Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer
File: Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.cer (raw, json)
Hash identifier: G6o5ZTcalbvqmTa/JUM4VYdWG+2QNfhDsA6RxSsUfag=
Subject key identifier: 01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5D7318CAC341E606853879A517A8F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50785
IP: 5.144.40.0/21
IP: 81.18.16.0/20
IP: 185.128.172.0/22
IP: 185.152.224.0/22
IP: 193.135.175.0/24
IP: 193.246.158.0/24
IP: 193.246.163.0/24
IP: 193.246.168.0/23
IP: 2a02:d38::/29
IP: 2a06:d040::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:d7:31:8c:ac:34:1e:60:68:53:87:9a:51:7a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=01bfe882d13e803fc194373ea40d8a5a9e69f304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c2:7c:80:1b:36:d8:1e:7e:73:6f:ec:bd:ee:
bf:69:6d:c5:b1:ee:4c:55:4e:73:ed:bb:ee:a6:ac:
a1:be:21:be:d6:79:34:d3:ff:19:08:40:be:dc:fa:
9c:d8:6f:48:c3:51:94:f1:f5:a5:78:44:12:32:f9:
fb:d9:af:5d:1e:cb:4a:8d:c3:1b:88:bd:69:7d:c7:
23:21:38:5f:74:a3:e2:f8:d2:bb:f3:aa:d4:b4:27:
e3:4e:ca:93:53:ab:5f:2c:6d:bd:28:a6:b8:01:8c:
92:29:e0:e0:db:81:98:6f:9a:e9:fc:9e:f7:a9:95:
81:94:1a:f4:9f:a7:84:03:56:a6:83:9c:6b:9d:d8:
1c:f0:5b:c7:e1:12:42:26:35:8e:7e:1b:fd:aa:be:
41:d2:66:36:16:0a:60:68:38:d3:c5:b0:2a:fb:fa:
36:ef:22:e5:cb:66:13:f7:eb:3b:21:1e:ea:82:4f:
1f:18:82:8d:2d:14:8f:dd:71:b8:16:87:7b:40:26:
d8:ad:00:96:53:b6:3e:ba:ad:64:12:61:b0:05:37:
2e:fb:f6:94:69:a9:09:ef:4b:61:91:2b:ab:17:70:
43:1c:3c:7d:09:d3:17:b8:1f:84:8d:09:3d:c9:0e:
4b:fe:0f:ec:62:74:b8:03:0d:a1:74:97:81:fa:18:
06:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:BF:E8:82:D1:3E:80:3F:C1:94:37:3E:A4:0D:8A:5A:9E:69:F3:04
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/66c08a-ee59-4771-a8f2-2a55399a80b0/1/Ab_ogtE-gD_BlDc-pA2KWp5p8wQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.40.0/21
81.18.16.0/20
185.128.172.0/22
185.152.224.0/22
193.135.175.0/24
193.246.158.0/24
193.246.163.0/24
193.246.168.0/23
IPv6:
2a02:d38::/29
2a06:d040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50785
Signature Algorithm: sha256WithRSAEncryption
35:54:bd:5c:de:86:ff:54:db:c7:19:6e:31:78:13:69:3f:e2:
d3:09:db:e4:e5:eb:0a:8a:85:71:47:11:6c:02:54:39:58:5a:
6b:c5:8c:2a:de:bc:ba:4f:46:2d:66:a6:7b:ee:f3:d8:d0:c2:
29:84:c4:ee:f2:21:bb:86:0b:5d:44:5e:8b:2a:46:c4:a7:1b:
d6:d6:ac:19:53:ee:bf:b8:45:b2:88:31:90:5a:16:a5:29:f6:
73:c8:ad:6c:be:cc:9e:ce:bb:7b:e3:43:ac:8b:a9:bb:4b:4d:
46:70:63:07:58:f8:ad:01:e9:0e:88:5f:ce:9d:d2:ff:fd:f2:
cb:28:a9:80:ad:88:cb:8d:0e:e0:ff:ec:5d:5d:86:8a:53:94:
c2:d9:55:93:d5:db:d5:4c:dd:7f:40:ad:08:b1:c3:34:87:38:
c1:b9:98:51:06:88:4c:25:64:96:c8:8d:8d:39:a4:46:9d:3f:
73:6b:12:cd:a3:23:d6:9a:74:be:29:a0:cb:f3:47:32:39:89:
67:0b:38:34:b0:a0:b8:17:e1:cd:04:b8:26:6b:92:de:83:fb:
5f:51:96:85:ed:61:c9:99:cb:04:ff:66:20:46:8c:1a:02:9e:
e7:80:2c:3f:c5:4f:55:86:1e:57:9d:2d:e5:c6:49:bb:2f:0a:
6b:b5:58:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:29:58 2025 by rpki-client on console.sobornost.net