Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lFtz335v4RAPHROgfBjVmvIoQow.cer
File: lFtz335v4RAPHROgfBjVmvIoQow.cer (raw, json)
Hash identifier: aTy8JtjHgqVprNnKt1wco/IKXjQDSDXZ0F1848qAdPg=
Subject key identifier: 94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942521E350C3755B8BC35128B23516BDA1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 61098
IP: 85.217.160.0/22
IP: 85.217.172.0/22
IP: 85.217.184.0/22
IP: 89.145.160.0/21
IP: 91.92.116.0/22
IP: 91.92.140.0/22
IP: 91.92.152.0/22
IP: 91.92.200.0/22
IP: 91.92.224.0/22
IP: 92.39.56.0/21
IP: 138.124.208.0/20
IP: 151.145.192.0/19
IP: 159.100.240.0/20
IP: 185.19.28.0/22
IP: 185.150.8.0/22
IP: 194.182.160.0/19
IP: 2a04:c40::/29
IP: 2a07:6cc0::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:e3:50:c3:75:5b:8b:c3:51:28:b2:35:16:bd:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=945b73df7e6fe1100f1d13a07c18d59af228428c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e0:ec:55:d2:49:9b:ec:47:40:35:ef:28:01:
7d:20:70:2f:c1:10:e5:71:76:4d:3b:5b:ab:96:9f:
06:da:d4:4c:de:e1:cd:50:b7:e2:76:34:eb:2e:7e:
58:44:e0:a6:98:1b:50:e8:04:82:78:28:ab:05:4b:
38:51:e6:3b:a2:a5:05:a0:96:45:da:00:a5:0b:63:
88:99:98:52:cb:6b:c0:a6:9d:ff:be:3e:1c:19:0b:
79:9f:6f:38:31:cc:e7:54:9c:6b:4a:44:14:04:aa:
5e:e0:92:f9:c4:3f:39:be:50:f0:43:f9:56:66:8c:
00:65:fb:66:f2:20:ce:16:6a:c0:9f:dd:8a:76:d0:
20:be:48:29:7d:b4:fd:cf:a2:a2:28:d6:b6:d3:4c:
aa:9f:a7:1f:d5:a7:40:89:b1:9a:56:e0:c4:89:ac:
4c:86:d9:a5:eb:a1:89:7a:00:a8:bb:92:b8:20:0e:
d5:c3:85:3f:eb:eb:2d:2d:45:89:70:7a:df:1e:7a:
c2:68:56:4a:38:ba:e0:63:61:7a:91:c7:b3:5e:0f:
b2:0c:ed:bd:e2:e9:2f:cc:9a:e4:60:07:4a:bf:2e:
81:bf:7f:5c:21:b0:fc:d3:5f:bc:52:d7:b7:3a:9b:
78:74:e6:6a:c1:48:38:92:51:0f:3b:85:b4:2f:3f:
9d:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:5B:73:DF:7E:6F:E1:10:0F:1D:13:A0:7C:18:D5:9A:F2:28:42:8C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/ec618f-9f61-4185-ba0d-6e452425a193/1/lFtz335v4RAPHROgfBjVmvIoQow.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.217.160.0/22
85.217.172.0/22
85.217.184.0/22
89.145.160.0/21
91.92.116.0/22
91.92.140.0/22
91.92.152.0/22
91.92.200.0/22
91.92.224.0/22
92.39.56.0/21
138.124.208.0/20
151.145.192.0/19
159.100.240.0/20
185.19.28.0/22
185.150.8.0/22
194.182.160.0/19
IPv6:
2a04:c40::/29
2a07:6cc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61098
Signature Algorithm: sha256WithRSAEncryption
3b:f0:ea:e1:22:37:f3:1c:29:8a:41:8c:43:e9:71:64:74:29:
fe:2c:4e:89:6f:9e:8d:bd:4f:69:0c:ef:e9:9d:e4:00:89:b8:
2f:98:fe:0f:e6:fe:17:1f:2b:ce:85:65:41:1c:9c:f2:1f:27:
86:da:43:c2:c2:31:35:ed:f2:76:81:bd:6f:55:22:31:f1:d4:
2e:9a:c4:88:77:c5:3c:45:60:b5:f8:9c:0a:64:4e:54:d2:81:
77:ab:62:a1:40:fc:3c:4d:aa:4c:15:b4:93:54:43:31:b8:8f:
50:5e:a6:33:08:c5:4d:57:c5:74:ac:c1:59:cd:db:89:ea:f3:
b5:33:bf:20:2a:e5:72:96:9c:4d:0b:17:e3:2e:fc:15:b3:96:
78:2e:5c:e0:e9:c7:8c:b8:49:fd:9c:83:05:0d:85:84:ea:07:
76:b7:0b:27:2d:1c:e5:ec:49:86:7a:a6:0a:ab:4e:6a:93:dd:
6e:71:30:af:27:61:ae:dd:29:60:a9:b9:37:a0:c5:c6:2a:ab:
ca:56:e6:5d:6f:4a:61:71:bc:49:31:f3:fd:32:c7:c4:ac:a6:
d5:af:3c:19:8a:49:7d:bd:44:cd:37:ee:09:88:35:ba:11:27:
5a:85:80:3e:e4:ed:cb:46:3b:74:7f:65:03:52:41:c9:45:ac:
71:3a:1d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:24 2025 by rpki-client on console.sobornost.net