Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
File: ELZc9vpeH8roz4TJcB44vftjqrM.cer (raw, json)
Hash identifier: ILnTQqKWgwslhcHn6rNCKnh6+H+1+3YIx0jSVMD1K3w=
Subject key identifier: 10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D76601DA577B4F7CB39BD4B05F34D1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:48:26 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 42336
AS: 210602
AS: 212381
IP: 87.239.224.0/21
IP: 89.46.116.0/22
IP: 91.245.160.0/20
IP: 94.177.100.0/22
IP: 94.177.140.0/22
IP: 109.107.133.0/24
IP: 176.121.24.0/21
IP: 185.203.40.0/22
IP: 193.33.118.0/23
IP: 195.128.164.0/23
IP: 2a11:ce40::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:66:01:da:57:7b:4f:7c:b3:9b:d4:b0:5f:34:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:78:0d:05:71:a4:19:5f:16:a2:c7:36:3e:1c:
5e:9e:3b:a0:41:cc:3a:68:08:22:17:59:63:96:26:
48:5f:6e:a8:0f:c0:91:ce:97:6a:9a:0f:bf:81:fb:
62:e4:a2:f4:df:d9:e7:08:f3:84:d3:1e:fb:2f:c9:
5c:c0:56:fa:0a:32:e9:f8:9e:eb:2e:d6:1b:ca:c7:
e0:a7:70:28:2a:6a:38:f2:04:0f:72:08:d3:6e:d7:
00:fa:9b:ec:3a:7f:b1:ef:68:2c:9d:be:64:13:cf:
f0:9c:8e:17:cd:e7:16:a1:f2:96:3f:e3:1d:92:be:
af:b2:59:b6:eb:35:5d:34:34:a2:44:b4:b0:58:fa:
72:1c:8f:a6:e4:d1:3e:f7:e0:cc:99:55:35:c0:d5:
eb:9d:8d:d9:3b:47:00:44:2a:d5:70:84:02:ab:99:
14:b0:0f:e2:35:f8:ff:0d:de:88:a4:f7:b3:e6:18:
86:4d:d6:c0:c7:81:b7:f2:68:75:19:a7:53:30:ad:
99:c5:12:ec:17:f2:5f:31:f5:11:2c:a7:73:0d:71:
cb:b0:ef:6c:1b:4d:65:4c:1a:ce:8a:e6:e0:2e:f0:
1c:f7:08:b5:94:19:0b:4f:af:95:94:08:b7:5a:33:
86:91:44:07:c6:37:23:93:df:64:62:14:f7:45:82:
20:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.239.224.0/21
89.46.116.0/22
91.245.160.0/20
94.177.100.0/22
94.177.140.0/22
109.107.133.0/24
176.121.24.0/21
185.203.40.0/22
193.33.118.0/23
195.128.164.0/23
IPv6:
2a11:ce40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42336
210602
212381
Signature Algorithm: sha256WithRSAEncryption
a8:0e:68:c5:52:37:51:71:d3:dd:d2:4e:07:97:0a:b2:76:ea:
63:d0:08:6e:ae:4e:6d:2a:d4:2c:47:72:ab:b4:4c:c3:99:6f:
bd:40:ab:bc:e7:d2:cd:0c:e6:ae:3f:11:fa:18:3f:68:2e:ed:
d6:5b:12:0f:ed:02:6f:db:4a:f7:b5:3a:1b:36:6a:6e:41:ff:
f1:fe:f3:15:c4:bd:d1:0c:81:e6:26:5a:e5:f9:bd:80:e1:1e:
60:90:c4:0f:bc:c9:52:30:22:f9:89:0f:e9:bc:37:54:e1:a7:
26:bd:66:7f:f9:14:72:76:99:41:04:0d:e4:6a:d3:fe:e1:6a:
f3:82:c1:38:86:a6:1d:df:a2:0a:5a:f9:c7:19:0f:40:c9:13:
2c:ff:62:b4:b4:8c:d1:cb:7a:27:f6:de:e3:d5:c7:aa:e7:16:
6c:c7:0b:25:a8:85:38:2d:d7:e5:5d:91:0e:99:61:fc:8a:9d:
29:3a:d7:c6:a3:b8:aa:e5:8e:99:0d:e5:93:99:e7:99:1a:15:
1d:2c:5f:ca:ce:fd:f5:b8:7f:4b:86:07:87:5a:a4:ab:26:5c:
39:49:0b:5c:6e:7f:49:0f:ea:4c:1c:46:7e:93:33:30:a3:2c:
d1:1a:32:ff:88:c6:51:93:9a:80:a8:3f:d5:49:25:e5:6a:de:
0a:3a:90:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:06 2025 by rpki-client on console.sobornost.net