Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer
File: z-rOcUwpVo7xlwB7FB0SdYzEFdU.cer (raw, json)
Hash identifier: XnO4b0i0GgpCtiWsxwZdklqOn6pMi0h+CjuSF1hk0Oo=
Subject key identifier: CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942521E8D84B438A5A0C46814B391725AA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/z-rOcUwpVo7xlwB7FB0SdYzEFdU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:26 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41175
AS: 42595
AS: 49419
AS: 205788
IP: 45.80.56.0/22
IP: 45.83.60.0/22
IP: 45.93.240.0/22
IP: 45.137.208.0/22
IP: 81.201.208.0/20
IP: 84.19.128.0/19
IP: 91.192.252.0/22
IP: 91.223.51.0/24
IP: 91.224.36.0/23
IP: 185.56.212.0/22
IP: 185.57.168.0/22
IP: 185.114.104.0/22
IP: 185.224.56.0/22
IP: 188.65.152.0/21
IP: 193.41.118.0/23
IP: 193.138.74.0/24
IP: 193.254.192.0/23
IP: 195.78.36.0/23
IP: 2a00:e900::/29
IP: 2a01:4400::/32
IP: 2a02:5120::/32
IP: 2a0b:fd80::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:e8:d8:4b:43:8a:5a:0c:46:81:4b:39:17:25:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cfeace714c29568ef197007b141d12758cc415d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:64:a7:a3:71:0c:09:5e:c7:d4:99:d0:5f:df:
33:6e:a2:20:44:63:e4:98:da:3c:70:85:30:01:14:
8b:77:f2:1d:0b:48:12:7c:dd:6f:bd:a2:8c:57:7c:
ba:2d:6c:86:b8:42:2c:04:f3:ae:00:38:70:44:9c:
4d:e4:29:8f:07:8a:95:19:c0:85:80:58:c6:4c:0c:
2f:a8:aa:f1:97:8a:d1:cf:cb:b8:37:81:a1:62:76:
a6:c0:0a:fe:ba:de:14:b8:af:10:86:3f:12:e2:2e:
5c:e2:51:b8:64:bb:4c:e4:13:22:99:0f:b6:72:6d:
a7:d1:25:1b:2b:2f:a5:e5:3e:70:35:bb:c0:50:6f:
ff:7b:13:a4:55:a7:a9:5a:0b:26:b5:b7:ca:38:01:
fd:21:82:a4:59:2c:f8:4a:c9:fd:2e:2e:8d:cd:6a:
8c:8c:31:f6:70:44:c6:a3:fc:20:48:28:dc:bc:bd:
2b:a2:50:47:75:57:4f:dd:9d:18:d7:93:f4:70:9f:
cc:fc:48:1d:50:c9:7d:65:92:70:43:69:12:75:8e:
3c:f3:4f:77:b3:cb:fa:42:c9:7a:85:2a:f9:1b:3a:
ef:12:2c:b8:9d:1e:ae:d3:0c:b4:c3:f2:7f:12:16:
8f:58:13:74:8b:da:c9:4d:f7:7d:ff:fd:da:bc:3e:
37:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:EA:CE:71:4C:29:56:8E:F1:97:00:7B:14:1D:12:75:8C:C4:15:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/fc1bef-e72b-4a45-9463-8fd394b5357c/1/z-rOcUwpVo7xlwB7FB0SdYzEFdU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.56.0/22
45.83.60.0/22
45.93.240.0/22
45.137.208.0/22
81.201.208.0/20
84.19.128.0/19
91.192.252.0/22
91.223.51.0/24
91.224.36.0/23
185.56.212.0/22
185.57.168.0/22
185.114.104.0/22
185.224.56.0/22
188.65.152.0/21
193.41.118.0/23
193.138.74.0/24
193.254.192.0/23
195.78.36.0/23
IPv6:
2a00:e900::/29
2a01:4400::/32
2a02:5120::/32
2a0b:fd80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41175
42595
49419
205788
Signature Algorithm: sha256WithRSAEncryption
91:c4:92:cf:58:f2:06:88:37:d2:e9:d2:87:f9:bc:1b:22:c3:
9e:9a:cb:b7:7f:e3:c6:a4:e7:11:69:c4:78:19:90:ec:36:c6:
65:56:b5:c9:55:59:12:06:4e:f0:b7:b7:1d:7b:7f:06:bc:16:
7f:0f:83:cb:02:08:71:a7:cf:7b:00:da:f3:bc:9b:7a:0a:c4:
57:db:3f:21:a3:69:71:28:08:30:38:68:34:8b:df:09:8f:d2:
5d:ad:27:55:ca:76:cd:39:04:3e:0a:1c:43:c2:03:83:b8:7d:
35:07:bc:9c:5f:ca:1f:94:6d:c5:55:10:34:1b:74:5e:b4:e9:
d8:ea:ed:41:6e:61:62:28:9b:79:60:c7:83:27:44:d8:85:bc:
37:65:54:3b:28:d0:b9:16:e9:1e:51:3e:cd:44:9e:71:0e:f6:
d9:5a:83:e6:b8:d4:e9:82:e2:40:fc:2f:84:4b:2b:3c:10:ec:
04:5f:4d:3a:ce:e1:7d:79:51:c4:5a:db:ce:e6:8f:36:32:79:
9d:ec:8a:e4:eb:88:6e:5b:86:14:f9:1a:94:8f:3e:4d:c2:7d:
07:03:f9:30:30:51:82:82:78:36:a2:67:26:7a:9e:05:07:e8:
41:c1:21:a1:37:92:f6:9d:6e:64:3c:ae:c7:82:4e:c6:c4:3c:
2e:22:15:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:34:20 2025 by rpki-client on console.sobornost.net