Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Qs3jZdfStYUG5NSr8MLvfNXjtGI.cer
File: Qs3jZdfStYUG5NSr8MLvfNXjtGI.cer (raw, json)
Hash identifier: IeNMDc//wKkc9nKUXUwcDbldu2WEynGyFsZiPte8L0c=
Subject key identifier: 42:CD:E3:65:D7:D2:B5:85:06:E4:D4:AB:F0:C2:EF:7C:D5:E3:B4:62
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B57A760D4D6E0667AC0A6E0F8BE149
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/Qs3jZdfStYUG5NSr8MLvfNXjtGI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:49:52 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 30848
IP: 5.8.96.0/19
IP: 5.63.168.0/21
IP: 37.148.224.0/21
IP: 45.33.224.0/20
IP: 77.239.128.0/19
IP: 80.210.96.0/19
IP: 81.21.16.0/20
IP: 82.97.224.0/20
IP: 82.113.192.0/19
IP: 82.134.192.0/18
IP: 82.180.32.0/19
IP: 83.217.176.0/20
IP: 95.142.176.0/20
IP: 150.252.224.0/20
IP: 176.57.112.0/20
IP: 178.236.160.0/20
IP: 185.3.108.0/22
IP: 185.25.72.0/22
IP: 217.61.160.0/20
IP: 2a00:7ca0::/32
IP: 2a02:1630::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:7a:76:0d:4d:6e:06:67:ac:0a:6e:0f:8b:e1:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=42cde365d7d2b58506e4d4abf0c2ef7cd5e3b462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d5:62:9b:9a:a8:39:b6:2d:f2:2c:26:3a:c7:
1c:9e:38:60:77:5e:05:32:c7:47:1d:e5:f5:b5:a9:
05:6d:9a:5b:8f:ac:30:14:ac:bf:29:5e:e4:4d:97:
6a:23:a5:74:fe:de:6d:35:27:cf:f4:b2:01:30:c7:
97:b5:0d:cb:22:cf:ef:dc:9b:0d:1a:d3:0e:22:2c:
e0:a9:b9:32:c7:53:36:51:c8:9d:1c:33:cc:a6:e4:
3f:29:93:6f:7a:ea:b2:b5:c4:c1:f4:c8:d2:f6:3c:
c0:87:f1:5c:27:5c:a0:ee:fc:2d:df:e1:a5:32:d9:
a4:24:3b:be:7d:ff:ec:93:b7:2b:93:84:96:5d:02:
7f:66:06:4a:eb:0f:6d:4b:58:f3:96:ef:1b:11:e9:
06:c1:a6:16:c1:55:d4:28:a0:ea:9f:e2:42:d1:8e:
cc:23:34:c9:6b:da:f7:a1:47:e4:e9:32:c9:fc:97:
40:20:bf:6a:89:ac:58:f7:dd:d7:3e:61:97:95:d6:
0a:41:45:da:ba:3e:91:c0:39:74:5d:ee:41:5e:9a:
82:8b:bc:0e:05:bc:2d:33:8b:dc:6b:5f:14:8f:6a:
e4:33:f8:61:3b:f2:be:af:85:27:e7:7c:5c:0e:07:
32:3f:3d:72:03:26:37:f1:38:b3:a4:f6:ce:62:bb:
e7:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CD:E3:65:D7:D2:B5:85:06:E4:D4:AB:F0:C2:EF:7C:D5:E3:B4:62
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/54018c-01e8-417f-856a-02e1bd6050e5/1/Qs3jZdfStYUG5NSr8MLvfNXjtGI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.96.0/19
5.63.168.0/21
37.148.224.0/21
45.33.224.0/20
77.239.128.0/19
80.210.96.0/19
81.21.16.0/20
82.97.224.0/20
82.113.192.0/19
82.134.192.0/18
82.180.32.0/19
83.217.176.0/20
95.142.176.0/20
150.252.224.0/20
176.57.112.0/20
178.236.160.0/20
185.3.108.0/22
185.25.72.0/22
217.61.160.0/20
IPv6:
2a00:7ca0::/32
2a02:1630::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
30848
Signature Algorithm: sha256WithRSAEncryption
a8:05:ff:9c:73:7a:b6:f4:00:5f:ec:f2:c9:2c:ce:32:7d:d2:
e2:5a:7e:7b:5d:08:1b:cc:3a:62:43:38:35:fc:4c:cc:bb:4c:
3e:ea:e9:01:f6:9f:ac:dc:a8:45:c9:1b:75:d6:99:6e:ae:5b:
a3:ce:e1:6c:9a:fa:0c:59:00:f9:79:db:11:42:07:0f:0b:8f:
56:c1:12:78:65:ea:1e:96:b3:8f:68:90:c9:45:51:54:5a:9a:
5d:38:29:17:d3:86:04:bd:76:59:1c:53:a2:fb:17:3e:7f:7e:
52:67:60:63:df:05:47:4a:3d:a7:6c:8e:c5:f9:db:25:26:b7:
8e:3c:32:84:f2:04:0e:f1:c0:4f:93:45:e5:0e:ca:49:d6:68:
e5:65:a7:f4:0b:ac:0a:2c:7c:0c:ed:95:f5:89:dc:a2:ba:de:
b6:98:ee:3e:74:e4:a3:50:2c:78:9c:46:d1:a1:3d:e1:fe:e5:
2e:1b:10:15:71:24:74:55:9a:d8:5a:3e:02:4c:cf:01:77:cb:
b6:20:1b:e1:15:ed:95:c1:08:6a:f4:05:da:99:3e:c7:39:ae:
ca:b1:fb:9e:06:b6:93:82:79:1f:fc:31:ac:0e:65:0f:44:a8:
01:1e:60:25:b9:07:cc:07:cb:eb:32:09:4a:c5:46:fe:28:da:
af:0f:62:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:56 2025 by rpki-client on console.sobornost.net