Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/R2hKfr-d4pSDGiwD4bWgEkIKzZc.cer
File: R2hKfr-d4pSDGiwD4bWgEkIKzZc.cer (raw, json)
Hash identifier: 4gjrvaINJbRlpZkR5HqVZpQ/st+0WEZTpe6k8BmIdjQ=
Subject key identifier: 47:68:4A:7E:BF:9D:E2:94:83:1A:2C:03:E1:B5:A0:12:42:0A:CD:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424453F0CDBD7EF7FC0F44C9AB966848E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2c/098772-dbb6-4dbb-b595-b26f70e03d76/1/R2hKfr-d4pSDGiwD4bWgEkIKzZc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2c/098772-dbb6-4dbb-b595-b26f70e03d76/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 199532
IP: 91.217.195.0/24
IP: 2a12:b640::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:3f:0c:db:d7:ef:7f:c0:f4:4c:9a:b9:66:84:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47684a7ebf9de294831a2c03e1b5a012420acd97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ad:8d:10:3d:c3:d7:18:90:5e:5c:ca:7f:73:
2b:71:ef:03:a2:26:1a:e5:d3:31:7e:ca:1a:be:98:
29:b6:b2:82:12:86:89:f2:d4:8b:ba:73:c0:84:ce:
18:32:18:1d:2f:8c:3e:8f:04:88:6a:36:45:d5:c2:
d2:d2:bc:e8:28:45:f6:e8:b7:9a:ca:3e:8b:51:d7:
4a:22:37:4f:fb:45:d2:78:3e:f3:89:1b:9c:71:d0:
ca:10:11:1d:82:0d:16:73:5f:e2:c7:49:1a:61:9e:
b6:d9:6c:72:63:a6:91:e4:e9:7a:5d:cb:9f:2a:a8:
e3:76:87:07:b8:02:5d:e1:5c:7e:e0:75:a8:89:4a:
cf:ee:f5:41:fd:9a:94:8f:c4:0f:78:c9:cc:0a:f2:
2c:ce:49:f1:a3:72:9f:ce:2d:d6:11:df:4b:52:d9:
47:a0:a7:bc:12:91:de:61:03:56:3b:dc:96:b5:62:
97:c1:98:d2:f1:48:a5:16:e5:25:2e:9f:99:de:f9:
96:3d:44:ca:a1:e4:51:e9:93:ac:86:65:fa:0a:5c:
b7:6b:40:ac:cd:e3:bc:b5:ea:38:97:aa:bf:25:8d:
7e:e0:51:03:99:4a:61:8a:90:26:eb:ef:6b:cb:c6:
9d:50:e5:8e:84:99:87:f5:5f:f7:d3:66:54:a4:03:
b8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:68:4A:7E:BF:9D:E2:94:83:1A:2C:03:E1:B5:A0:12:42:0A:CD:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/098772-dbb6-4dbb-b595-b26f70e03d76/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/098772-dbb6-4dbb-b595-b26f70e03d76/1/R2hKfr-d4pSDGiwD4bWgEkIKzZc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.195.0/24
IPv6:
2a12:b640::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199532
Signature Algorithm: sha256WithRSAEncryption
61:c0:ee:7c:98:42:a9:7e:21:3b:40:3d:9a:91:64:ff:14:8d:
74:29:f9:d7:d8:79:50:f5:c6:20:7e:8c:d6:90:ba:0d:b5:e3:
00:f3:37:5b:11:b0:8e:75:29:36:bb:e8:fa:82:2d:b2:1a:34:
3c:77:53:3b:d4:1f:95:6d:22:ad:1e:65:f2:22:11:e8:9f:e7:
ab:6d:03:8e:23:48:cb:00:ee:65:be:61:7e:da:2f:c4:13:a2:
51:13:58:a3:92:c2:10:6a:f0:18:a5:a4:41:ab:c1:41:85:4f:
6f:1f:95:1d:72:86:8a:d0:f1:76:1e:58:60:c3:1f:4f:96:b0:
1e:bc:c0:76:27:7c:91:27:cd:1d:ce:c3:ed:22:b9:69:ff:a8:
10:ee:61:2f:4d:e0:c8:cb:7b:f6:14:65:ef:0b:a7:7f:75:b6:
13:b1:bb:7a:74:fd:18:b4:46:42:0c:8e:e0:63:6c:3f:65:de:
f5:d1:18:3d:35:a0:60:ab:bc:45:ac:8e:e7:24:04:e4:f1:f6:
cc:85:3d:cb:8b:4a:6e:4e:6b:22:8d:46:93:93:62:ed:e0:a9:
09:7e:2c:3a:4f:b6:b9:cf:31:c9:99:6b:45:a0:b9:36:50:07:
70:0e:95:12:2d:14:8e:2b:2e:01:06:a0:5c:6a:ab:ba:e8:ac:
1d:82:77:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:30:56 2025 by rpki-client on console.sobornost.net