Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer
File: 4aIfhfm_F8AgmH6hMg09Y8Va5Ik.cer (raw, json)
Hash identifier: wjHQjSv+T/DtlSZz90HzTl804vT89F3SlIAURGz6QUs=
Subject key identifier: E1:A2:1F:85:F9:BF:17:C0:20:98:7E:A1:32:0D:3D:63:C5:5A:E4:89
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA29214C25DD328192458444315A72
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:47:55 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 202803
IP: 185.154.44.0/22
IP: 2a0b:5ac0::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:29:21:4c:25:dd:32:81:92:45:84:44:31:5a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e1a21f85f9bf17c020987ea1320d3d63c55ae489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d0:e3:13:04:8c:4b:47:56:d5:48:74:b7:35:
b6:cb:11:ea:43:3c:5d:29:89:00:9f:0d:c8:13:09:
19:b1:2d:bc:3e:81:d8:ae:49:d0:94:c0:5f:c8:c3:
c5:9d:df:8b:6b:eb:59:94:0c:b5:60:44:29:61:94:
51:b2:28:e4:e2:ff:aa:e3:81:d0:6e:32:e9:6a:47:
5c:ea:bb:41:59:dc:ff:04:c7:aa:e0:c8:fc:9c:b1:
0f:71:29:23:3e:57:37:c4:18:7c:58:92:05:22:71:
0b:17:75:6b:c2:3d:8c:da:1e:64:46:39:f0:97:38:
68:ee:94:50:99:74:e0:e4:a6:31:a0:bc:63:6b:5c:
bb:a7:1a:93:76:c6:d5:f7:94:96:a4:fa:76:42:88:
ec:a4:94:55:00:c3:f5:bb:04:0e:f7:2f:87:11:0a:
fc:1b:fe:fe:5f:fb:b0:02:0c:85:a3:c5:d8:00:ec:
a2:ea:d4:7e:d3:ea:8a:25:85:a3:b0:82:1a:4d:70:
bb:33:e0:37:69:63:38:67:34:2f:19:98:ee:17:72:
2f:eb:c2:19:93:d7:45:45:83:75:2a:51:03:99:9e:
ec:71:3f:f1:b2:6b:1b:73:d6:58:6c:4d:ae:85:b8:
99:12:97:ef:ae:bd:83:30:3d:d5:7c:e8:a9:76:0d:
bf:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:A2:1F:85:F9:BF:17:C0:20:98:7E:A1:32:0D:3D:63:C5:5A:E4:89
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/53208d-6c31-4e12-aa25-862684eceb46/1/4aIfhfm_F8AgmH6hMg09Y8Va5Ik.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.44.0/22
IPv6:
2a0b:5ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202803
Signature Algorithm: sha256WithRSAEncryption
26:76:e2:af:df:ce:d2:6e:79:28:3d:1c:90:e4:ae:e4:1f:20:
22:af:e6:50:6f:ca:30:9f:fb:d4:9f:be:da:b8:b8:f2:36:88:
7b:80:ec:c7:ac:04:c5:62:a4:32:07:ca:5c:5a:28:ad:11:98:
b2:a8:f5:e8:55:4e:11:b0:b6:53:67:9d:0f:38:c2:6d:09:bc:
14:d3:1c:66:d0:31:bb:88:f3:3e:09:43:ea:50:0a:5c:f6:bc:
f8:bb:88:5d:3d:c2:fd:d0:fc:80:78:92:2a:95:a5:98:20:39:
c0:3f:5f:12:f2:ef:f3:3b:04:5c:3e:60:de:d4:4a:bc:e9:1b:
45:06:66:13:1d:d0:2b:cd:e1:81:ec:14:dc:af:bc:b6:cf:02:
c5:f8:7a:28:2b:86:3b:f1:1e:1b:fd:4b:fa:68:65:dc:62:e5:
75:ab:92:d5:e9:24:f6:c8:d4:ad:e0:10:f9:0f:3d:b6:91:c4:
a6:cb:4a:a4:58:0a:63:97:af:58:44:32:be:e0:7a:03:d6:70:
ab:15:43:2b:a6:be:f2:80:aa:f5:23:e4:1d:c0:38:4b:81:65:
87:97:0f:e7:34:50:93:77:2f:9e:39:5e:14:d9:bb:43:7a:1d:
4b:f8:9e:c9:09:2b:1f:4c:3c:ba:a8:ba:99:22:30:34:9d:94:
f5:d6:93:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:04 2025 by rpki-client on console.sobornost.net