1b:6c:e0:96:2b:74:4a:bb:50:e1:e0:1c:
96:3d:4e:83:94:ae:ab:07:73:f5:dd:2a:28:e8:b6:c7:2b:85:
27:cc:05:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:33 2025 by rpki-client on console.sobornost.net