Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_hpSVPN9jCkbEd2r7YiwY0gdr2s.cer
File: _hpSVPN9jCkbEd2r7YiwY0gdr2s.cer (raw, json)
Hash identifier: ZwKEX0eNY8YrL5MadC6gi1BSx3vBpSBymf1AwY54tPY=
Subject key identifier: FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194206831DEADC64AA2597012547C701753
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:48:06 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.168.232.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:31:de:ad:c6:4a:a2:59:70:12:54:7c:70:17:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe1a5254f37d8c291b11ddabed88b063481daf6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:81:29:97:da:f3:35:ff:87:e9:8d:21:7c:53:
bd:34:8e:84:67:84:fd:91:aa:74:ad:60:69:84:f5:
f1:44:57:73:f7:ef:ad:9a:f2:15:08:97:91:14:56:
cd:73:ef:3a:41:e6:f2:9f:e1:f4:02:b0:95:3a:74:
d8:59:43:3d:7f:8e:6c:54:fa:8c:b8:ef:76:5d:58:
01:1c:ab:41:27:24:3c:31:d6:e7:9d:d3:9d:98:93:
95:20:5e:e1:4c:0c:b9:07:8f:a8:c6:05:1c:51:15:
8d:9f:fe:4e:fa:f9:01:d5:11:81:7e:16:26:ce:26:
b1:55:32:1a:c4:39:ae:bd:98:ba:5d:64:11:5c:e9:
5d:c8:c1:bd:7b:8d:b3:54:d2:b2:28:a5:9b:0d:70:
99:fd:22:9c:2c:e0:5f:04:13:81:4c:b0:6c:16:c0:
69:fd:3a:fa:6b:f0:b4:ec:8f:48:79:8c:3e:70:a6:
1e:bc:6d:dd:2d:22:5f:02:d5:19:ee:b6:0e:ac:3f:
e8:ed:90:69:98:c8:ff:63:a7:1f:2c:f5:ec:2d:43:
64:1d:41:1e:2d:37:52:22:cf:09:ac:ce:b0:1f:24:
8b:20:3c:54:a6:9a:bb:04:22:d5:a9:01:c6:08:92:
18:89:ac:cc:39:64:34:75:1f:61:2e:12:1e:d3:eb:
49:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1A:52:54:F3:7D:8C:29:1B:11:DD:AB:ED:88:B0:63:48:1D:AF:6B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/63f60a-27d7-491e-bdc2-fa0d0e805df8/1/_hpSVPN9jCkbEd2r7YiwY0gdr2s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.232.0/22
Signature Algorithm: sha256WithRSAEncryption
62:12:80:c9:dd:f2:df:6f:30:0b:99:d8:50:ee:9a:9d:ed:d6:
33:e9:c4:56:1d:3a:73:c0:8d:db:a3:e5:9f:6c:61:e0:1e:87:
0b:0d:db:ef:63:2d:cf:64:3c:a8:20:56:8e:1f:bc:70:09:e7:
31:53:d3:01:48:35:01:0d:3d:02:3b:ec:21:a0:21:ce:be:9b:
d3:ed:c7:17:c0:a2:1e:09:a9:b1:56:f0:fb:ca:f1:92:78:76:
17:3d:65:c3:77:34:61:d0:22:eb:fe:81:76:81:f8:b1:c9:df:
4f:2a:93:02:c4:09:11:8a:31:4d:6b:2c:ee:36:23:2e:aa:c1:
61:3f:5d:ff:36:66:6f:99:25:a2:c7:70:89:6e:e2:ee:a7:c1:
d5:51:bd:1e:28:69:9a:5a:83:2d:8d:3f:80:cc:25:32:15:91:
0f:f2:62:8f:1e:61:76:f7:59:93:81:f7:5d:7b:d0:73:f6:1d:
3b:ab:b8:6d:6b:f3:a0:3a:10:2f:73:66:bf:c5:f2:33:ac:b1:
d1:40:c7:09:9a:ff:e3:2b:7b:9e:8c:a9:98:4e:5c:a3:3d:18:
a5:e7:98:04:ab:b6:64:a7:28:c3:e0:97:29:8b:d5:ea:12:37:
63:09:02:d3:0b:80:1e:ca:12:e7:45:5a:7d:fd:6a:9d:65:8f:
a2:20:6e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:31:18 2025 by rpki-client on console.sobornost.net