Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t5Wq8DMATJLXomwjbBTTJVLXjZQ.cer
File: t5Wq8DMATJLXomwjbBTTJVLXjZQ.cer (raw, json)
Hash identifier: UdVJkeeLOBswkDnQq2Ybb7a6wlwJT7u4pJ6qnta+iwU=
Subject key identifier: B7:95:AA:F0:33:00:4C:92:D7:A2:6C:23:6C:14:D3:25:52:D7:8D:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942445828023D0C47C75BB80C7A07EFFA1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/c752b2-18f9-4191-88f8-c065f242f020/1/t5Wq8DMATJLXomwjbBTTJVLXjZQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/c752b2-18f9-4191-88f8-c065f242f020/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:42 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 199758
IP: 91.132.252.0/22
IP: 185.46.228.0/22
IP: 185.153.8.0/22
IP: 195.13.47.0/24
IP: 195.13.51.0/24
IP: 195.14.7.0/24
IP: 195.14.10.0/24
IP: 2a01:8760::/32
IP: 2a03:ac60::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:82:80:23:d0:c4:7c:75:bb:80:c7:a0:7e:ff:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b795aaf033004c92d7a26c236c14d32552d78d94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ec:47:3c:d9:f1:35:b7:af:9a:64:ab:f2:ab:
b8:b3:39:f3:b3:bd:91:61:42:08:a8:e6:02:17:28:
f9:bf:89:d4:3d:c7:a7:85:95:d6:36:60:17:33:d7:
03:d6:c2:8a:55:2c:ac:d9:94:6e:9d:bc:78:f0:04:
03:56:af:fa:14:6d:9b:9e:a7:c9:47:96:c3:cd:82:
61:02:c5:d3:d1:f1:9a:68:36:a4:bb:b5:be:08:71:
57:62:78:3d:17:7d:84:96:91:d5:b1:27:03:b2:e9:
df:68:1c:66:44:95:a8:d0:30:b0:40:e2:84:b2:0e:
86:23:1e:b9:2d:a0:54:c6:56:92:67:dc:8d:b8:ad:
de:e3:7d:73:f4:0d:51:95:e5:70:c0:e3:8b:c0:0f:
bf:73:5a:0b:88:d8:79:2a:05:df:cc:2a:c9:c9:33:
3b:7b:b8:ce:e5:49:50:44:4c:cc:cf:74:20:6f:e0:
89:16:f3:e5:53:92:1d:e9:6e:5c:06:f6:15:17:5b:
fa:19:37:36:a5:83:d1:ee:75:d9:d4:73:90:4e:62:
e6:f6:45:3b:3d:a6:ef:97:f1:c4:07:55:55:91:47:
62:b1:c0:d8:7e:91:2b:de:f7:be:5e:fe:90:24:2e:
8a:49:93:5c:02:5d:f0:4d:ca:0e:f8:0e:7c:9b:8d:
24:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:95:AA:F0:33:00:4C:92:D7:A2:6C:23:6C:14:D3:25:52:D7:8D:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c752b2-18f9-4191-88f8-c065f242f020/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c752b2-18f9-4191-88f8-c065f242f020/1/t5Wq8DMATJLXomwjbBTTJVLXjZQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.252.0/22
185.46.228.0/22
185.153.8.0/22
195.13.47.0/24
195.13.51.0/24
195.14.7.0/24
195.14.10.0/24
IPv6:
2a01:8760::/32
2a03:ac60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199758
Signature Algorithm: sha256WithRSAEncryption
3b:d5:89:ad:ef:dd:16:57:e1:58:b0:95:3c:5d:69:98:c1:43:
0c:5e:fd:06:ca:07:3d:8e:ba:3d:52:2d:a1:db:9b:d0:f6:b2:
fe:35:18:3a:59:d4:41:9f:88:8c:e2:3f:3c:f8:ec:1a:f6:2e:
8b:e6:88:b2:81:27:51:e9:b8:54:3a:de:cc:c0:ef:67:5e:04:
fb:dc:d6:8f:72:9c:d2:7c:ce:ad:e2:c2:44:f6:ba:2c:81:42:
d9:64:ed:31:24:5f:e1:71:e6:ec:ea:76:74:2d:41:14:49:ad:
4b:fa:03:11:67:b7:22:b6:59:98:6f:f0:58:af:dd:eb:df:8f:
ab:7f:af:9f:c7:66:2e:76:d2:19:90:2d:39:04:f1:7f:1a:55:
a0:ca:09:e4:bd:bd:79:22:6a:d4:fa:87:d1:f6:e0:a1:c4:fa:
52:96:fd:60:2c:45:6a:03:0c:17:32:55:9a:48:a6:b8:27:10:
21:32:8b:bf:6b:b8:f7:16:68:d9:b3:fa:fe:83:eb:7b:ae:74:
a4:15:c0:74:eb:e1:01:4c:ac:5e:2b:d8:94:5c:fc:b0:b2:63:
1f:61:1b:5b:1e:3c:b0:23:ed:77:a7:0e:40:01:dd:62:54:02:
0e:ab:40:fc:98:92:0a:83:c9:c5:b6:ac:e7:20:6c:ac:f6:c4:
ae:54:73:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:04 2025 by rpki-client on console.sobornost.net