Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mM0-vWXtPZquB5oOJNcTLZpxqrg.cer
File: mM0-vWXtPZquB5oOJNcTLZpxqrg.cer (raw, json)
Hash identifier: 1Fks2DRLxSfVONb0Xo0nyLyFs8PDiWjwJXov5h388fQ=
Subject key identifier: 98:CD:3E:BD:65:ED:3D:9A:AE:07:9A:0E:24:D7:13:2D:9A:71:AA:B8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B25BFBF894DDCE9A8C603903484BD8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ce/ccc645-5323-4b20-b475-f37705361cf8/1/mM0-vWXtPZquB5oOJNcTLZpxqrg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ce/ccc645-5323-4b20-b475-f37705361cf8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 25220
AS: 50189
IP: 46.182.248.0/21
IP: 62.102.192.0/19
IP: 82.145.192.0/20
IP: 85.197.64.0/18
IP: 185.56.228.0/22
IP: 193.106.16.0/22
IP: 193.254.212.0/23
IP: 195.135.224.0/22
IP: 2001:4b38::/29
IP: 2a00:9e00::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:5b:fb:f8:94:dd:ce:9a:8c:60:39:03:48:4b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=98cd3ebd65ed3d9aae079a0e24d7132d9a71aab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3d:4f:a6:ef:7c:3a:40:9c:db:c1:c9:23:51:
96:91:e8:26:98:a7:04:d0:0f:a5:ca:a9:2b:25:ed:
c5:b2:2b:21:50:d1:58:30:2a:11:00:7b:43:75:b8:
76:d9:b1:73:f4:2b:4a:a9:53:4a:31:8a:6d:03:4d:
87:c1:27:01:35:7f:fa:81:91:63:ad:27:7d:91:7b:
ca:dd:13:fd:84:d3:f2:84:fc:e4:19:7a:e5:ce:73:
92:b1:f4:0d:e6:88:97:2e:bd:12:01:6d:d3:6b:1e:
05:43:a8:bb:80:02:45:5d:7c:3a:33:5b:8a:72:d2:
b7:8c:63:fe:13:7d:ed:12:01:04:74:88:f6:d8:73:
c0:27:96:86:a8:60:5f:53:5e:eb:45:3c:8e:93:dc:
57:5e:4f:22:ad:c3:87:5a:fe:ac:02:be:21:a0:15:
83:e8:92:30:f4:54:7d:4c:27:b4:53:32:ba:e5:e7:
9e:90:69:bf:c1:b2:ad:9c:56:aa:b4:3e:d6:0c:07:
ac:73:01:ec:cf:ed:85:31:9c:23:47:f8:03:af:06:
39:09:98:bf:b5:19:e5:35:cd:c2:2c:7a:b6:00:0c:
d8:7c:38:cb:55:11:e9:6a:93:ef:3b:bb:0e:53:f9:
54:14:9f:dd:83:71:09:53:51:4a:2c:94:ff:e2:10:
30:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CD:3E:BD:65:ED:3D:9A:AE:07:9A:0E:24:D7:13:2D:9A:71:AA:B8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/ccc645-5323-4b20-b475-f37705361cf8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/ccc645-5323-4b20-b475-f37705361cf8/1/mM0-vWXtPZquB5oOJNcTLZpxqrg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.248.0/21
62.102.192.0/19
82.145.192.0/20
85.197.64.0/18
185.56.228.0/22
193.106.16.0/22
193.254.212.0/23
195.135.224.0/22
IPv6:
2001:4b38::/29
2a00:9e00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25220
50189
Signature Algorithm: sha256WithRSAEncryption
04:5c:44:45:75:8d:ee:a2:2f:be:ed:b2:54:7c:67:f3:34:d3:
7c:7b:57:e8:d4:80:75:5e:37:91:db:4a:4f:74:6f:be:25:e4:
f0:cf:23:00:03:02:9c:61:6d:82:19:31:03:72:97:41:96:d6:
6c:d0:f2:bf:23:b4:d4:09:b0:f9:c5:69:8a:f8:72:ca:3d:f2:
be:f3:5a:1f:c3:bf:ce:10:25:06:ad:9c:3b:07:3e:18:fb:51:
e0:54:fe:c3:c2:c6:d6:f5:aa:f5:73:ba:7c:00:09:e9:11:3f:
1c:dc:56:64:ce:4c:fd:22:b7:6b:18:08:8a:a8:3f:c5:67:86:
ae:ea:96:3b:96:95:a5:20:e2:3e:4d:02:bc:eb:39:1d:d7:ee:
db:4a:29:d8:41:10:2c:76:3c:70:0a:05:1b:95:04:79:09:2c:
f8:fb:2c:d6:44:45:7c:d1:a9:3e:0b:e8:ad:da:16:be:9c:6b:
68:b6:37:86:28:2a:c2:60:69:78:dd:e2:d8:4d:1e:f4:1e:85:
49:70:48:bc:aa:df:00:06:2f:af:f1:c7:dd:4f:3d:b3:e9:4b:
f2:f0:e6:1b:85:b2:12:4f:39:13:e1:4b:c1:9f:5e:e4:68:7e:
cd:94:6d:54:22:9e:f7:1b:0b:6f:8f:48:2f:2e:ec:d0:20:7c:
15:69:05:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:26 2025 by rpki-client on console.sobornost.net