Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer
File: 3ZwwOZ9jhVX0wC6NG1W8knIly1E.cer (raw, json)
Hash identifier: +aK0Rj4St+UbsRvDgz+KiPSdpTyg5mh4PP8KPkt2FnM=
Subject key identifier: DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228DFD415B149FFF00D5BB8925E7A2AA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:38 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49773
IP: 91.218.80.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:fd:41:5b:14:9f:ff:00:d5:bb:89:25:e7:a2:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dd9c30399f638555f4c02e8d1b55bc927225cb51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0d:88:9a:26:d0:82:1a:77:a9:4d:4a:66:3c:
06:38:bc:14:b8:46:79:c8:28:a6:1c:a4:b5:93:b1:
17:2c:d1:6d:a9:35:83:3c:9f:fa:7a:81:ce:0d:66:
a9:68:5b:66:56:9f:b8:0e:b1:91:8a:21:61:f8:36:
e0:e3:a8:9a:ad:0b:94:2b:02:2b:c8:ac:b5:d4:e3:
d8:01:76:9e:b8:66:bd:c4:5d:0b:71:b3:bf:f5:55:
af:3c:f4:98:35:3e:98:c2:13:14:b8:f4:84:64:cc:
50:f8:a4:1b:37:ad:ae:d5:6f:2f:f7:7f:3e:9e:52:
24:10:e0:84:04:3b:cd:14:cc:0e:76:38:59:5f:63:
54:46:82:54:0f:c0:cd:ab:ac:41:6e:25:87:1f:06:
0d:52:e2:74:41:29:10:b4:82:50:92:49:b3:8f:ad:
28:f0:da:4a:f5:cd:9e:c6:2d:33:4f:66:38:05:ed:
cb:6b:c7:72:46:39:96:69:d6:02:d1:68:50:07:02:
2a:0a:67:21:e3:1d:e0:c8:71:02:ee:a6:ac:6c:56:
cd:53:43:fc:ac:99:a2:9a:a8:d2:5f:b0:c0:2b:78:
5d:98:58:4b:29:d7:2a:b9:48:8f:c4:41:71:3a:c1:
9a:66:ea:ef:a6:6c:3b:43:be:2e:cc:66:8f:7e:8b:
ad:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9C:30:39:9F:63:85:55:F4:C0:2E:8D:1B:55:BC:92:72:25:CB:51
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/beca4d-70cc-4ca4-b452-0e514062c590/1/3ZwwOZ9jhVX0wC6NG1W8knIly1E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.80.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49773
Signature Algorithm: sha256WithRSAEncryption
81:e0:aa:04:ee:a4:1e:3d:34:ee:e3:38:98:3a:03:16:ae:c1:
26:10:5a:65:43:eb:50:52:60:f3:b4:5e:81:4e:26:55:83:b4:
66:3a:ff:20:e0:90:2e:56:2b:d4:5f:dd:25:0a:ca:98:14:33:
eb:27:a6:42:d3:54:6a:b2:53:87:5b:eb:47:28:ed:0b:ed:42:
43:2f:10:57:49:86:c7:8d:87:a2:07:7b:1b:31:8a:ee:6d:2f:
cf:ef:cb:8e:24:35:73:44:d2:8c:57:8a:72:87:d6:1e:05:ce:
4e:80:a1:33:3f:1f:ad:96:92:2c:4b:7b:04:21:46:9c:53:bc:
1a:7b:9a:4e:b3:47:51:68:ef:3a:62:dc:39:a7:9a:98:f1:7b:
60:a6:61:d6:76:36:23:ea:88:59:02:cb:99:6b:f7:33:c3:c2:
5a:fd:8e:90:4c:eb:af:12:21:2e:40:50:00:f1:42:f0:57:aa:
be:67:a6:37:53:64:1b:83:6b:38:37:44:c4:14:9d:b0:5f:70:
e8:6b:10:4c:65:a1:c7:2e:34:9b:b9:b3:bb:a2:f5:5c:79:e4:
72:77:59:b4:1a:6c:d0:0f:44:b7:46:4f:6a:69:b3:d4:bb:38:
3d:17:34:0c:8a:05:fa:ba:61:a8:4e:e6:7b:b9:9a:95:a8:49:
4c:62:59:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:27:49 2025 by rpki-client on console.sobornost.net