Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gHvWL9jTUwjbyLH9Xxcnr1er0iA.cer
File: gHvWL9jTUwjbyLH9Xxcnr1er0iA.cer (raw, json)
Hash identifier: EDMO8XxCxFhd82j7UdHIPfNvPJ3B1h8yaiRZTGXvyxc=
Subject key identifier: 80:7B:D6:2F:D8:D3:53:08:DB:C8:B1:FD:5F:17:27:AF:57:AB:D2:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FC59FD38F6A2F04388F8788D991289
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/gHvWL9jTUwjbyLH9Xxcnr1er0iA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:48:02 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 48837
IP: 91.212.66.0/24
IP: 91.236.58.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:59:fd:38:f6:a2:f0:43:88:f8:78:8d:99:12:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=807bd62fd8d35308dbc8b1fd5f1727af57abd220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cd:ae:7a:32:2d:4b:b3:16:76:bb:a4:c8:8f:
c6:1f:bb:0f:46:40:ec:05:60:78:b8:d3:14:d8:9f:
06:7b:49:61:81:3f:94:5a:9d:1a:0b:6c:64:76:af:
cb:d9:57:56:51:3e:80:2b:21:ae:b3:7c:07:4d:87:
14:4f:f5:3c:a8:a7:23:b3:75:19:96:88:04:4b:4b:
74:63:7f:f0:68:ed:2c:88:b4:4c:be:83:b1:8c:fb:
6c:1b:e2:66:40:c5:d9:ec:3a:8a:31:4d:93:af:54:
4f:a0:a2:02:5f:6a:6f:5a:a2:59:52:1c:60:ff:c6:
ff:77:70:04:eb:6c:c2:b3:1b:0d:ac:6e:24:c8:1d:
c9:07:a5:1e:d8:8b:f4:af:9c:8a:96:07:11:09:6b:
aa:09:d1:3f:ee:25:60:36:fd:c4:20:47:d3:52:a6:
10:32:23:e9:3a:77:2d:e4:78:3a:44:2d:6b:81:18:
4c:1b:ed:d7:ea:99:b9:4f:4f:3d:47:6a:0a:08:07:
35:5d:90:ba:8e:21:80:cf:98:9b:a4:82:9a:74:80:
f2:3b:eb:f1:28:62:5c:00:94:35:12:9a:19:f4:31:
21:b6:f2:17:21:b5:49:29:5b:3b:ab:27:40:8e:08:
6f:57:32:19:91:fa:a0:50:21:fd:11:b7:9c:67:68:
ed:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7B:D6:2F:D8:D3:53:08:DB:C8:B1:FD:5F:17:27:AF:57:AB:D2:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/a0ab51-9dae-410d-8fd9-08fadeb2dbe7/1/gHvWL9jTUwjbyLH9Xxcnr1er0iA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.66.0/24
91.236.58.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48837
Signature Algorithm: sha256WithRSAEncryption
b1:cd:98:2a:2a:fb:67:dd:36:35:bc:20:6b:74:e1:f8:37:d5:
ad:a4:d3:be:b0:f5:1b:25:a9:ea:7b:b8:bc:75:ea:3e:72:34:
af:8f:6f:aa:bb:db:3c:bf:45:28:4a:7b:24:55:b3:4f:b3:33:
c2:4e:c6:3b:f7:35:4f:21:40:69:f7:2e:5d:4a:c4:bd:73:63:
15:01:de:9a:c8:f0:42:fa:f3:33:28:6f:d2:fb:d3:63:91:f3:
af:e7:25:db:a4:a9:75:84:50:ea:94:b7:80:8b:4f:60:35:f1:
78:f5:a4:3b:7f:25:41:f4:aa:62:8e:79:5e:1b:b0:3c:c9:4c:
fa:29:f1:8b:28:40:b5:2c:f1:4e:22:7e:f5:d9:6d:cd:23:b8:
e1:d6:b5:cd:f1:87:0b:18:ef:46:30:c5:92:b9:9a:c8:f3:37:
45:3f:bf:66:47:b4:40:16:9a:f4:5b:f0:98:0b:40:ec:28:39:
61:ac:b0:4a:34:c9:0d:56:a7:3c:73:82:4f:75:9d:f0:31:5b:
0c:b8:aa:71:ed:01:95:82:9e:e7:74:81:e9:e4:4e:40:2b:6a:
2a:85:66:c6:4a:aa:08:93:21:60:42:34:03:d4:4c:15:8e:7c:
be:f6:98:ae:12:d2:71:9a:7c:7e:70:6f:fa:61:38:7d:c8:ce:
4b:6b:0e:cc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:11 2025 by rpki-client on console.sobornost.net