Certificate
$ rpki-client -vvf rpki.co/repo/HYSP/6/481A02B656EE0C3E72635BDEAD3114AB7461A2E9.cer
File: 481A02B656EE0C3E72635BDEAD3114AB7461A2E9.cer (raw, json)
Hash identifier: syhmE9ufQHxUcN5GSoP282XCZ1w6NwY7cke1FwApSK0=
Subject key identifier: 48:1A:02:B6:56:EE:0C:3E:72:63:5B:DE:AD:31:14:AB:74:61:A2:E9
Authority key identifier: B8:97:04:C2:00:1C:D9:69:72:78:62:24:D0:DB:20:E5:01:E0:8A:B0
Certificate issuer: /CN=b89704c2001cd96972786224d0db20e501e08ab0
Certificate serial: 5F0827E0BE65CB75980C038BCEE004D692C130EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uJcEwgAc2WlyeGIk0Nsg5QHgirA.cer
Manifest: rsync://rpki-test-repo.net.kagl.me/repo/KeatonAGLair-RPKI-TEST/1/481A02B656EE0C3E72635BDEAD3114AB7461A2E9.mft
caRepository: rsync://rpki-test-repo.net.kagl.me/repo/KeatonAGLair-RPKI-TEST/1/
Notify URL: https://rpki-test-repo.net.kagl.me/rrdp/notification.xml
Certificate not before: Sat 08 Apr 2023 09:04:09 +0000
Certificate not after: Sat 06 Apr 2024 09:09:09 +0000
Subordinate resources: IP: 2a12:dd47:8600::/40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:08:27:e0:be:65:cb:75:98:0c:03:8b:ce:e0:04:d6:92:c1:30:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b89704c2001cd96972786224d0db20e501e08ab0
Validity
Not Before: Apr 8 09:04:09 2023 GMT
Not After : Apr 6 09:09:09 2024 GMT
Subject: CN=481A02B656EE0C3E72635BDEAD3114AB7461A2E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:76:fe:2f:b1:14:ba:d0:de:d2:5c:ed:db:c4:
36:45:10:f5:b5:cb:38:ca:f4:d5:0f:18:2f:70:38:
4e:b1:38:ff:6a:fe:92:97:5e:f9:75:9a:db:dc:ec:
22:86:ab:5f:f4:90:bf:78:b8:3b:3f:fb:c2:32:da:
10:63:46:a4:65:f7:3a:d5:77:29:13:34:0f:4c:bd:
bd:d9:00:1b:ca:d5:22:b0:6e:7e:ab:d2:ca:80:c4:
c8:3d:d2:ff:4a:03:b8:9b:e0:58:0a:00:46:8c:4c:
7d:3f:4b:fc:58:af:c5:91:80:79:97:0f:c2:4c:9b:
79:f9:c2:af:83:50:ac:a9:57:43:2b:d9:2d:c0:79:
a4:3d:02:f4:6b:d4:2d:c0:85:ce:98:94:11:c5:42:
c7:06:c1:85:d9:f4:c1:0c:b8:5a:d1:8e:89:1e:e5:
7b:45:bf:fa:48:4c:42:bb:1b:43:38:75:8a:dd:48:
a9:2b:6b:a4:24:c1:69:ef:79:80:a0:5c:cd:99:5b:
6a:52:2b:8c:11:d8:e0:42:17:92:d6:8f:3a:40:a4:
7e:9f:31:4c:c3:0c:87:4a:07:09:c8:06:18:2d:f4:
24:3f:9e:8c:39:02:77:1a:7c:b7:af:f2:77:b3:1d:
31:d7:35:49:e5:d7:e1:31:7e:d1:b2:51:fc:b8:26:
c1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
48:1A:02:B6:56:EE:0C:3E:72:63:5B:DE:AD:31:14:AB:74:61:A2:E9
X509v3 Authority Key Identifier:
keyid:B8:97:04:C2:00:1C:D9:69:72:78:62:24:D0:DB:20:E5:01:E0:8A:B0
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/HYSP/6/B89704C2001CD96972786224D0DB20E501E08AB0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uJcEwgAc2WlyeGIk0Nsg5QHgirA.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-test-repo.net.kagl.me/repo/KeatonAGLair-RPKI-TEST/1
RPKI Manifest - URI:rsync://rpki-test-repo.net.kagl.me/repo/KeatonAGLair-RPKI-TEST/1/481A02B656EE0C3E72635BDEAD3114AB7461A2E9.mft
RPKI Notify - URI:https://rpki-test-repo.net.kagl.me/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8600::/40
Signature Algorithm: sha256WithRSAEncryption
2d:5a:24:8a:e7:8a:4e:8a:fd:1a:7c:c6:c8:dd:df:38:d3:1b:
61:c6:bb:06:6e:e2:80:47:f8:95:15:43:88:97:85:f0:ce:09:
ba:c6:f6:84:1e:85:e8:98:31:8a:c9:fd:f8:10:a6:f1:3e:f3:
b8:04:ec:5f:cd:16:80:d4:7c:82:f4:cd:76:9f:22:04:37:8e:
43:4d:37:3f:12:cd:78:22:f5:1c:ee:af:36:ea:a6:72:c4:3f:
32:90:75:6b:9d:fd:c5:f5:78:1b:9e:be:21:98:71:e6:7a:dd:
89:8d:2d:9c:46:b0:3c:55:d4:d9:da:fb:5a:00:d6:65:f8:eb:
26:a2:d4:ee:97:5c:70:98:f1:7f:24:7f:52:fb:5b:04:ce:a6:
22:99:42:a7:ee:24:db:f4:6a:e9:30:9e:9f:12:9a:2c:8d:a2:
7a:51:f5:26:5c:63:f6:3f:aa:dd:b8:e1:f7:2d:77:f8:68:1e:
11:65:3f:a5:95:9d:39:e8:51:f8:04:10:f7:6a:f3:20:d7:a0:
5a:9b:25:f0:25:e2:a4:7e:7a:75:7d:aa:b2:c4:a4:bf:df:96:
a9:3d:4c:4d:da:cb:68:8f:5c:ea:dc:e3:d9:65:d0:df:9d:9e:
29:b1:3d:b1:e4:07:70:65:b9:e8:3b:83:5b:a4:79:ae:ba:c0:
7c:fd:7f:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 14:16:21 2025 by rpki-client