Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wOjlaxjUXGRvA8tvkGnaDIs8dK0.cer
File: wOjlaxjUXGRvA8tvkGnaDIs8dK0.cer (raw, json)
Hash identifier: YCqj1U4ThLe+gvduSbmuR0WRtPd45rIY03zZrx+b7i0=
Subject key identifier: C0:E8:E5:6B:18:D4:5C:64:6F:03:CB:6F:90:69:DA:0C:8B:3C:74:AD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425204405F2882501018EE7FA996EFEDE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/wOjlaxjUXGRvA8tvkGnaDIs8dK0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:47:39 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 199736
AS: 208909
AS: 209202
IP: 2.57.128.0/22
IP: 5.183.220.0/22
IP: 45.15.136.0/22
IP: 91.204.124.0/22
IP: 162.213.64.0/22
IP: 185.38.128.0/22
IP: 185.41.96.0/22
IP: 185.87.188.0/22
IP: 185.132.90.0/24
IP: 185.219.136.0/22
IP: 195.211.168.0/22
IP: 2a00:fde0::/32
IP: 2a01:57a0::/32
IP: 2a09:d940::/29
IP: 2a0e:3c80::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:20:44:05:f2:88:25:01:01:8e:e7:fa:99:6e:fe:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c0e8e56b18d45c646f03cb6f9069da0c8b3c74ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3c:c3:ea:b7:a5:86:46:aa:db:b4:59:1a:b1:
c1:9e:ed:a6:96:65:a2:4e:d5:a8:a6:7e:95:11:0f:
d7:f5:7d:60:db:13:6c:6a:0a:e2:4f:60:cb:59:a7:
25:15:29:66:c8:d7:4a:dd:16:57:7b:4d:34:34:ca:
13:db:35:9a:7d:b7:06:fb:88:1c:e3:a8:ef:19:cb:
16:04:6d:75:fe:75:b5:0f:d8:2e:81:bc:c0:a8:3b:
08:68:b3:db:8a:46:c9:a2:6e:fe:97:b0:0b:b5:52:
c1:15:24:97:6a:09:55:0c:42:99:5e:93:22:cd:0c:
22:54:5f:f8:ca:3c:88:39:a3:44:ae:3f:53:6a:e2:
e0:ce:51:51:ea:e2:d2:41:cb:6d:31:50:e6:62:ca:
85:58:d9:42:57:17:08:84:8e:a8:4e:cc:db:a8:f1:
7c:4d:a8:c5:d4:af:cb:4c:ad:ec:fe:c6:f6:32:a1:
49:35:88:76:10:3d:07:10:26:43:7b:49:90:2b:05:
0c:ce:bd:db:9b:1f:9f:21:f5:54:9a:5e:9a:00:41:
12:77:9a:eb:de:95:ce:4b:65:5a:81:3d:24:34:36:
9a:fc:df:5a:4e:c0:da:c0:ff:61:fc:e6:99:df:8c:
37:fa:e3:8f:c9:88:39:df:9d:ea:67:d1:43:2b:16:
b3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E8:E5:6B:18:D4:5C:64:6F:03:CB:6F:90:69:DA:0C:8B:3C:74:AD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/2abea2-30d0-4654-a834-745bce3060c9/1/wOjlaxjUXGRvA8tvkGnaDIs8dK0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.128.0/22
5.183.220.0/22
45.15.136.0/22
91.204.124.0/22
162.213.64.0/22
185.38.128.0/22
185.41.96.0/22
185.87.188.0/22
185.132.90.0/24
185.219.136.0/22
195.211.168.0/22
IPv6:
2a00:fde0::/32
2a01:57a0::/32
2a09:d940::/29
2a0e:3c80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199736
208909
209202
Signature Algorithm: sha256WithRSAEncryption
3a:1d:a5:ba:b0:9f:8d:f7:3a:88:5a:d5:f5:bd:2a:04:e7:46:
e2:5c:44:75:5b:6f:b0:6b:52:41:b9:aa:7b:f3:e3:05:fb:eb:
7a:f4:66:df:89:8e:75:39:eb:f5:6a:bb:bc:83:a3:9a:8c:73:
95:b0:98:c9:ef:06:2f:29:ba:d0:13:7d:95:94:a7:1f:9a:8a:
8c:02:49:e5:d9:00:3e:67:b7:ba:3e:5f:a7:2b:a5:d1:b2:f6:
27:fb:2a:7e:23:f0:83:b8:1f:dd:62:e0:48:f5:27:06:3d:87:
5f:b7:cd:3d:53:40:03:ec:e5:d9:37:89:41:08:58:ff:15:db:
cc:f4:c9:c1:6e:d3:dc:60:a3:25:49:c7:35:d0:62:cd:69:a4:
50:00:61:ca:e8:62:74:b6:9e:3e:39:6b:c4:f9:79:a4:1f:1a:
6e:ce:cf:64:ee:c0:50:77:ac:b5:cb:89:0c:c7:6a:22:15:00:
95:8e:2e:29:60:86:4c:3e:51:6e:c0:ad:13:bf:5a:73:bc:0d:
6d:e8:21:aa:c7:c7:5a:4d:ef:c4:cd:2e:46:0e:cd:f0:b3:42:
c4:d0:0b:b8:4b:c5:82:8e:72:27:6f:d6:0b:93:74:06:44:e1:
85:2b:82:39:95:f1:5d:a9:6e:56:b3:ef:79:2a:20:04:22:52:
8b:e1:07:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:13 2025 by rpki-client on console.sobornost.net