Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mHKOiifTDIOu5fSWJAmF7kDLN4s.cer
File: mHKOiifTDIOu5fSWJAmF7kDLN4s.cer (raw, json)
Hash identifier: N489lmSxlXtDO4zvjkf1O4ZzKId+u43x1LsLtr3+bTQ=
Subject key identifier: 98:72:8E:8A:27:D3:0C:83:AE:E5:F4:96:24:09:85:EE:40:CB:37:8B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942369D7D2542161D346781BDA4D7DD482
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/mHKOiifTDIOu5fSWJAmF7kDLN4s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:48:46 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 8873
IP: 45.154.28.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:d7:d2:54:21:61:d3:46:78:1b:da:4d:7d:d4:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98728e8a27d30c83aee5f496240985ee40cb378b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:47:6b:1e:da:0b:da:97:02:1d:02:c0:de:5c:
42:7f:f5:88:a9:f9:88:de:69:29:0b:c5:77:85:aa:
96:d7:3f:88:ed:5d:2b:c1:07:74:dd:f6:db:54:5d:
a9:d6:91:bf:7f:a6:ed:14:f2:7a:79:bf:f3:56:09:
32:d2:31:be:ba:8e:00:9b:cf:9c:a4:f6:c5:af:98:
ab:85:0b:f2:92:e1:15:9e:79:e2:33:65:8b:75:34:
8a:c6:25:f9:72:1a:6d:b0:3e:3b:f1:c3:11:7f:c6:
74:99:32:22:d2:d1:ab:99:52:42:c8:77:3d:3d:38:
27:1b:54:42:5f:0e:63:05:80:11:9b:52:65:f7:7a:
70:9d:5e:a0:a3:68:5c:0e:4e:a4:34:81:f5:6b:13:
c7:10:10:4e:b7:a1:af:21:fb:73:3f:ca:82:7d:db:
5e:f5:a7:10:33:12:aa:84:64:6d:87:da:55:3b:24:
44:d8:d8:19:d5:bf:a7:7c:a4:54:2d:c6:fc:75:c5:
49:54:de:9d:71:94:fe:2a:e6:c5:15:a3:19:bf:1f:
4b:be:97:3c:f1:c6:87:ab:60:ec:19:22:db:88:cd:
3a:f4:df:ba:db:d9:a6:7a:94:80:82:d5:60:a4:16:
07:03:34:5e:b5:35:ba:9b:33:a4:71:16:29:1a:4c:
91:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:72:8E:8A:27:D3:0C:83:AE:E5:F4:96:24:09:85:EE:40:CB:37:8B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/mHKOiifTDIOu5fSWJAmF7kDLN4s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.28.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8873
Signature Algorithm: sha256WithRSAEncryption
22:66:4e:0e:a2:02:dd:d3:b2:d8:bb:4c:22:88:71:86:61:d5:
5f:82:8e:11:db:41:8e:97:9b:c8:b6:cb:dc:ee:7a:96:0e:6c:
b3:43:04:f2:aa:9d:3f:28:c2:2b:8c:43:9a:5b:35:83:0d:3c:
32:f5:1b:20:b8:54:9e:48:ee:3a:7d:1e:e5:14:56:16:a8:fe:
17:4c:2b:7a:ab:86:67:a6:aa:08:ef:21:99:87:96:ed:19:c8:
8d:5d:33:c0:4a:1b:ad:da:8c:20:ee:d5:b2:02:55:17:21:83:
85:c3:c7:2d:10:bf:fe:12:e8:24:49:9a:f5:2b:bc:5a:d6:9d:
28:65:5e:fb:c7:f9:f0:4e:9d:12:5d:e9:5c:9e:c4:93:47:5c:
54:4f:14:f8:bb:12:3a:d9:cd:7c:00:d3:1d:3d:5e:35:ae:ee:
02:ed:e4:f8:84:67:9a:eb:dc:46:1e:e1:f1:b4:15:b4:0e:30:
aa:5e:e1:0b:f2:01:e9:52:9d:dc:a3:cd:97:34:fb:0a:1a:30:
1f:63:ff:fc:80:5e:05:ca:dd:1c:ed:84:09:00:2d:44:ae:a7:
9b:91:63:a0:e8:8e:80:93:52:d6:7a:10:c0:b1:d2:9b:06:1a:
da:f1:fd:9b:d4:97:15:ae:74:f6:73:8a:74:7b:ad:6a:ee:d1:
8d:7b:70:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:26 2025 by rpki-client on console.sobornost.net