Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HRPNPd54nSlHk6_Ok4pTPAK7hNE.cer
File: HRPNPd54nSlHk6_Ok4pTPAK7hNE.cer (raw, json)
Hash identifier: 0LMZE3NEJpoJ1AWG4c3Rw8UpGnaw6jkvuI+EXa6ZNDw=
Subject key identifier: 1D:13:CD:3D:DE:78:9D:29:47:93:AF:CE:93:8A:53:3C:02:BB:84:D1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195C8570672EBD26090FFD6D8D425A284DF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e9/d29a5f-a52c-4c79-9303-a77caac4625c/1/HRPNPd54nSlHk6_Ok4pTPAK7hNE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e9/d29a5f-a52c-4c79-9303-a77caac4625c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 24 Mar 2025 13:28:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.235.60.0/24
IP: 2a14:d900::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c8:57:06:72:eb:d2:60:90:ff:d6:d8:d4:25:a2:84:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 24 13:28:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d13cd3dde789d294793afce938a533c02bb84d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:63:26:4a:0f:9f:2f:2d:34:08:8f:01:9d:51:
08:5e:1f:86:57:ab:83:ba:eb:33:b1:49:02:99:2e:
24:38:b2:bb:f6:fe:ce:a2:78:3c:4f:ee:9d:96:a2:
0e:33:1a:c4:a1:2c:d8:46:6e:50:08:ba:6d:20:31:
fe:82:f2:4c:fb:2c:f8:92:ca:51:3e:1a:1b:ae:bb:
b7:bb:d3:b2:77:69:d1:7d:d6:02:9d:cb:55:9e:23:
b7:89:d0:3d:d3:e3:1b:9e:d3:f2:ac:15:5b:f1:1d:
bf:84:a0:92:f9:e5:98:80:72:41:72:71:51:fb:3a:
22:46:f5:5c:b2:aa:6f:7b:e6:ed:a0:1e:68:ef:cf:
42:f6:93:7b:a1:34:c4:6d:b8:4f:2e:34:9f:0a:f2:
65:bb:98:33:45:8a:32:74:12:18:26:9e:25:6e:47:
cb:9a:11:e7:d0:4c:85:3b:77:ed:c7:df:28:5d:2f:
cf:e3:6b:a1:ce:96:ca:64:0c:d2:ba:99:46:93:1b:
10:78:3a:79:d8:c7:ef:16:6e:8e:56:af:2f:d5:60:
36:86:19:7b:e9:bf:23:e4:12:6a:2d:44:85:71:9b:
e6:16:3c:74:af:4d:36:cc:88:27:c3:68:0e:0c:e3:
bc:58:27:12:c6:59:16:7f:ac:3f:9b:05:17:d0:2d:
70:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:13:CD:3D:DE:78:9D:29:47:93:AF:CE:93:8A:53:3C:02:BB:84:D1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d29a5f-a52c-4c79-9303-a77caac4625c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/d29a5f-a52c-4c79-9303-a77caac4625c/1/HRPNPd54nSlHk6_Ok4pTPAK7hNE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.60.0/24
IPv6:
2a14:d900::/29
Signature Algorithm: sha256WithRSAEncryption
ae:78:91:ba:38:87:4c:44:03:a4:f2:99:c2:a7:84:a4:36:5d:
9b:b1:03:01:4a:c3:32:a9:c8:ef:02:f9:44:2c:ca:16:5d:c4:
76:90:96:5a:d4:15:1d:89:13:fc:70:44:1d:b6:9e:04:ba:98:
23:b1:69:f3:18:51:4d:80:f0:03:f3:6a:b1:61:f6:2a:bb:fc:
ae:f7:be:f6:a4:b0:dc:fa:f3:35:7f:da:cc:d8:d0:35:6c:c2:
68:2e:c4:00:5c:f4:26:89:eb:e8:f0:8b:95:1a:ca:15:c2:dd:
b3:c1:d6:41:de:fd:49:55:9d:0a:bb:23:39:4c:56:07:a6:b6:
c4:c0:0b:f6:95:8e:6d:3e:0a:7c:0a:45:84:65:ba:53:f9:b1:
e1:6d:20:e2:5b:19:7b:fc:82:4d:a7:82:b4:62:d2:79:d5:5d:
67:01:a6:a0:94:59:25:fd:d1:df:7c:6f:9f:03:a6:d0:1b:0d:
b0:6e:81:63:f1:12:74:39:bf:4c:8c:c5:3d:05:12:ad:f8:e8:
e5:ed:8f:dd:17:d4:de:6f:cf:65:ad:7c:79:48:74:f4:35:7f:
fd:4a:8d:0e:ab:f8:22:d3:a6:93:7c:f3:67:9d:ec:ed:e2:50:
eb:2a:a4:c1:b6:b6:61:94:bb:77:1f:d7:54:d8:c8:85:d5:c5:
d9:65:9f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:12 2025 by rpki-client on console.sobornost.net