Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x5g7OpdY_L54cz2RVa7SZsiCojw.cer
File: x5g7OpdY_L54cz2RVa7SZsiCojw.cer (raw, json)
Hash identifier: jcWYMUwL58Tu4FjGj3q3BnaJnYg9ANE2iJH/v3tEc3k=
Subject key identifier: C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B24CE29E18221F06F5A9F5E7EE411B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 16342
AS: 29553
AS: 30782
AS: 42084
AS: 51353
AS: 51619
IP: 31.182.0.0/15
IP: 77.237.0.0/19
IP: 85.89.160.0/19
IP: 91.189.0.0/21
IP: 130.255.152.0/21
IP: 176.107.40.0/21
IP: 185.67.216.0/22
IP: 185.91.212.0/22
IP: 188.246.128.0/19
IP: 195.210.60.0/23
IP: 195.234.20.0/23
IP: 217.76.112.0/20
IP: 217.113.224.0/20
IP: 2a03:af80::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:4c:e2:9e:18:22:1f:06:f5:a9:f5:e7:ee:41:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c7983b3a9758fcbe78733d9155aed266c882a23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8b:e1:13:7e:50:1b:75:1f:9a:e3:90:f4:47:
a6:e7:30:47:f6:3c:52:64:8c:49:39:6d:f8:69:8b:
3f:bc:5e:42:a6:57:67:29:97:87:6b:4b:f7:14:3d:
d8:a9:e7:68:d1:9b:05:8e:4e:b6:54:9d:cc:4a:e2:
91:cb:60:11:11:2f:8e:9b:5b:e5:c6:15:57:06:8f:
a6:15:a1:0f:28:b2:69:10:60:6f:e8:6d:c1:61:e6:
ff:97:79:eb:c2:4d:0b:8c:b0:db:e7:48:42:54:f7:
7e:99:5b:2b:64:c1:c2:ac:fa:d3:ab:7c:83:b8:e8:
d1:56:54:bd:ac:f9:ac:06:81:ce:95:4d:2b:8f:f0:
32:80:a4:72:73:b7:e4:07:63:ea:94:e7:ad:be:b3:
8c:6b:d9:ca:92:03:2a:15:09:8f:90:d3:e7:fc:92:
eb:13:b9:75:b5:4e:8f:fa:a0:db:4c:fa:77:e8:06:
54:3e:8c:b1:d0:f1:cf:db:45:68:91:b2:a5:97:3c:
a0:0e:8d:c2:bd:5f:95:87:83:ea:96:6c:97:ce:41:
c6:28:64:fa:ca:4b:6a:29:d0:34:04:15:ec:37:de:
9f:72:92:5e:74:c4:a9:2c:1b:f5:25:5e:b5:f4:b3:
05:98:c3:6f:08:04:86:76:3a:9c:76:1c:ba:27:7a:
3a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:98:3B:3A:97:58:FC:BE:78:73:3D:91:55:AE:D2:66:C8:82:A2:3C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/811d16-b513-47ed-9e71-238405f2cde9/1/x5g7OpdY_L54cz2RVa7SZsiCojw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.182.0.0/15
77.237.0.0/19
85.89.160.0/19
91.189.0.0/21
130.255.152.0/21
176.107.40.0/21
185.67.216.0/22
185.91.212.0/22
188.246.128.0/19
195.210.60.0/23
195.234.20.0/23
217.76.112.0/20
217.113.224.0/20
IPv6:
2a03:af80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16342
29553
30782
42084
51353
51619
Signature Algorithm: sha256WithRSAEncryption
4f:13:74:93:9f:ff:89:e8:4d:78:9f:66:f5:5d:ef:cd:73:33:
1a:ba:1b:ee:af:1f:b2:fb:c4:c6:13:36:5a:2e:69:f0:8e:17:
f0:5c:62:55:c4:d2:14:7c:ff:84:92:d3:93:31:3e:2c:b8:08:
4a:15:7f:21:67:1f:77:45:8e:ce:2d:6c:fb:df:62:bd:d1:1d:
57:66:26:7e:b7:66:26:33:d0:6f:4d:4c:06:55:34:e2:66:f6:
fb:da:fd:b1:41:b8:69:70:b0:06:e8:cb:fd:14:60:dc:27:7f:
3f:d1:09:dc:9b:8c:f1:84:6c:ae:c7:45:c9:47:68:10:8d:c3:
6f:63:d3:94:31:f1:c5:37:2c:e4:6f:fc:bc:b1:8e:82:e4:7d:
35:84:75:00:ea:3b:fa:c5:67:c1:d4:ee:91:f1:6c:20:d6:3d:
ea:57:a4:a1:8a:1e:b4:ae:65:48:a3:b8:91:94:b6:0b:95:0a:
b3:a6:23:86:56:c9:b6:aa:66:3a:71:60:78:24:bb:8e:da:ef:
79:fe:33:94:11:54:85:2b:73:5b:49:f2:a4:99:31:85:7c:84:
a9:2a:f6:d0:2c:91:78:82:3a:73:b5:3f:3d:1c:7e:bb:67:8c:
da:55:b4:77:56:a2:89:7b:d0:4e:22:ad:ff:4d:86:f8:e8:64:
2b:7e:fc:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:15 2025 by rpki-client on console.sobornost.net