Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9XvH8urwyvppvuX6vmcSK0Nj_nI.cer
File: 9XvH8urwyvppvuX6vmcSK0Nj_nI.cer (raw, json)
Hash identifier: goSIG0NUNMRaI2S7Qau8+4WerdemUs6e7xnuITDtRPQ=
Subject key identifier: F5:7B:C7:F2:EA:F0:CA:FA:69:BE:E5:FA:BE:67:12:2B:43:63:FE:72
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F637904B1D51FCA47A311E7D93AB0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e3/4441b4-f981-4c26-9b99-1010473f4fe8/1/9XvH8urwyvppvuX6vmcSK0Nj_nI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e3/4441b4-f981-4c26-9b99-1010473f4fe8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:49:01 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200567
IP: 45.146.132.0/22
IP: 46.16.216.0/21
IP: 185.39.176.0/22
IP: 185.70.144.0/22
IP: 185.109.32.0/22
IP: 192.109.223.0/24
IP: 192.109.231.0/24
IP: 192.109.235.0/24
IP: 192.109.239.0/24
IP: 2a02:4500::/29
IP: 2a05:2a80::/29
IP: 2a06:4e40::/29
IP: 2a0f:1000::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:63:79:04:b1:d5:1f:ca:47:a3:11:e7:d9:3a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f57bc7f2eaf0cafa69bee5fabe67122b4363fe72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e0:4d:91:ba:3b:06:c8:8f:2b:d0:b9:ab:35:
39:50:a9:6d:fa:a9:e1:39:3f:5c:61:10:dd:b1:d7:
95:57:08:6a:50:5f:fe:b1:41:a8:5e:0c:d6:d9:1d:
b9:97:94:b7:3a:2e:b9:00:c4:b0:42:d6:4a:65:46:
97:5a:51:3d:fb:20:a2:b9:f8:39:03:1c:64:17:15:
73:ed:c7:cd:a4:d8:0e:a5:e7:d2:2b:26:6c:f2:a9:
66:86:7c:97:48:c0:75:82:a8:6f:31:a4:6c:ba:ab:
e2:bd:84:8a:1e:a0:4b:3a:0f:ca:f4:1e:21:d7:9f:
7c:48:2e:e7:4d:3f:89:f0:48:78:9d:10:79:d8:53:
e6:1c:8e:8b:a5:a7:26:30:de:28:3f:f2:2d:cd:29:
c4:93:db:50:f6:00:07:2e:21:cd:2a:f7:57:f1:df:
a9:39:75:8b:64:16:8f:6c:93:9d:03:0c:61:dd:86:
60:29:a3:a3:de:26:48:11:38:a1:95:47:ce:a4:46:
2b:3a:ce:cd:9c:8e:2a:a8:02:5c:5d:09:de:01:73:
ae:8c:fb:d8:e1:68:fb:8a:3a:cb:15:36:65:e1:03:
11:cf:9a:6c:8b:b3:d8:ed:3c:44:35:06:e3:48:47:
af:c9:e7:59:c0:5c:fa:5b:7c:0b:ed:60:5a:3d:83:
5a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7B:C7:F2:EA:F0:CA:FA:69:BE:E5:FA:BE:67:12:2B:43:63:FE:72
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4441b4-f981-4c26-9b99-1010473f4fe8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/4441b4-f981-4c26-9b99-1010473f4fe8/1/9XvH8urwyvppvuX6vmcSK0Nj_nI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.132.0/22
46.16.216.0/21
185.39.176.0/22
185.70.144.0/22
185.109.32.0/22
192.109.223.0/24
192.109.231.0/24
192.109.235.0/24
192.109.239.0/24
IPv6:
2a02:4500::/29
2a05:2a80::/29
2a06:4e40::/29
2a0f:1000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200567
Signature Algorithm: sha256WithRSAEncryption
02:8b:1f:4c:b2:49:78:a0:96:3c:f5:ff:f0:99:33:df:1c:b3:
37:dd:f4:f2:90:b0:20:bd:90:47:a3:0b:4c:bb:37:70:0e:f9:
06:14:4f:2f:46:fa:54:85:70:72:b7:8b:3b:72:8a:e0:74:3f:
d0:5b:50:63:71:e9:c1:d0:27:52:9e:8f:2d:93:16:2a:82:b1:
31:52:ed:72:c6:ae:ad:ca:e8:d0:13:a9:e4:25:c9:04:1b:3b:
94:7c:2b:12:78:f2:99:27:3e:3e:b8:f9:7c:b0:14:ca:85:e0:
64:a2:18:cf:6f:e2:ed:d8:9d:0c:36:84:a5:a6:23:8f:f0:32:
37:09:ab:e1:fb:e6:51:ec:85:31:8a:d1:c3:96:67:20:0a:c2:
c1:df:be:54:36:fa:99:2d:04:47:43:10:d6:b4:49:ed:07:b1:
ea:b5:8d:e3:2f:d9:e3:4d:f4:6e:e6:fe:a6:d9:0c:fe:57:2f:
d8:2c:b2:5e:3f:fd:ad:7e:62:2d:d6:00:46:c7:24:39:61:54:
cc:18:d5:d9:e5:3d:47:76:19:7b:45:29:d3:09:02:d4:f8:34:
fd:a5:dd:a2:be:4f:4c:68:9c:04:82:de:f0:3c:72:bd:d5:50:
59:3d:0f:ec:cb:a2:22:39:50:87:0c:bb:69:dc:8f:c0:b0:59:
d8:14:c8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:30 2025 by rpki-client on console.sobornost.net