Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HkCrQOU4YIcSUOm6xOFjM5cQWV0.cer
File: HkCrQOU4YIcSUOm6xOFjM5cQWV0.cer (raw, json)
Hash identifier: sOvXT7UOSMCPHRCFzlDwpzxg+nywzzX0kAvRvRyY5zg=
Subject key identifier: 1E:40:AB:40:E5:38:60:87:12:50:E9:BA:C4:E1:63:33:97:10:59:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D7FF01373E1875EC75BF7C62988C1E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/HkCrQOU4YIcSUOm6xOFjM5cQWV0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:49:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200826
IP: 91.231.7.0/24
IP: 91.234.241.0 -- 91.234.243.255
IP: 91.238.186.0/23
IP: 91.240.149.0 -- 91.240.151.255
IP: 91.247.240.0/21
IP: 2001:67c:2fb4::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:ff:01:37:3e:18:75:ec:75:bf:7c:62:98:8c:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e40ab40e53860871250e9bac4e163339710595d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:9b:3a:62:3e:5c:bd:83:d4:f8:ce:9c:d0:
1f:78:15:f5:61:8a:11:cf:f0:c4:96:ee:0d:3d:9a:
12:d7:05:29:a6:40:20:ff:41:c6:f0:16:22:d5:f0:
37:7a:3a:03:75:c8:b2:93:80:f7:ab:bb:0a:b6:b4:
48:3a:fe:c7:3b:5d:8e:71:31:c0:d1:f9:82:5e:05:
82:d0:24:a3:68:d6:45:74:32:cd:b1:65:f5:b1:59:
72:8d:dc:c7:cc:13:50:67:a8:ce:29:81:b9:30:91:
d7:71:39:45:bf:b5:8d:9f:b7:e9:45:5f:14:ce:cb:
bd:fe:8a:2b:5b:8e:5d:39:90:7c:e3:96:46:5e:fb:
1d:2c:f8:d8:69:6c:80:1e:01:2c:17:73:10:86:83:
bc:f2:c3:3a:a9:b9:88:ad:cb:be:32:3b:d4:39:2f:
37:83:62:3d:26:06:57:95:6e:e5:dd:9c:0e:d3:f5:
6d:37:cd:62:2b:e2:a6:fd:4b:a1:86:c3:4d:47:5e:
d3:ba:ed:1f:8c:d1:d0:68:92:a1:57:c1:7e:22:e6:
e5:22:bc:52:21:13:52:8b:68:2e:cf:0d:96:0a:08:
b8:fa:65:3e:15:b7:61:1f:f9:ac:51:d8:be:96:3a:
d2:4f:48:2f:76:7b:6c:fc:5b:6d:ed:cd:c5:f1:73:
da:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:40:AB:40:E5:38:60:87:12:50:E9:BA:C4:E1:63:33:97:10:59:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5594ed-7eb8-431e-930c-7f866daa5464/1/HkCrQOU4YIcSUOm6xOFjM5cQWV0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.7.0/24
91.234.241.0-91.234.243.255
91.238.186.0/23
91.240.149.0-91.240.151.255
91.247.240.0/21
IPv6:
2001:67c:2fb4::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200826
Signature Algorithm: sha256WithRSAEncryption
8e:cf:18:15:8a:17:f9:45:89:8b:1d:d7:93:6c:d6:a4:ab:3c:
53:32:b6:93:1f:eb:85:6b:d8:8c:dc:11:a1:25:3e:95:bf:ca:
ff:35:5c:ce:cb:9a:99:64:a0:c9:6f:1c:98:a9:54:6b:f5:c0:
74:2b:6a:19:d0:7d:76:32:73:56:97:51:1e:7f:a1:07:bd:36:
bc:b7:1b:57:62:1d:92:da:f2:96:66:64:d0:97:e0:89:1d:d0:
ef:1b:11:d9:3c:9a:af:34:03:b7:82:9f:be:a4:a0:78:73:34:
ea:55:26:83:ed:a0:79:05:ed:d5:90:e2:e0:8f:02:0c:91:c5:
f1:a7:8f:5e:38:0c:fe:5b:d5:54:ca:f9:5b:02:86:4d:34:92:
13:ac:a2:47:91:0a:59:5a:02:7d:e2:87:21:c0:a6:9f:43:12:
27:91:39:71:fc:0b:20:0d:fe:39:7d:6c:37:69:22:c6:ec:36:
a6:a6:65:af:79:a6:fe:54:d6:73:b1:2e:fb:5e:a6:27:72:d7:
b4:14:43:56:aa:d4:03:24:00:ef:3e:ee:0a:d3:7f:fc:30:92:
38:9f:96:07:47:f5:01:e2:94:ed:d0:5f:f3:3e:87:25:41:af:
10:a2:20:4f:e6:e4:5b:c1:f6:df:e8:68:11:d1:3b:ed:16:da:
6e:56:b4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:13 2025 by rpki-client on console.sobornost.net