Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5Gc-bW4c9vYBFeMFCL4Vu7_l6q0.cer
File: 5Gc-bW4c9vYBFeMFCL4Vu7_l6q0.cer (raw, json)
Hash identifier: 97qv20L1R2xwx937lH8Rq9/omjtw3PYYEWLJyPE0nGo=
Subject key identifier: E4:67:3E:6D:6E:1C:F6:F6:01:15:E3:05:08:BE:15:BB:BF:E5:EA:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194DAFC9D648E0EC0517E3B6D9657C2D5A4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/77/1b5301-e807-4795-b98c-c1594f60968e/1/5Gc-bW4c9vYBFeMFCL4Vu7_l6q0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/77/1b5301-e807-4795-b98c-c1594f60968e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 06 Feb 2025 11:19:36 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 12445
AS: 25002
IP: 79.98.0.0/21
IP: 81.88.224.0/19
IP: 82.115.160.0/19
IP: 83.137.160.0/21
IP: 85.88.192.0/19
IP: 185.39.240.0/22
IP: 195.206.0.0/19
IP: 212.38.32.0/19
IP: 217.146.192.0/20
IP: 2a14:eb00::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:da:fc:9d:64:8e:0e:c0:51:7e:3b:6d:96:57:c2:d5:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 6 11:19:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e4673e6d6e1cf6f60115e30508be15bbbfe5eaad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:86:d1:ab:20:91:07:b8:42:22:0c:e2:3c:14:
c5:93:f5:bc:cd:74:f3:b1:ac:86:47:49:e9:9d:61:
0a:d3:d4:c9:1d:25:a3:93:3a:1c:aa:da:87:bc:ac:
41:44:2a:dd:25:79:45:0d:72:92:b7:75:8b:9c:da:
4f:ac:e6:25:6a:b0:84:bc:67:ab:5e:db:88:ad:2f:
df:57:55:79:14:25:fa:70:c4:3f:5f:68:3a:3a:75:
7e:3f:2b:03:c6:c2:e3:a4:e0:6c:79:f5:b4:22:05:
e4:c4:22:5e:3e:56:dc:91:65:7a:7c:28:49:87:68:
70:21:2a:8f:c3:83:25:c9:57:88:cd:a7:3e:58:8b:
34:e7:4f:1d:1f:72:4e:a2:44:2c:87:93:da:c6:56:
df:e5:10:7b:9c:b8:0b:52:24:bf:b9:c8:fb:af:1d:
54:af:1c:02:22:80:f0:11:c0:90:62:21:f7:f6:f1:
22:4d:85:6d:5d:4d:e6:fc:01:d7:7b:a1:d1:31:b4:
6b:db:23:df:c1:72:a2:29:e1:e7:63:db:6a:0c:68:
ab:fb:4b:93:20:ce:2b:9b:ee:e8:8b:3e:6f:0e:36:
0b:f8:3d:23:70:9f:d6:24:c1:73:13:08:a5:7c:59:
0b:6c:d1:07:93:ec:ba:3e:f5:06:d5:c5:0b:8c:f0:
88:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:67:3E:6D:6E:1C:F6:F6:01:15:E3:05:08:BE:15:BB:BF:E5:EA:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1b5301-e807-4795-b98c-c1594f60968e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/1b5301-e807-4795-b98c-c1594f60968e/1/5Gc-bW4c9vYBFeMFCL4Vu7_l6q0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.0.0/21
81.88.224.0/19
82.115.160.0/19
83.137.160.0/21
85.88.192.0/19
185.39.240.0/22
195.206.0.0/19
212.38.32.0/19
217.146.192.0/20
IPv6:
