Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
File: 7094lHNBzlWIi36_NpAUOwy_89Y.cer (raw, json)
Hash identifier: ugNySIdf5oSZjt7CNyGcWSdV3VgE5IuYPxDVmp8jWOc=
Subject key identifier: EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FDDE8BFBFBDF5391E94A290A0416CF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/7094lHNBzlWIi36_NpAUOwy_89Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:49:42 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 15954
AS: 16134
AS: 60682
AS: 62376
AS: 208036
IP: 31.24.120.0/21
IP: 31.47.72.0/21
IP: 37.247.120.0/21
IP: 91.216.219.0/24
IP: 185.1.20.0/24
IP: 185.49.184.0/22
IP: 185.57.196.0/22
IP: 185.66.72.0/22
IP: 185.203.224.0/22
IP: 193.247.194.0/23
IP: 193.247.214.0/23
IP: 194.176.119.0/24
IP: 217.18.32.0/20
IP: 2001:7f8:7e::/48
IP: 2a01:a940::/29
IP: 2a02:2810::/32
IP: 2a0a:ee40::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:de:8b:fb:fb:df:53:91:e9:4a:29:0a:04:16:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f0:2e:93:13:fc:21:b5:41:0c:29:09:31:96:
b4:09:5f:de:79:29:2c:6f:02:d7:9d:a7:2c:6f:ca:
e0:d2:be:b1:66:f8:f3:0b:9c:af:07:0f:f4:a8:77:
4d:2c:67:a0:07:b9:4d:07:c3:e1:fd:a2:88:d5:9d:
03:b8:d1:a2:11:10:3b:fa:28:44:93:fb:60:19:d1:
42:72:96:b7:db:25:97:a2:2c:4a:8e:c2:fb:73:91:
cc:93:a8:82:93:9e:85:74:1c:df:a0:07:d2:db:27:
16:ce:8e:57:25:33:49:47:91:f2:9a:cd:6a:a8:4d:
39:bb:7e:77:e2:80:46:2b:f8:f4:af:be:f0:0d:8f:
17:8e:bc:52:74:f3:58:5a:27:38:d0:2b:f1:d6:cf:
cc:cc:ba:67:68:69:9c:25:da:2b:d2:aa:7f:65:94:
39:e5:18:8a:46:a2:25:8b:3f:cd:29:21:62:fa:0d:
bf:8b:aa:8f:87:8e:49:7c:f5:dd:14:9d:68:65:16:
b8:ff:7b:63:96:86:ee:75:5f:77:19:50:50:c8:97:
64:88:b7:00:d3:7d:c9:fc:d5:90:63:29:2f:0a:19:
21:ed:10:05:0e:84:cb:22:4d:b5:ab:0d:b9:dc:22:
d1:9f:ef:17:b2:3b:3e:0a:f7:73:de:ae:f5:7c:ae:
5a:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/7094lHNBzlWIi36_NpAUOwy_89Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.120.0/21
31.47.72.0/21
37.247.120.0/21
91.216.219.0/24
185.1.20.0/24
185.49.184.0/22
185.57.196.0/22
185.66.72.0/22
185.203.224.0/22
193.247.194.0/23
193.247.214.0/23
194.176.119.0/24
217.18.32.0/20
IPv6:
2001:7f8:7e::/48
2a01:a940::/29
2a02:2810::/32
2a0a:ee40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15954
16134
60682
62376
208036
Signature Algorithm: sha256WithRSAEncryption
50:c2:97:61:41:5e:46:1c:12:7e:b2:31:3f:fa:df:44:b4:1f:
8b:ca:e2:52:38:bf:5d:7c:59:7f:4a:4b:c1:63:49:8a:1f:5e:
