Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1lAD4kzs-_jowV_2N90V201_rpI.cer
File: 1lAD4kzs-_jowV_2N90V201_rpI.cer (raw, json)
Hash identifier: PIhoOJ5H0Piqx+m9Q6eaMBXV9clf2aaqNRC8lDd6byA=
Subject key identifier: D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228D680677EB22647DA9939C624DD939
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.36.240.0/20
IP: 193.37.112.0/20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:68:06:77:eb:22:64:7d:a9:93:9c:62:4d:d9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d65003e24cecfbf8e8c15ff637dd15db4d7fae92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:84:20:84:42:ae:c4:8e:06:16:73:06:6e:63:
47:4b:2c:36:b5:74:09:99:ea:f5:6f:7b:d9:e1:09:
e6:3b:49:bb:f5:46:60:ec:20:80:a4:0e:e5:e1:d1:
0f:48:72:71:3c:c4:92:ed:d0:50:25:3f:d5:e6:cf:
88:f7:9f:60:63:9e:8f:de:cf:ad:b1:2b:a6:7e:5a:
10:d0:23:cc:0a:02:82:12:bb:f2:45:da:bb:1e:7a:
24:05:6b:78:94:36:7d:46:93:e5:2e:bc:10:f9:7a:
aa:d7:7d:0f:f8:51:7f:a5:c9:f2:5e:b6:82:ec:74:
38:f8:ab:f6:a2:35:37:9b:9e:3f:1c:21:c8:18:31:
72:e2:d1:8f:71:fc:69:c3:63:13:e5:bb:ad:21:db:
73:90:dc:5f:57:6a:39:d5:a3:57:85:bf:22:06:4b:
b0:5d:df:c3:da:f4:00:22:f7:2b:01:d7:d6:8b:c0:
d4:0f:1f:b1:bc:c2:db:7c:19:ea:58:77:5e:21:3a:
52:30:72:d7:cb:35:55:c6:ac:53:96:9a:e1:66:3b:
b7:9a:c3:9e:2e:46:f1:ef:78:9a:92:46:a6:2a:af:
b8:f1:01:3e:77:87:3c:01:a4:30:a3:40:9a:27:b5:
26:11:18:d0:cc:28:77:23:65:27:5d:0e:df:47:85:
f3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:50:03:E2:4C:EC:FB:F8:E8:C1:5F:F6:37:DD:15:DB:4D:7F:AE:92
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/54910b-9a13-4ace-abf2-a2351f4e8915/1/1lAD4kzs-_jowV_2N90V201_rpI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.240.0/20
193.37.112.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:98:42:2f:20:12:8f:46:c1:bb:29:be:dc:0f:8c:e1:ca:aa:
95:ed:fc:c2:7d:d0:f4:91:67:b2:1a:9d:ba:2b:8c:99:17:31:
ef:26:1f:97:7f:10:60:c3:55:9f:21:26:06:1b:bc:29:a7:68:
e6:90:e0:b1:8c:11:61:d1:7f:6c:fd:b1:d7:38:27:e8:db:ba:
29:21:71:8b:8b:2a:3a:28:7a:f7:ef:4b:de:cd:7c:a0:59:43:
7a:ee:a6:3c:55:af:76:75:ae:ea:7b:82:99:06:10:38:59:e2:
44:a8:0f:3a:2f:b8:c0:75:8d:6b:2d:60:86:a8:11:04:64:9f:
89:76:8b:99:e6:f7:20:26:f6:16:74:21:23:62:b3:5b:97:a0:
a4:7b:4b:3d:8b:7a:8f:a1:d0:a9:b2:6e:69:53:ba:a6:05:46:
8e:8a:ee:4a:f5:fd:5b:43:ad:01:7f:1e:09:95:01:97:6c:a2:
c1:36:8e:af:23:52:0b:29:57:50:2f:a4:e8:b3:c8:2f:6c:70:
30:ac:e1:31:53:e4:ab:a4:e2:20:61:fb:bf:ae:0a:52:cc:27:
33:7b:87:e2:a9:94:6b:8f:9e:8c:3f:90:79:9c:c1:53:13:a4:
e1:eb:33:40:6a:ca:ad:24:81:ca:6c:1c:cd:3b:1f:30:7c:d7:
b1:04:ec:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 04:55:02 2025 by rpki-client