Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cnS17iqgd4rxMENYIlrGflUXCog.cer
File: cnS17iqgd4rxMENYIlrGflUXCog.cer (raw, json)
Hash identifier: zZkSTZTmjT5szv493rv8hw6/owLqAaVJlGrArnzXNUw=
Subject key identifier: 72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B3B3CF166CDD38AFD9B52E9AC0BEFC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:49:04 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205115
IP: 87.120.56.0/23
IP: 87.120.70.0/23
IP: 87.120.82.0/23
IP: 87.120.94.0/23
IP: 87.120.188.0/23
IP: 87.120.238.0/23
IP: 87.121.80.0/23
IP: 94.156.38.0/23
IP: 178.249.236.0/22
IP: 185.134.108.0/22
IP: 2a06:eb40::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b3:cf:16:6c:dd:38:af:d9:b5:2e:9a:c0:be:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7274b5ee2aa0778af1304358225ac67e55170a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:69:a6:bf:83:4d:a1:53:9e:ea:2a:fe:98:6c:
09:c8:4d:15:c5:85:cd:2a:ba:cf:ab:84:33:02:8e:
90:1a:34:57:ff:13:40:b0:95:7d:0b:7d:7d:25:79:
da:de:94:ba:6e:bb:41:f8:8e:46:37:59:bb:34:f1:
78:49:6b:ed:84:6c:c5:9f:b4:eb:3c:27:5d:14:bd:
6b:49:1f:e7:7c:f8:4f:1a:2b:2f:ad:e0:d3:c6:e1:
b8:8f:71:b2:52:fd:8d:1a:d0:46:f5:5d:21:94:ca:
80:be:2f:fc:98:89:44:c8:90:2a:11:f4:4b:9d:f0:
37:4e:50:6a:4b:bb:71:4c:75:54:2d:8d:ef:b6:a3:
4e:d5:78:7b:3b:d6:ab:dd:09:98:fa:48:5b:9d:6f:
c9:5f:5a:6b:22:fb:24:9f:6c:ad:fc:61:ce:59:f6:
7e:f4:d6:d1:a2:a0:80:8e:77:f4:46:c2:bc:f1:a4:
9d:b1:3e:24:4c:f4:dc:03:b2:31:b6:30:0b:45:c3:
d8:05:c1:86:05:da:e2:02:54:3d:bd:37:e7:e0:6f:
8f:7c:80:38:10:71:6a:e3:19:1d:36:48:f9:5d:0a:
c8:59:cd:ed:2f:37:0c:46:5d:62:a7:9e:6b:ee:91:
85:e8:12:72:14:38:ca:ef:aa:57:45:f5:bd:95:b1:
3d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:74:B5:EE:2A:A0:77:8A:F1:30:43:58:22:5A:C6:7E:55:17:0A:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/8106c6-96e3-4856-8e53-69ebed17814a/1/cnS17iqgd4rxMENYIlrGflUXCog.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.56.0/23
87.120.70.0/23
87.120.82.0/23
87.120.94.0/23
87.120.188.0/23
87.120.238.0/23
87.121.80.0/23
94.156.38.0/23
178.249.236.0/22
185.134.108.0/22
IPv6:
2a06:eb40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205115
Signature Algorithm: sha256WithRSAEncryption
10:3f:36:7e:48:19:3a:19:de:b3:eb:50:51:83:fb:d7:96:43:
2d:9f:97:88:8c:12:aa:7d:95:cd:59:4f:01:f7:d1:af:69:6a:
8e:ab:ed:75:b7:5a:da:8a:25:ff:b7:fd:2c:ae:a4:5a:6c:f6:
18:c3:df:a1:a0:67:1b:d8:dc:40:a7:e5:4d:14:88:85:56:71:
51:97:a1:3b:04:d3:e2:83:e5:b9:ff:41:9a:3e:61:1a:dc:43:
5c:c0:ec:44:1d:a5:ed:53:49:2a:34:8e:19:f2:a1:5a:64:66:
1a:90:95:b4:b3:4a:28:e0:79:7a:13:ae:c0:7a:93:c1:26:04:
cc:be:26:82:85:1b:0c:13:c6:39:36:e6:fc:86:b9:ad:aa:1a:
9b:d7:bf:7c:d7:95:e7:d8:be:5f:ef:cf:4d:f3:08:b6:06:71:
7a:c2:bf:36:b9:4f:a7:40:e7:73:35:a5:21:a4:a9:a5:78:8d:
bf:5d:d0:6c:88:9f:90:df:dd:e9:b7:9e:54:cb:c4:e9:6d:84:
be:d6:ee:5b:3e:51:d9:3a:dc:44:84:fd:7a:b9:b8:da:8e:ee:
c9:45:24:f4:40:4c:7d:59:78:b4:12:32:c5:f1:aa:cc:97:49:
3e:ed:cd:e6:4a:b1:78:66:54:9c:51:24:ca:96:ab:2d:e5:25:
62:39:f3:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:11 2025 by rpki-client on console.sobornost.net