Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer (raw, json)
Hash identifier: J56X8zw+SdIzIx68Rl6eyjUOiOMpQKxPS4sAqGbIwzw=
Subject key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B38D805568E51E30C35662F11FF766
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:48:54 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 24630
AS: 199995
IP: 80.91.214.0/24
IP: 109.71.77.0/24
IP: 146.19.226.0/24
IP: 185.76.68.0/22
IP: 185.109.52.0/22
IP: 185.151.84.0/22
IP: 188.93.115.0/24
IP: 193.37.251.0/24
IP: 2a05:5740::/29
IP: 2a06:4ec0::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:8d:80:55:68:e5:1e:30:c3:56:62:f1:1f:f7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb36180ab4542d6eee66d9f99030df71236ce264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3e:d6:c4:3f:40:55:96:df:24:32:ca:3f:0c:
36:f6:48:08:3d:65:35:d8:23:b4:e4:2d:71:2d:f3:
fa:f7:7f:6f:22:3c:83:b3:97:52:e4:f4:86:b7:6d:
73:ce:81:42:14:7b:b8:4a:b7:0a:15:ad:5c:25:e6:
f0:b0:67:9d:81:f8:47:88:04:74:92:9f:fa:aa:6e:
4a:46:81:ec:20:18:54:1e:ac:df:cd:88:3b:ad:5e:
74:f4:c8:fb:9e:11:2b:14:27:21:6e:68:ec:0b:fe:
bc:ab:2a:eb:97:96:c9:17:b2:9f:a9:0a:c1:38:f3:
3b:f2:aa:5f:b7:ab:c8:48:13:56:82:51:85:9b:cf:
03:b2:24:4e:94:22:d7:ab:ac:f4:61:17:13:32:92:
47:6a:c6:28:2a:9e:20:13:ab:90:fa:62:57:29:b2:
81:17:e1:16:ce:ed:35:1e:a5:a6:b4:8b:25:1e:88:
ae:23:c5:58:e4:b4:0b:52:9a:0c:cf:ff:d0:84:c1:
e8:74:e7:71:94:13:47:39:77:fb:68:7f:ef:1f:76:
b4:1d:ac:3d:2f:2b:ba:02:8d:9c:aa:be:e2:88:d2:
91:e6:48:79:e4:1a:4c:7e:c6:34:b3:36:25:ab:e9:
e0:c7:67:e7:c0:d8:e1:92:75:5c:5e:8d:9e:08:85:
c2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.214.0/24
109.71.77.0/24
146.19.226.0/24
185.76.68.0/22
185.109.52.0/22
185.151.84.0/22
188.93.115.0/24
193.37.251.0/24
IPv6:
2a05:5740::/29
2a06:4ec0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24630
199995
Signature Algorithm: sha256WithRSAEncryption
63:f4:85:88:e5:27:65:c0:8e:1d:47:a6:f1:a4:59:b6:e7:41:
0c:53:91:e8:cd:e6:ce:f1:fe:cb:73:67:f4:17:16:26:a1:a0:
4c:74:0a:a6:48:7d:33:33:fb:12:29:83:d8:ae:ad:c1:4a:36:
ce:37:37:a8:c6:95:69:55:83:a7:b1:95:fb:7e:5e:1a:be:56:
f6:af:0f:c4:96:49:79:45:29:07:89:48:1e:66:46:ef:f8:79:
8e:39:0e:55:f0:d2:49:13:a5:d5:7f:c2:57:96:2a:84:8e:6d:
1d:b9:42:a2:e4:8f:76:f2:be:6c:a9:c0:be:d3:f7:73:b4:b9:
75:e7:78:e1:f8:96:36:86:4c:2c:19:b5:82:c3:a3:88:4a:10:
d5:bd:3f:f3:a8:d9:ed:c8:06:99:e3:53:81:bd:a4:1a:6d:09:
9e:de:7e:90:95:b9:42:ff:96:ea:c1:19:7d:e2:95:ce:78:9b:
86:d5:33:39:b0:fe:10:87:14:c4:0f:0a:04:e2:b4:ad:e9:2b:
7c:49:87:13:e8:a9:5b:04:36:5a:8e:ae:c7:9b:94:8a:67:9c:
28:97:65:18:d4:e6:7d:02:6c:59:12:22:e0:c6:df:a3:14:4c:
59:f5:23:77:8e:44:ff:1b:da:6e:5e:a1:96:b5:7e:25:5d:25:
4b:f6:68:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:20 2025 by rpki-client on console.sobornost.net