Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer
File: qLX-Z8IHl9OUFVVVT4yYjKL3wXs.cer (raw, json)
Hash identifier: c/SdSsO2NB+lL89cmIDQlCK8Fn5MCbawdluMvqs8iKo=
Subject key identifier: A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FDB695871D1269B02D5238331F913C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:49:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 56595
IP: 46.226.0.0/21
IP: 89.32.88.0/21
IP: 91.239.46.0/24
IP: 91.240.174.0/24
IP: 95.215.9.0/24
IP: 185.7.228.0/22
IP: 185.8.93.0/24
IP: 185.34.8.0/22
IP: 185.73.152.0/22
IP: 185.100.68.0/22
IP: 185.122.64.0/22
IP: 185.240.200.0/22
IP: 188.241.20.0/22
IP: 192.124.192.0 -- 192.124.198.255
IP: 192.124.200.0/24
IP: 192.124.203.0/24
IP: 192.124.206.0/23
IP: 193.33.125.0/24
IP: 195.230.123.0/24
IP: 2a00:a600::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:b6:95:87:1d:12:69:b0:2d:52:38:33:1f:91:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a8b5fe67c20797d3941555554f8c988ca2f7c17b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:88:b0:f5:4e:60:95:08:f1:0c:52:e6:88:2a:
2a:cf:0d:25:1c:42:94:15:3b:ca:58:89:44:78:37:
ee:f8:19:c8:a6:3a:65:ff:f1:a8:87:26:f4:b9:67:
7c:83:bd:ed:49:c8:42:de:ca:93:bb:96:2e:3d:59:
57:dd:70:fd:d1:15:8a:5f:7e:a0:b4:5e:7d:5b:84:
30:7f:1d:8a:90:49:c6:bb:56:1b:2e:a3:74:61:a2:
c8:bb:d3:74:f2:32:35:49:2c:85:c5:2c:84:fe:91:
57:4a:52:81:d0:2b:ec:5b:50:15:cd:9a:22:b9:04:
24:21:df:71:e2:a3:b9:70:31:17:99:c5:68:58:d5:
4d:27:56:eb:b1:67:94:ff:cc:82:07:b0:5d:d8:86:
4a:1c:25:c0:81:bf:92:f1:cd:28:3e:5c:eb:d2:91:
f0:2b:a8:1c:9c:f5:64:cd:f9:38:fe:19:32:b4:8f:
9e:dc:f0:30:56:70:79:df:a9:c5:b5:04:21:0d:98:
d5:f6:c1:84:a8:3a:9e:7e:cd:15:d5:ea:36:79:cf:
b9:93:05:03:62:81:3a:c0:58:89:48:88:af:aa:ea:
0b:48:d5:df:63:6d:b0:21:7d:00:2e:a8:ec:5d:b8:
f2:65:cb:ab:03:6b:7c:7c:bd:12:94:c3:af:4b:35:
01:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B5:FE:67:C2:07:97:D3:94:15:55:55:4F:8C:98:8C:A2:F7:C1:7B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/e7cbf3-64e6-4023-befd-1cc619197551/1/qLX-Z8IHl9OUFVVVT4yYjKL3wXs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.0.0/21
89.32.88.0/21
91.239.46.0/24
91.240.174.0/24
95.215.9.0/24
185.7.228.0/22
185.8.93.0/24
185.34.8.0/22
185.73.152.0/22
185.100.68.0/22
185.122.64.0/22
185.240.200.0/22
188.241.20.0/22
192.124.192.0-192.124.198.255
192.124.200.0/24
192.124.203.0/24
192.124.206.0/23
193.33.125.0/24
195.230.123.0/24
IPv6:
2a00:a600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56595
Signature Algorithm: sha256WithRSAEncryption
a5:ed:49:36:0b:93:5d:b3:f2:e3:16:b6:2e:16:e0:af:f9:02:
5c:31:a9:dc:3c:4c:f3:e0:d9:cd:00:87:1b:82:5b:f9:46:23:
50:28:dc:17:2d:57:66:82:0b:fd:ed:9c:a2:1b:a5:c4:b5:94:
f8:3b:48:a9:2b:f7:08:d2:a3:91:4e:95:72:33:bb:68:5e:8b:
5b:0d:07:35:79:1a:ba:db:30:26:2d:3e:f0:30:6c:0b:f2:21:
1d:e8:ab:33:66:ac:70:eb:b7:b4:44:34:37:56:9f:5e:76:e3:
24:4d:cb:ca:a8:a9:19:a0:38:17:25:3c:1e:81:4e:88:d4:d7:
46:68:11:d1:d1:5c:f8:c3:bc:c4:ce:e1:8f:d9:e5:f9:fd:68:
95:3b:17:9a:3a:a7:1c:4c:cf:b7:95:fd:94:a5:be:39:a7:0c:
87:be:2a:79:0a:94:db:6c:a2:cb:1b:54:0a:33:8e:68:68:c1:
4e:da:2e:22:25:14:ab:24:ec:fe:55:d2:9e:65:88:f1:37:35:
1e:9f:07:63:11:fb:c1:53:cf:36:e9:4f:fb:3a:03:13:8c:2e:
ed:53:a8:7b:e1:a0:07:9c:fd:91:94:a2:54:90:dc:0a:91:fa:
ea:a1:91:bd:71:78:fe:de:8f:5b:31:16:1f:c9:15:ce:50:94:
f1:81:51:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:56 2025 by rpki-client on console.sobornost.net