2a14:eb00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12445
25002
Signature Algorithm: sha256WithRSAEncryption
9d:72:01:a0:3b:0c:e7:b4:13:47:f9:32:fd:cf:99:e8:af:d9:
ed:c1:f7:f0:3b:0d:ec:08:3c:f7:52:6c:14:07:19:73:95:f1:
37:e3:fa:60:7e:74:5b:b4:b3:52:44:b4:c3:30:00:2a:ed:85:
d7:10:fa:a9:49:9c:97:d6:04:1e:21:d1:a9:3b:aa:5d:fe:cf:
58:24:6e:29:24:be:88:7f:84:e6:f0:97:9a:51:71:39:01:e4:
d5:54:b3:4a:3c:16:30:ac:17:ef:7b:3c:1c:dc:14:d1:f8:ac:
fd:e6:b0:a0:3b:ee:aa:73:9f:63:34:00:77:08:de:8d:b2:96:
0d:79:18:f9:be:e7:1d:84:ca:0f:b0:aa:1a:64:f0:d9:c6:46:
8e:3b:30:39:34:56:bc:b5:1b:5b:b3:87:72:f3:12:93:cb:f0:
0c:32:65:5c:b4:9c:cb:b7:b7:01:64:92:9d:c0:a0:d9:f1:04:
e8:92:6c:73:81:42:b5:27:51:e1:47:46:18:e3:17:be:61:0a:
6d:72:67:dd:e7:12:82:9c:76:65:b0:4b:6b:3b:1d:0e:65:8c:
2d:e2:a1:84:02:06:44:66:fe:d2:be:ec:22:32:2b:36:76:ae:
70:c0:05:0b:c0:a7:57:76:a7:89:79:ed:a0:94:db:fe:81:d7:
d6:ce:48:f5
-----BEGIN CERTIFICATE-----
MIIF1jCCBL6gAwIBAgISAZTa/J1kjg7AUX47bZZXwtWkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMjA2MTExOTM2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDY3M2U2ZDZlMWNmNmY2MDExNWUzMDUwOGJlMTViYmJmZTVlYWFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuobRqyCRB7hCIgziPBTFk/W8zXTz
sayGR0npnWEK09TJHSWjkzocqtqHvKxBRCrdJXlFDXKSt3WLnNpPrOYlarCEvGer
XtuIrS/fV1V5FCX6cMQ/X2g6OnV+PysDxsLjpOBsefW0IgXkxCJePlbckWV6fChJ
h2hwISqPw4MlyVeIzac+WIs0508dH3JOokQsh5Paxlbf5RB7nLgLUiS/ucj7rx1U
rxwCIoDwEcCQYiH39vEiTYVtXU3m/AHXe6HRMbRr2yPfwXKiKeHnY9tqDGir+0uT
IM4rm+7oiz5vDjYL+D0jcJ/WJMFzEwilfFkLbNEHk+y6PvUG1cULjPCIjQIDAQAB
o4IC4jCCAt4wHQYDVR0OBBYEFORnPm1uHPb2ARXjBQi+Fbu/5eqtMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc3LzFiNTMw
MS1lODA3LTQ3OTUtYjk4Yy1jMTU5NGY2MDk2OGUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcvMWI1MzAx
LWU4MDctNDc5NS1iOThjLWMxNTk0ZjYwOTY4ZS8xLzVHYy1iVzRjOXZZQkZlTUZD
TDRWdTdfbDZxMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GCCsGAQUF
BwEHAQH/BE8wTTA8BAIAATA2AwQDT2IAAwQFUVjgAwQFUnOgAwQDU4mgAwQFVVjA
AwQCuSfwAwQFw84AAwQF1CYgAwQE2ZLAMA0EAgACMAcDBQMqFOsAMB0GCCsGAQUF
BwEIAQH/BA4wDKAKMAgCAjCdAgJhqjANBgkqhkiG9w0BAQsFAAOCAQEAnXIBoDsM
57QTR/ky/c+Z6K/Z7cH38DsN7Ag891JsFAcZc5XxN+P6YH50W7SzUkS0wzAAKu2F
1xD6qUmcl9YEHiHRqTuqXf7PWCRuKSS+iH+E5vCXmlFxOQHk1VSzSjwWMKwX73s8
HNwU0fis/eawoDvuqnOfYzQAdwjejbKWDXkY+b7nHYTKD7CqGmTw2cZGjjswOTRW
vLUbW7OHcvMSk8vwDDJlXLScy7e3AWSSncCg2fEE6JJsc4FCtSdR4UdGGOMXvmEK
bXJn3ecSgpx2ZbBLazsdDmWMLeKhhAIGRGb+0r7sIjIrNnaucMAFC8CnV3aniXnt
oJTb/oHX1s5I9Q==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:28 2025 by rpki-client on console.sobornost.net