Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/XTAFa8TiA5Om_r9ldrORLH6laaY.cer
File: XTAFa8TiA5Om_r9ldrORLH6laaY.cer (raw, json)
Hash identifier: rZpBGrY34KcgI8rGTnTnvZWxsY0HUw4EaiLRh3wJPgk=
Subject key identifier: 5D:30:05:6B:C4:E2:03:93:A6:FE:BF:65:76:B3:91:2C:7E:A5:69:A6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427487669051FC792BBB0AD42AB9DFEFF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/XTAFa8TiA5Om_r9ldrORLH6laaY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:50:47 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.149.193.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:76:69:05:1f:c7:92:bb:b0:ad:42:ab:9d:fe:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:50:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5d30056bc4e20393a6febf6576b3912c7ea569a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:85:95:62:db:5c:44:53:00:e9:a0:e9:bf:5b:
b8:09:7e:48:33:fb:cd:b4:45:0b:bb:70:e4:64:27:
9b:c6:34:2e:a3:b0:5f:17:2e:16:24:67:48:67:e9:
2f:42:50:96:57:db:7a:18:58:be:d4:1c:a1:c6:43:
d5:74:88:c6:ff:af:93:d8:dd:6f:ed:c8:d9:32:db:
2c:b0:5b:c5:6c:b8:22:2f:06:dd:5c:66:a6:e3:3e:
ce:37:18:0e:e9:bd:b5:48:61:56:35:91:a2:13:3b:
23:a7:ef:08:a7:b8:67:0a:5e:1c:22:30:18:52:b8:
1e:df:da:ce:a7:51:bf:a8:9d:88:b7:f9:76:ef:ea:
55:7d:ed:a1:fb:78:66:cd:c8:63:ff:73:52:f2:fc:
97:10:c0:8a:8c:f0:66:48:82:e7:80:74:c8:63:84:
d9:bb:d3:72:f2:12:33:30:df:b6:37:90:36:73:b9:
1b:98:de:6f:0a:70:61:c4:e1:c6:c4:48:c5:6d:e6:
6b:4c:e2:5f:bd:75:90:29:a9:f8:dd:41:c5:8d:6a:
79:90:8c:d6:72:33:52:59:d0:12:05:0c:75:29:67:
13:13:49:54:95:1d:ab:93:e8:5f:60:10:66:2b:6d:
9d:ac:3c:72:a5:44:ca:cc:68:97:07:9e:2e:a0:48:
56:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:30:05:6B:C4:E2:03:93:A6:FE:BF:65:76:B3:91:2C:7E:A5:69:A6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/c3c5b7-fe57-474c-8ae3-de18510ea50a/1/XTAFa8TiA5Om_r9ldrORLH6laaY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.193.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:db:8a:4b:00:f0:12:6a:c1:b0:9a:37:81:10:d5:dc:d5:ae:
73:e3:b2:6b:38:22:3c:ed:6c:ef:6f:b7:e5:e9:d4:4c:cd:32:
ef:eb:69:bf:30:70:8c:85:e9:43:8a:8c:a9:ea:5a:b9:c9:42:
93:e2:49:c4:e6:3e:76:1a:1d:11:ad:d1:9a:10:3a:37:9d:1b:
de:f7:33:0f:3e:1f:e1:10:32:ae:66:29:50:f7:2c:fd:d0:3c:
1a:8b:6c:a7:c9:16:67:16:ec:58:c7:de:32:14:4d:5e:7e:bb:
4f:d3:01:fe:9d:5d:09:50:ad:93:01:eb:a7:04:f1:6a:af:44:
75:0d:7a:45:44:36:12:fc:2c:18:81:26:5c:b7:70:a7:42:88:
6a:01:be:c4:57:a3:c6:0a:4f:9d:69:79:75:57:6d:d8:f9:cb:
37:31:ae:a4:1c:e1:ec:5a:9d:29:ec:82:32:09:9b:3c:7f:12:
43:33:a9:d8:ad:e6:1f:af:0f:05:77:1f:da:23:6a:93:31:5a:
35:e0:99:cd:3d:9a:e5:21:f6:b2:33:de:dd:ad:86:d5:a3:33:
8d:7f:a6:91:9a:7c:f3:c6:c9:7a:09:e1:a6:ac:ea:c6:e5:54:
59:2c:dc:7c:c3:5f:a3:ca:26:a2:1c:cd:a2:de:84:65:47:21:
b1:45:f1:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 23 19:15:46 2025 by rpki-client on console.sobornost.net