Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/P3lU2IwK4_Y5hpe_38GVanU-g9g.cer
File: P3lU2IwK4_Y5hpe_38GVanU-g9g.cer (raw, json)
Hash identifier: LYS29fMlQfYDHS3Ve6qY/GBM3usvoSMV+4ADHlcNo7A=
Subject key identifier: 3F:79:54:D8:8C:0A:E3:F6:39:86:97:BF:DF:C1:95:6A:75:3E:83:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424453B4C467CF4FDA085487C6ED3CF33
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/82e656-14a3-4e3a-9d6e-af406086b89b/1/P3lU2IwK4_Y5hpe_38GVanU-g9g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/82e656-14a3-4e3a-9d6e-af406086b89b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:24 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41765
AS: 201140
IP: 31.172.164.0/22
IP: 45.8.233.0 -- 45.8.235.255
IP: 185.4.63.0/24
IP: 185.84.112.0/22
IP: 185.233.48.0/22
IP: 188.65.168.0/21
IP: 193.33.46.0/23
IP: 193.37.150.0/24
IP: 193.57.96.0/24
IP: 2a02:2288::/29
IP: 2a0c:d500::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:3b:4c:46:7c:f4:fd:a0:85:48:7c:6e:d3:cf:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3f7954d88c0ae3f6398697bfdfc1956a753e83d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:66:ec:24:51:1b:08:27:ed:21:e2:30:24:41:
9d:81:ea:59:23:39:9c:20:8a:b3:9e:00:af:9e:24:
b3:20:94:a6:f1:b4:94:66:8f:6d:f8:89:cc:3f:b4:
eb:39:4a:9b:c7:7d:b3:33:2d:35:f9:2f:97:e1:1a:
1d:15:50:83:9d:9c:53:30:8b:d8:c4:21:29:5f:12:
8e:9b:a3:fb:d5:01:09:64:1d:0a:ce:28:c0:7e:12:
8c:0e:32:60:25:db:36:26:03:ec:7c:59:c1:5f:21:
86:19:de:79:77:00:a1:3c:ef:fc:e2:2c:da:29:e8:
42:e9:c2:cb:27:6b:59:cb:86:db:b4:b0:8e:58:a9:
de:f1:17:b4:3e:71:ef:9f:be:aa:5c:d4:c3:61:69:
86:3a:7b:83:8f:4b:2c:31:06:0f:b7:6a:4f:1e:db:
3f:2b:70:81:a6:17:53:dd:b8:7d:a6:a7:2b:72:8a:
e2:f6:55:f9:95:6e:86:1b:88:e2:50:a6:20:a3:18:
d6:35:dd:19:9b:5f:27:16:7f:51:73:4c:7e:cd:ae:
22:19:d7:4c:51:14:43:7f:f2:8f:b4:f6:a0:03:ca:
23:06:be:6c:2c:e7:44:67:e5:b6:0f:09:e9:f5:fc:
a2:c4:4d:bd:db:f5:4d:1d:4a:b7:8c:8e:e5:15:b3:
91:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:79:54:D8:8C:0A:E3:F6:39:86:97:BF:DF:C1:95:6A:75:3E:83:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/82e656-14a3-4e3a-9d6e-af406086b89b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/82e656-14a3-4e3a-9d6e-af406086b89b/1/P3lU2IwK4_Y5hpe_38GVanU-g9g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.164.0/22
45.8.233.0-45.8.235.255
185.4.63.0/24
185.84.112.0/22
185.233.48.0/22
188.65.168.0/21
193.33.46.0/23
193.37.150.0/24
193.57.96.0/24
IPv6:
2a02:2288::/29
2a0c:d500::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41765
201140
Signature Algorithm: sha256WithRSAEncryption
9d:37:5f:64:05:45:77:eb:87:98:b8:f9:8f:52:a9:b2:28:b7:
e3:88:27:45:be:c0:01:23:16:6e:f8:cc:50:7f:9d:e1:da:e5:
3f:60:b2:a0:e9:4c:6a:59:c6:4c:56:bd:96:10:a3:b1:79:41:
ab:a4:5c:35:52:fa:75:34:de:d8:a3:9d:e2:6f:d4:54:25:1a:
e1:31:78:90:c8:89:30:6a:e1:6c:d0:1f:39:9e:ea:ec:49:00:
c9:1c:bb:99:a9:0a:69:e7:fb:be:96:a8:d5:5d:5f:7f:e1:64:
70:ea:35:17:c3:be:cc:a8:c5:a2:7e:ea:66:cd:66:15:ec:fb:
b5:21:0d:26:1a:b2:2b:94:86:97:c1:5f:12:8e:b4:2d:8b:57:
ad:e9:b7:f8:02:c2:9f:6f:03:26:7a:d6:3b:65:25:be:8b:7a:
03:45:42:2e:74:47:4c:a4:07:c7:14:00:f4:62:ad:ce:60:23:
75:fb:ae:17:3e:72:64:8e:e7:25:76:50:eb:bc:19:a3:7a:c4:
b4:bc:f4:a1:8f:9a:c5:33:a6:95:98:01:22:3f:fc:82:e4:3d:
cb:23:19:ab:c2:16:59:1d:d5:5b:d0:00:71:3c:fc:61:78:86:
ba:94:5a:dc:a8:91:51:10:f8:ce:fa:aa:b9:bd:04:3f:98:3d:
f3:4c:51:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:51 2025 by rpki-client on console.sobornost.net