Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HoYS4w6WzLqJ514Et7uhwreXxcM.cer
File: HoYS4w6WzLqJ514Et7uhwreXxcM.cer (raw, json)
Hash identifier: IBdNa04t5xMbecPXj9WoWKPvLZ8PblyaSaEj/LXd8z0=
Subject key identifier: 1E:86:12:E3:0E:96:CC:BA:89:E7:5E:04:B7:BB:A1:C2:B7:97:C5:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195C9772DCCDE928974AC45B2A488B68DAF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f8/730bd4-db33-4552-bad5-b6dc2b7bf30a/1/HoYS4w6WzLqJ514Et7uhwreXxcM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f8/730bd4-db33-4552-bad5-b6dc2b7bf30a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 24 Mar 2025 18:43:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200665
IP: 141.195.8.0/21
IP: 176.124.60.0/22
IP: 176.125.244.0/22
IP: 185.97.196.0/22
IP: 185.180.232.0/22
IP: 185.181.80.0/22
IP: 2a06:700::/29
IP: 2a0a:9b80::/32
IP: 2a0a:9c80::/32
IP: 2a0b:cc40::/29
IP: 2a0d:cac0::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:c9:77:2d:cc:de:92:89:74:ac:45:b2:a4:88:b6:8d:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 24 18:43:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e8612e30e96ccba89e75e04b7bba1c2b797c5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6f:8c:c8:2b:2b:e3:8b:6c:82:d0:b4:68:88:
ea:cd:4a:56:6f:04:f7:49:83:c2:f2:15:57:55:93:
06:9e:45:b5:23:49:d5:5b:01:88:ce:e5:04:c3:b1:
47:ff:79:77:6f:1e:38:20:97:94:0e:07:58:86:63:
22:ac:2e:5b:2f:66:30:27:da:b9:50:2c:ce:bf:d6:
b5:b6:56:c9:8d:37:7f:9d:4e:e0:cb:45:4b:b4:a2:
8b:00:50:e4:16:8b:fc:a5:28:b3:64:ab:e3:4a:97:
f5:72:cb:f3:69:3f:c7:89:b5:a4:6a:dd:e7:6d:d5:
a2:5e:83:de:cd:6c:4e:76:2c:df:a1:d0:52:76:78:
64:f7:da:0f:45:b6:68:1f:70:81:7a:6b:f5:0c:88:
7a:22:e8:9a:81:ee:50:48:96:b8:74:ca:7a:9e:0f:
2f:b5:ef:c3:e4:74:3f:9a:99:be:8b:bb:3d:28:1c:
56:91:f9:0a:0b:c6:09:8f:42:47:89:4c:e6:15:44:
d5:25:a0:5d:e3:35:06:aa:8c:e6:6e:b7:0e:b6:bc:
b5:09:b8:75:be:ab:61:26:2c:7f:5b:a3:c6:f3:33:
4a:97:fd:46:bc:54:48:6d:40:df:a0:7f:2e:15:91:
cb:f6:0c:fa:eb:12:8c:64:55:94:54:9b:1a:40:0a:
89:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:86:12:E3:0E:96:CC:BA:89:E7:5E:04:B7:BB:A1:C2:B7:97:C5:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/730bd4-db33-4552-bad5-b6dc2b7bf30a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/730bd4-db33-4552-bad5-b6dc2b7bf30a/1/HoYS4w6WzLqJ514Et7uhwreXxcM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.195.8.0/21
176.124.60.0/22
176.125.244.0/22
185.97.196.0/22
185.180.232.0/22
185.181.80.0/22
IPv6:
2a06:700::/29
2a0a:9b80::/32
2a0a:9c80::/32
2a0b:cc40::/29
2a0d:cac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200665
Signature Algorithm: sha256WithRSAEncryption
67:55:88:b7:32:2a:76:61:d5:8e:14:36:96:22:d9:c1:ec:f5:
f1:c1:d2:82:fd:5b:37:92:ce:6e:49:4c:df:55:8f:34:91:bd:
40:d4:72:76:cd:97:19:62:7b:fb:2c:98:70:73:43:cd:2d:20:
ef:b5:ba:88:cd:03:3a:fd:0a:43:84:9d:1c:ce:a5:5b:66:b4:
c4:02:c7:d0:be:ef:9b:4e:d2:15:f2:8c:52:b8:99:24:61:88:
dd:0d:9c:7d:92:c0:39:b3:12:3b:73:fb:5b:59:94:b4:6d:ef:
6c:bc:35:2f:99:90:29:86:aa:60:22:76:f1:16:4e:b0:32:d3:
66:1c:98:c0:35:10:a8:a9:da:04:0b:f4:28:05:9e:35:4a:54:
24:f6:d9:4f:ad:95:09:13:a6:fe:a0:65:7d:99:61:7b:fa:c1:
e1:c1:8f:71:c3:49:60:e8:9a:f8:84:b0:1d:3b:1e:3b:39:52:
8d:84:39:d7:74:e3:47:32:e3:1d:e3:e0:25:e2:19:e9:5b:c0:
e4:a5:41:59:39:57:ed:a2:5b:b5:a1:c8:69:e2:a9:62:fc:5b:
cd:bf:59:e5:7f:6b:8c:0a:24:ee:75:a7:79:a6:37:c2:fa:b3:
40:20:59:9a:c0:6e:2d:e6:32:df:cf:a1:d1:62:1b:03:a0:23:
9a:de:4b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:13 2025 by rpki-client on console.sobornost.net