1f:27:dc:11:b6:b9:e2:cb:b6:f1:f4:a7:1f:e6:d4:76:d1:ef:
8e:d2:17:72:a3:34:35:c9:12:e7:3d:ae:c8:52:0d:37:06:0c:
f9:8f:bc:1b:c7:35:52:0c:05:ff:02:bf:43:f7:fc:68:c6:7b:
2d:d5:84:af:60:0a:1e:05:00:1d:15:39:9d:ad:06:1a:73:88:
c8:89:6e:30:23:3c:bd:3b:56:35:ed:2a:c6:27:3e:14:f9:bd:
40:3c:5e:e0:c1:11:c9:d7:48:8f:79:d8:df:5c:3e:04:1f:f1:
59:f4:bf:04:d1:ec:78:de:51:91:ea:09:64:fd:e0:f0:74:0c:
19:f4:d1:0c:f0:d8:49:0d:ee:d1:19:58:1c:09:87:a7:97:14:
44:b9:37:01:65:3f:d4:1d:29:f5:22:f3:84:68:96:22:3c:d8:
b0:51:66:ae:59:c8:77:0f:ff:99:ab:5b:4d:e7:98:d1:38:1a:
57:f0:e4:97:07:4f:7d:84:7b:8e:b1:94:59:f8:a4:48:70:11:
3e:5e:0f:d3:b9:d7:7a:24:5f:bf:3a:8f:5b:3f:ba:46:27:e6:
0c:8c:c9:b9
-----BEGIN CERTIFICATE-----
MIIGFTCCBP2gAwIBAgISAZQl/d6L+/vfU5HpSikKBBbPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDc0OTQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjRmNzg5NDczNDFjZTU1ODg4YjdlYmYzNjkwMTQzYjBjYmZmM2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/AukxP8IbVBDCkJMZa0CV/eeSks
bwLXnacsb8rg0r6xZvjzC5yvBw/0qHdNLGegB7lNB8Ph/aKI1Z0DuNGiERA7+ihE
k/tgGdFCcpa32yWXoixKjsL7c5HMk6iCk56FdBzfoAfS2ycWzo5XJTNJR5Hyms1q
qE05u3534oBGK/j0r77wDY8XjrxSdPNYWic40Cvx1s/MzLpnaGmcJdor0qp/ZZQ5
5RiKRqIliz/NKSFi+g2/i6qPh45JfPXdFJ1oZRa4/3tjlobudV93GVBQyJdkiLcA
033J/NWQYykvChkh7RAFDoTLIk21qw253CLRn+8Xsjs+Cvdz3q71fK5a8QIDAQAB
o4IDITCCAx0wHQYDVR0OBBYEFO9PeJRzQc5ViIt+vzaQFDsMv/PWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzdhLzAwNWM5
ZS1mZTdjLTQ2OWEtYjZmMC05YmFhNjZjYTE0MDQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2EvMDA1Yzll
LWZlN2MtNDY5YS1iNmYwLTliYWE2NmNhMTQwNC8xLzcwOTRsSE5CemxXSWkzNl9O
cEFVT3d5Xzg5WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGNBggrBgEF
BQcBBwEB/wR+MHwwVAQCAAEwTgMEAx8YeAMEAx8vSAMEAyX3eAMEAFvY2wMEALkB
FAMEArkxuAMEArk5xAMEArlCSAMEArnL4AMEAcH3wgMEAcH31gMEAMKwdwMEBNkS
IDAkBAIAAjAeAwcAIAEH+AB+AwUDKgGpQAMFACoCKBADBQAqCu5AMCwGCCsGAQUF
BwEIAQH/BB0wG6AZMBcCAj5SAgI/BgIDAO0KAgMA86gCAwMspDANBgkqhkiG9w0B
AQsFAAOCAQEAUMKXYUFeRhwSfrIxP/rfRLQfi8riUji/XXxZf0pLwWNJih9eHyfc
Eba54su28fSnH+bUdtHvjtIXcqM0NckS5z2uyFINNwYM+Y+8G8c1UgwF/wK/Q/f8
aMZ7LdWEr2AKHgUAHRU5na0GGnOIyIluMCM8vTtWNe0qxic+FPm9QDxe4MERyddI
j3nY31w+BB/xWfS/BNHseN5RkeoJZP3g8HQMGfTRDPDYSQ3u0RlYHAmHp5cURLk3
AWU/1B0p9SLzhGiWIjzYsFFmrlnIdw//matbTeeY0TgaV/DklwdPfYR7jrGUWfik
SHARPl4P07nXeiRfvzqPWz+6RifmDIzJuQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:53 2025 by rpki-client on console.sobornost.net