Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer
File: Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.cer (raw, json)
Hash identifier: rZ+n2z4iiBXg++Y1z/8Xazc4d6YaWKJT4pou6b2gxVQ=
Subject key identifier: 1E:68:BF:27:DA:C7:05:F3:10:2E:A8:86:73:47:0D:27:DC:86:86:6C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942068747C9AC87C1CC18B0E58C0CF0736
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:48:24 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 2a0d:d240::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:74:7c:9a:c8:7c:1c:c1:8b:0e:58:c0:cf:07:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e68bf27dac705f3102ea88673470d27dc86866c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fb:d0:95:65:a5:a9:56:b1:2f:4c:51:a0:15:
ad:32:d6:fe:97:2c:bc:ba:61:d1:b1:c7:38:41:dd:
ea:dc:9b:9b:72:bb:0a:e5:99:d5:28:19:1e:53:9e:
f3:dd:a5:88:aa:a0:8a:0e:08:1a:ed:66:66:ef:09:
eb:77:f6:d2:48:78:19:3c:04:cc:33:e2:f2:f7:85:
6c:d4:25:b3:30:6d:38:91:9c:c3:63:24:eb:61:6b:
1c:e9:a8:e4:7d:33:be:47:0a:36:f7:29:b4:5b:a4:
8f:06:de:10:41:0c:cc:ee:c5:c2:b7:18:ee:d0:0a:
c2:66:ef:6d:92:33:20:8b:fc:a5:9e:11:6f:68:a6:
d7:84:33:18:ba:41:97:8c:5a:a0:72:0d:56:01:dc:
bf:6b:6d:18:be:d3:a8:69:0f:5b:a9:f7:fe:f7:65:
43:eb:1d:7d:a9:9f:65:86:ee:6b:3c:3d:c0:62:3e:
b1:36:dd:35:c4:49:5e:c3:c9:73:18:27:9a:eb:77:
15:96:a3:0e:f4:8e:56:70:e6:55:2e:af:98:6d:4f:
2d:fd:77:be:6e:b3:9e:75:7b:f7:21:14:f3:71:fc:
20:a4:ac:11:34:5c:a2:c2:5c:83:90:27:ea:44:7a:
49:7b:85:0b:1d:42:f5:12:5a:7f:d4:d4:f4:e4:bc:
73:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:68:BF:27:DA:C7:05:F3:10:2E:A8:86:73:47:0D:27:DC:86:86:6C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/061465-955e-407e-a708-c15647f57010/1/Hmi_J9rHBfMQLqiGc0cNJ9yGhmw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:d240::/29
Signature Algorithm: sha256WithRSAEncryption
4c:d3:ff:55:d7:ef:ef:1f:9c:ac:c5:09:06:77:ca:a2:83:87:
cd:1a:95:07:f0:86:55:ee:8c:cb:36:b1:f1:b9:6b:e1:f7:bb:
3d:76:5e:0d:9d:38:77:8d:5f:8a:d4:8e:ac:5e:e9:e7:b3:c8:
da:8c:8a:ac:bf:db:12:b0:2e:46:5d:d2:54:01:0a:d4:72:4a:
3e:a3:12:58:c9:ba:b6:a1:16:be:ef:ff:46:8f:a1:86:eb:b8:
64:4d:47:f1:fd:f2:73:24:08:15:7f:a1:85:2a:66:13:71:91:
7b:93:4f:6a:d1:4f:df:88:0c:2c:a0:b2:63:65:8c:ec:9f:50:
91:d0:82:1a:12:8c:71:55:b0:7f:c7:90:32:f1:a9:3e:40:7b:
6e:57:c4:3a:e1:c3:e1:8d:21:16:d1:7d:d2:83:14:bd:e3:27:
c6:29:b6:3d:ea:6b:84:45:3f:9d:59:5c:b9:b3:e8:7e:57:23:
d8:7d:f5:35:77:9e:b0:10:78:ce:44:7b:60:c8:27:71:a8:45:
fd:7a:59:dd:63:a7:16:c6:c3:dc:7f:a7:10:40:da:4d:dd:5c:
d0:a9:46:ff:51:e2:db:ed:6d:84:4c:87:17:21:71:e3:fa:90:
18:bd:10:3f:76:fb:56:19:ae:5d:22:88:a1:4f:5a:c6:bf:17:
ed:b9:16:7d
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAZQgaHR8msh8HMGLDljAzwc2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDU0ODI0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTY4YmYyN2RhYzcwNWYzMTAyZWE4ODY3MzQ3MGQyN2RjODY4NjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/vQlWWlqVaxL0xRoBWtMtb+lyy8
umHRscc4Qd3q3JubcrsK5ZnVKBkeU57z3aWIqqCKDgga7WZm7wnrd/bSSHgZPATM
M+Ly94Vs1CWzMG04kZzDYyTrYWsc6ajkfTO+Rwo29ym0W6SPBt4QQQzM7sXCtxju
0ArCZu9tkjMgi/ylnhFvaKbXhDMYukGXjFqgcg1WAdy/a20YvtOoaQ9bqff+92VD
6x19qZ9lhu5rPD3AYj6xNt01xElew8lzGCea63cVlqMO9I5WcOZVLq+YbU8t/Xe+
brOedXv3IRTzcfwgpKwRNFyiwlyDkCfqRHpJe4ULHUL1Elp/1NT05LxzGQIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFB5ovyfaxwXzEC6ohnNHDSfchoZsMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcwLzA2MTQ2
NS05NTVlLTQwN2UtYTcwOC1jMTU2NDdmNTcwMTAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAvMDYxNDY1
LTk1NWUtNDA3ZS1hNzA4LWMxNTY0N2Y1NzAxMC8xL0htaV9KOXJIQmZNUUxxaUdj
MGNOSjl5R2htdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUDKg3SQDANBgkqhkiG9w0BAQsFAAOCAQEATNP/
Vdfv7x+crMUJBnfKooOHzRqVB/CGVe6Myzax8blr4fe7PXZeDZ04d41fitSOrF7p
57PI2oyKrL/bErAuRl3SVAEK1HJKPqMSWMm6tqEWvu//Ro+hhuu4ZE1H8f3ycyQI
FX+hhSpmE3GRe5NPatFP34gMLKCyY2WM7J9QkdCCGhKMcVWwf8eQMvGpPkB7blfE
OuHD4Y0hFtF90oMUveMnxim2PeprhEU/nVlcubPoflcj2H31NXeesBB4zkR7YMgn
cahF/XpZ3WOnFsbD3H+nEEDaTd1c0KlG/1Hi2+1thEyHFyFx4/qQGL0QP3b7Vhmu
XSKIoU9axr8X7bkWfQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:13 2025 by rpki-client on console.sobornost.net