Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Bs8Z4Ze9r5TmEA4OF4COE9SFT5w.cer
File: Bs8Z4Ze9r5TmEA4OF4COE9SFT5w.cer (raw, json)
Hash identifier: GPyKLl3YTBfIg1Civ9QRv3jEJyYUT4S+q2KlxDG6I4c=
Subject key identifier: 06:CF:19:E1:97:BD:AF:94:E6:10:0E:0E:17:80:8E:13:D4:85:4F:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C4AB4B777B5AAB8E930FBAF642558
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0b/98d620-1599-4863-9629-356505303c49/1/Bs8Z4Ze9r5TmEA4OF4COE9SFT5w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0b/98d620-1599-4863-9629-356505303c49/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:55 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.241.144.0/22
IP: 2a0c:a380::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:4a:b4:b7:77:b5:aa:b8:e9:30:fb:af:64:25:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=06cf19e197bdaf94e6100e0e17808e13d4854f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bd:86:e2:12:72:c1:7c:a0:f6:d6:ff:3c:77:
6a:53:45:31:38:67:20:ce:14:38:c6:03:da:33:45:
65:9b:a4:ba:db:7b:72:8b:6d:76:4d:3c:c5:e4:9b:
9c:98:1c:a6:cb:69:ec:90:6d:21:cb:b1:9e:7a:c7:
80:b9:08:53:5c:2f:8f:30:7c:5a:e6:bf:bf:b9:9b:
c9:6f:6d:17:c4:67:da:1f:b4:db:cd:15:02:73:55:
b0:88:6a:cd:eb:01:c0:af:ce:67:18:be:c1:d5:aa:
0e:b4:dc:76:99:5f:94:c0:3e:ae:78:ec:8f:13:d0:
34:0f:41:0a:fd:3f:f9:ee:b1:60:13:15:80:3e:30:
6f:13:7b:58:47:7a:5f:cd:59:3d:c2:49:57:f6:d0:
9d:02:4a:71:8b:7f:1d:7c:d0:d1:03:65:84:d1:45:
6e:fe:bd:ab:03:f4:1d:9c:c3:da:7d:b3:84:0b:4f:
c7:4c:75:99:0f:1e:30:c5:66:44:fa:20:cc:aa:63:
e7:3e:24:cf:37:1a:98:e7:a1:42:39:30:1d:2e:79:
a0:2d:ec:15:f2:d8:6f:db:24:02:36:de:65:59:e6:
f6:98:b9:d4:db:3d:f2:7c:fc:bb:cf:bc:90:29:80:
10:d2:cd:11:bd:ff:70:9c:ba:20:3e:18:5a:18:b9:
db:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CF:19:E1:97:BD:AF:94:E6:10:0E:0E:17:80:8E:13:D4:85:4F:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/98d620-1599-4863-9629-356505303c49/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/98d620-1599-4863-9629-356505303c49/1/Bs8Z4Ze9r5TmEA4OF4COE9SFT5w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.144.0/22
IPv6:
2a0c:a380::/29
Signature Algorithm: sha256WithRSAEncryption
7e:36:11:af:70:20:f7:94:b8:cf:ee:4c:62:f1:2a:32:df:d7:
f0:a1:84:09:42:b2:b7:02:26:00:15:6c:4b:c2:1e:d5:86:1a:
15:9d:ea:32:99:68:db:64:5a:92:98:37:75:c9:03:a3:0d:59:
95:ef:df:bf:5d:61:21:18:b4:c1:5d:7a:06:d2:1e:05:43:da:
34:bb:c9:13:f8:5a:36:91:1c:75:71:84:9e:bf:e1:41:bb:95:
cf:96:6f:c6:fe:29:bf:b7:d9:c7:ca:32:7c:a5:4d:65:8e:9d:
39:18:bf:f5:bc:bf:99:b1:20:f8:5a:52:42:2f:17:de:05:49:
38:4c:bb:6a:ae:54:6a:d2:8f:02:db:9f:37:b3:7c:0d:2f:27:
fd:71:a9:e2:fd:e3:8b:f1:b5:8f:25:49:7c:3b:3a:e8:47:d6:
cc:d7:15:d4:50:69:3a:1a:fb:30:66:28:7c:cb:22:2d:a7:54:
8f:05:94:fa:a9:be:dd:f8:d1:22:f9:0c:81:02:c0:a6:86:bb:
3e:14:22:1b:35:ae:05:52:f1:a6:be:1a:68:65:21:91:27:5a:
3e:a5:11:fa:ea:65:48:b8:6b:02:36:89:e1:18:75:d8:75:ba:
32:58:12:fd:06:c5:6c:b4:ac:a2:85:1f:6c:42:b3:73:8a:1d:
11:b4:cb:d2
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAZQfjEq0t3e1qrjpMPuvZCVYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDE0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNmNmMTllMTk3YmRhZjk0ZTYxMDBlMGUxNzgwOGUxM2Q0ODU0ZjljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqL2G4hJywXyg9tb/PHdqU0UxOGcg
zhQ4xgPaM0Vlm6S623tyi212TTzF5JucmBymy2nskG0hy7GeeseAuQhTXC+PMHxa
5r+/uZvJb20XxGfaH7TbzRUCc1WwiGrN6wHAr85nGL7B1aoOtNx2mV+UwD6ueOyP
E9A0D0EK/T/57rFgExWAPjBvE3tYR3pfzVk9wklX9tCdAkpxi38dfNDRA2WE0UVu
/r2rA/QdnMPafbOEC0/HTHWZDx4wxWZE+iDMqmPnPiTPNxqY56FCOTAdLnmgLewV
8thv2yQCNt5lWeb2mLnU2z3yfPy7z7yQKYAQ0s0Rvf9wnLogPhhaGLnbuwIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFAbPGeGXva+U5hAODheAjhPUhU+cMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBiLzk4ZDYy
MC0xNTk5LTQ4NjMtOTYyOS0zNTY1MDUzMDNjNDkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGIvOThkNjIw
LTE1OTktNDg2My05NjI5LTM1NjUwNTMwM2M0OS8xL0JzOFo0WmU5cjVUbUVBNE9G
NENPRTlTRlQ1dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCufGQMA0EAgACMAcDBQMqDKOAMA0GCSqGSIb3
DQEBCwUAA4IBAQB+NhGvcCD3lLjP7kxi8Soy39fwoYQJQrK3AiYAFWxLwh7VhhoV
neoymWjbZFqSmDd1yQOjDVmV79+/XWEhGLTBXXoG0h4FQ9o0u8kT+Fo2kRx1cYSe
v+FBu5XPlm/G/im/t9nHyjJ8pU1ljp05GL/1vL+ZsSD4WlJCLxfeBUk4TLtqrlRq
0o8C2583s3wNLyf9cani/eOL8bWPJUl8OzroR9bM1xXUUGk6GvswZih8yyItp1SP
BZT6qb7d+NEi+QyBAsCmhrs+FCIbNa4FUvGmvhpoZSGRJ1o+pRH66mVIuGsCNonh
GHXYdboyWBL9BsVstKyihR9sQrNzih0RtMvS
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:01 2025 by rpki-client on console.sobornost.net