Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GdGZw9IPQ02MCgou9eUjRmZcqGQ.cer
File: GdGZw9IPQ02MCgou9eUjRmZcqGQ.cer (raw, json)
Hash identifier: eWKIkzlioFj5bU8ModeUXZeA3DS9Bf5/Qna9aYQpNKA=
Subject key identifier: 19:D1:99:C3:D2:0F:43:4D:8C:0A:0A:2E:F5:E5:23:46:66:5C:A8:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942823BC1D1605D7187118F42E39368942
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/GdGZw9IPQ02MCgou9eUjRmZcqGQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:50:18 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 43449
IP: 193.201.56.0/22
IP: 2a0c:a540::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:bc:1d:16:05:d7:18:71:18:f4:2e:39:36:89:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:50:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19d199c3d20f434d8c0a0a2ef5e52346665ca864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:af:bf:ca:93:86:10:3b:3b:2f:41:98:e1:de:
8a:42:9d:9b:b0:ce:db:72:27:35:2f:54:08:5b:3a:
71:ba:92:7e:d8:26:19:f0:ee:aa:8c:60:ab:c9:3c:
a4:15:01:5c:fd:0f:e3:6f:c2:ac:b3:04:ac:53:c0:
47:5c:91:85:09:80:50:55:e1:87:2e:a4:53:fc:bb:
a4:46:f5:d1:8d:1b:94:f5:5a:1f:95:e6:f9:54:a9:
f7:16:d9:ff:85:49:1f:6f:a1:1d:f5:e1:46:bb:6e:
24:97:b8:1f:c4:27:ab:de:17:c8:ae:9e:c4:40:b2:
17:99:29:4e:b1:40:6a:f6:98:b7:7b:70:7a:bd:8e:
63:96:91:ae:9b:12:1e:34:e9:2d:0e:fb:bf:d4:e7:
b9:16:27:e4:58:11:62:d1:55:98:4e:2a:7b:14:11:
b6:c6:e4:a0:60:6b:7a:6f:89:c9:7e:5b:06:27:3b:
af:9a:c0:ee:83:ef:41:54:cd:66:c2:b7:6e:9d:b7:
3d:77:83:78:8a:6a:d3:98:7c:5c:ca:05:21:d2:fa:
ea:5d:22:1b:73:fc:16:68:6e:3e:be:8f:6a:78:68:
f4:7f:bd:0d:18:d0:7c:11:f6:30:eb:ce:26:fd:ba:
b0:67:9e:84:20:b1:3a:ec:b5:27:48:91:ae:ef:b6:
48:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:D1:99:C3:D2:0F:43:4D:8C:0A:0A:2E:F5:E5:23:46:66:5C:A8:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5b78f4-771d-4756-a389-b42fa00f57de/1/GdGZw9IPQ02MCgou9eUjRmZcqGQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.56.0/22
IPv6:
2a0c:a540::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43449
Signature Algorithm: sha256WithRSAEncryption
72:68:0a:db:5c:a4:8e:1b:5a:5d:32:78:4a:74:ea:f2:f7:5e:
b7:37:4c:62:73:4a:0e:a7:63:82:f6:b5:bd:0c:28:bc:99:fd:
dc:3c:8a:78:5d:98:39:46:9c:44:40:95:5b:90:77:93:aa:21:
62:0b:db:65:fd:8e:55:aa:44:3b:96:55:0b:5f:72:0f:07:44:
41:a0:bf:be:c1:c4:c3:78:4e:36:8a:e1:a9:f6:81:9b:aa:90:
31:10:1a:26:94:04:8f:8a:3a:08:0b:93:d9:b4:67:f8:bf:ce:
13:8a:95:2c:fc:db:d1:16:2b:e7:2b:61:53:1e:29:81:14:4b:
1b:1d:93:d3:b3:d1:46:68:00:5c:09:1e:42:58:d3:7f:71:b2:
f4:99:55:5b:35:67:51:02:be:56:0a:4e:52:b7:f3:49:ec:74:
58:30:6e:4c:8c:02:54:4e:19:90:b4:81:07:29:dc:b1:d5:54:
63:3e:8e:5c:41:5b:54:21:ba:75:f6:50:f1:ea:a8:92:b5:fd:
b8:00:0b:cf:8a:e5:5a:fc:d1:8c:a5:be:ef:2a:13:5d:e9:fe:
9f:8e:a2:6c:e1:06:64:df:0e:32:ce:94:52:36:b5:79:9a:45:
91:0c:04:b2:3b:28:e9:f5:e7:0d:cc:f0:96:72:5d:ed:fc:94:
e8:e7:3b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:10 2025 by rpki-client on console.sobornost.net