Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rXLWZFEKa_uW8qalwSCYfcl3S_g.cer
File: rXLWZFEKa_uW8qalwSCYfcl3S_g.cer (raw, json)
Hash identifier: 2OKcGm77zR4/Tan4tBIhKLv/Vh2S17SClkmwR5l2KBs=
Subject key identifier: AD:72:D6:64:51:0A:6B:FB:96:F2:A6:A5:C1:20:98:7D:C9:77:4B:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194252192FFA9AB6B4DAED18FF763BA5904
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d8/94f2b9-cff6-42d5-8fb9-770d9a389295/1/rXLWZFEKa_uW8qalwSCYfcl3S_g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d8/94f2b9-cff6-42d5-8fb9-770d9a389295/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:04 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.163.90.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:92:ff:a9:ab:6b:4d:ae:d1:8f:f7:63:ba:59:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad72d664510a6bfb96f2a6a5c120987dc9774bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:da:14:41:23:72:6b:a2:98:4b:9d:6b:d7:a2:
f4:57:96:c8:26:0e:ba:12:76:18:eb:29:2f:ed:c8:
d3:a5:87:47:0c:5e:4a:85:d6:d9:50:50:b7:63:a7:
f2:d1:24:bc:89:b9:23:56:55:d8:fc:24:c8:99:78:
24:29:b1:c1:71:c5:18:86:b1:d7:88:c5:b3:03:17:
18:01:2b:f1:f8:a7:f6:2c:f7:9e:b2:c2:ad:50:bd:
69:73:f2:2d:fc:63:08:f0:0f:b9:55:57:b6:8f:7f:
67:eb:35:8d:00:24:f9:12:26:0a:68:20:3d:20:5b:
30:56:5d:c3:07:42:ba:97:0d:24:39:6c:7a:3d:d1:
f5:7e:34:48:65:4d:f5:0b:43:2d:65:cf:e5:12:c0:
60:ea:50:59:7a:be:9d:59:ba:6a:2b:ec:cb:6e:f3:
36:de:f3:c9:a3:ac:76:29:c8:94:54:b0:ca:d7:8a:
d5:03:37:ce:d6:21:c9:40:84:01:13:c1:5f:41:85:
c1:fc:f1:fb:ae:3f:d3:1a:98:4e:36:76:d3:f8:dd:
20:79:0c:99:cf:a3:cb:3d:cb:8c:d3:43:2e:58:89:
8d:03:d9:10:24:c1:bc:9e:8b:3b:ea:52:50:46:a2:
4d:e7:7c:db:4c:fb:e6:15:4f:c5:6e:6a:30:29:a7:
28:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:72:D6:64:51:0A:6B:FB:96:F2:A6:A5:C1:20:98:7D:C9:77:4B:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/94f2b9-cff6-42d5-8fb9-770d9a389295/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/94f2b9-cff6-42d5-8fb9-770d9a389295/1/rXLWZFEKa_uW8qalwSCYfcl3S_g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.90.0/24
Signature Algorithm: sha256WithRSAEncryption
44:c2:c6:78:a8:8d:ac:a6:31:84:ee:74:68:31:0b:c0:3a:8b:
7e:16:67:e8:ba:e9:f4:ed:a7:87:ab:85:43:7a:85:f7:86:fd:
a8:dd:2f:9f:f5:05:5b:f2:47:37:69:89:81:c2:10:b7:b9:51:
c1:66:5f:4f:96:23:c8:74:71:fe:5c:06:55:24:32:cc:c7:ae:
4c:77:fc:25:ab:81:2a:c5:17:a4:b8:66:c4:1d:2a:6c:24:79:
95:a0:f8:38:8d:75:88:e9:35:7d:53:86:1f:20:c7:f2:c4:db:
3a:0b:fb:f3:27:4e:b8:23:e5:a6:10:ca:29:0c:38:83:3c:01:
94:c3:7b:b3:4b:7f:a0:07:88:fc:39:ab:9c:a6:c3:02:4f:f9:
ff:53:9d:a7:2a:f7:d7:17:33:15:3d:f6:9a:bc:82:43:9d:03:
3b:ff:45:72:1d:29:7e:91:d1:9e:1b:37:ea:db:b4:08:15:61:
f7:16:6f:5d:c0:18:fe:ec:83:60:ae:39:74:ed:ba:c0:6b:1c:
f8:31:1e:86:5b:07:59:cc:23:98:48:01:aa:4d:72:56:46:5b:
c3:ca:44:23:2a:26:31:ff:37:1a:cc:06:9d:54:02:0c:60:12:
b0:b2:14:02:be:be:4c:83:39:22:69:4c:a9:30:f7:96:48:f2:
d5:c8:88:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:33:59 2025 by rpki-client on console.sobornost.net