Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer
File: oMjNqBTnd9n-FUuS6ZWc4SCwrVg.cer (raw, json)
Hash identifier: wuAjdCRpTAuVKbIQDF9ngY10Bt1SBZEzh+v2E32FLB8=
Subject key identifier: A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B3E947AEA4E8E15051563B9A407649
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:49:18 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 57624
AS: 197560
AS: 206689 -- 206690
AS: 206733
AS: 206934
AS: 212791
AS: 213272
IP: 46.235.32.0/21
IP: 185.63.220.0/22
IP: 185.96.244.0/22
IP: 185.212.80.0/22
IP: 193.30.22.0/23
IP: 193.30.90.0/23
IP: 194.5.44.0/22
IP: 2a04:f640::/29
IP: 2a0d:e100::/29
IP: 2a0f:a980::/29
IP: 2a0f:bd40::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:e9:47:ae:a4:e8:e1:50:51:56:3b:9a:40:76:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a0c8cda814e777d9fe154b92e9959ce120b0ad58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:6c:6c:04:93:78:32:16:11:f5:d2:99:ac:
b0:94:cd:6d:88:5a:48:3b:d4:23:6f:97:c2:81:79:
eb:19:ef:4d:6b:ed:de:69:53:c8:4a:91:a9:44:33:
b1:80:69:dd:61:95:72:46:4a:5f:d2:bd:30:de:ed:
d0:8b:5c:67:52:c8:f2:c4:5c:a8:f6:9b:6d:3e:9b:
d1:5d:99:97:e5:2c:a7:cd:6d:4d:45:e9:a0:64:3e:
04:0e:fc:0e:ce:1b:36:e4:50:e4:ef:21:8d:ed:35:
49:b8:b4:6a:82:6b:a3:cc:0f:08:0f:12:4c:7e:d8:
2f:98:e0:af:3b:c7:f7:b7:af:b5:79:c5:c3:cf:ff:
c0:9b:49:b5:d6:88:42:07:6d:b7:0c:89:62:b4:15:
e4:b1:6b:2d:a0:db:dd:ee:e9:b4:d6:f7:96:a4:52:
b4:7e:ed:c0:ce:c8:af:6a:ed:b6:75:d9:08:2f:83:
b8:0d:d2:c8:4a:8f:63:48:cd:59:a2:cc:5a:d4:37:
4e:0e:70:b3:11:64:d7:5c:bc:1d:3f:2d:80:dd:b6:
12:b7:90:70:0c:48:c5:ab:9d:13:cf:d9:27:5c:bf:
f6:8c:98:08:13:24:e1:64:80:76:fd:f7:1f:43:2c:
73:e2:61:52:85:a0:e7:a1:e7:c3:e9:3c:ec:3d:04:
9b:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C8:CD:A8:14:E7:77:D9:FE:15:4B:92:E9:95:9C:E1:20:B0:AD:58
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aa270a-c089-4778-9343-b7362edbd8ac/1/oMjNqBTnd9n-FUuS6ZWc4SCwrVg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.235.32.0/21
185.63.220.0/22
185.96.244.0/22
185.212.80.0/22
193.30.22.0/23
193.30.90.0/23
194.5.44.0/22
IPv6:
2a04:f640::/29
2a0d:e100::/29
2a0f:a980::/29
2a0f:bd40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57624
197560
206689-206690
206733
206934
212791
213272
Signature Algorithm: sha256WithRSAEncryption
21:47:8e:86:e7:ce:c1:e8:78:cf:5e:04:50:26:1d:16:12:39:
5a:7d:66:70:3c:12:b1:16:d7:f0:67:ad:6e:a2:dd:0c:94:90:
aa:cd:fb:1d:87:c5:6f:93:de:1a:08:34:b5:e6:f5:5e:4a:44:
bc:9f:a3:8f:73:e4:34:8c:da:63:ac:4e:c5:a9:d1:22:55:dc:
90:84:7d:80:4a:d1:93:2c:8a:a5:35:da:ba:28:0a:1e:9f:3b:
3d:c3:ed:eb:1b:e1:ec:c9:e6:b0:09:63:9a:bf:fc:80:ea:4f:
86:d1:06:ea:d6:c0:e1:61:29:25:32:aa:a2:46:79:f6:a8:c1:
aa:d4:1e:38:d1:f0:7c:6e:01:54:16:23:ce:f3:d8:33:f4:af:
d2:e9:40:d1:6f:0d:67:eb:6c:bf:b9:cf:0b:b8:5a:bd:95:e2:
ef:67:a7:37:67:30:c8:17:f6:92:2a:82:93:77:b0:05:a3:9a:
64:9f:a8:e5:d8:d2:ac:eb:0c:2d:7d:0d:18:f6:af:b6:d4:50:
5e:cc:84:97:13:48:20:f6:75:47:6a:8b:b8:dc:ff:25:e1:77:
9d:1a:c0:e7:07:5f:56:ce:8e:5b:68:d0:f5:e2:e3:da:26:7f:
eb:f1:6b:c8:74:08:82:49:e6:46:85:da:da:cf:4b:78:3f:d0:
4c:13:b2:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:50 2025 by rpki-client on console.sobornost.net