Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8fkw4jsIoVzNTcmrGCnGB_7d6KU.cer
File: 8fkw4jsIoVzNTcmrGCnGB_7d6KU.cer (raw, json)
Hash identifier: d/9opp/n/8bYfM0VhNIhGRXWvahp4JmA+5zzv0g59Po=
Subject key identifier: F1:F9:30:E2:3B:08:A1:5C:CD:4D:C9:AB:18:29:C6:07:FE:DD:E8:A5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B3ED4BE3AFABA790A90D21BC06D704
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/8fkw4jsIoVzNTcmrGCnGB_7d6KU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:49:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.22.230.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ed:4b:e3:af:ab:a7:90:a9:0d:21:bc:06:d7:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f1f930e23b08a15ccd4dc9ab1829c607fedde8a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:12:f1:2d:3a:fb:35:a2:d8:89:0e:d8:01:61:
34:7e:10:4b:d7:bb:7a:6d:bc:29:46:26:5d:e3:b5:
d6:b4:3f:e4:84:30:5c:e4:c7:0f:ef:94:be:a9:af:
62:3b:03:f6:8e:94:03:a3:3d:4b:4d:77:a5:47:a5:
70:21:49:23:f6:ba:4a:c5:43:d1:be:18:31:d6:6d:
0f:b0:b9:01:40:0b:6d:b5:db:53:02:4a:77:b0:2c:
4e:42:83:e6:05:f1:1c:c5:bc:d4:fa:bd:b9:b2:8a:
ad:c2:b1:56:f6:82:59:1e:7a:dd:e7:5d:98:89:1e:
5c:cb:95:e2:1f:44:0b:ed:9b:a6:e1:97:0d:43:1f:
c7:05:f2:92:7b:e1:7e:f6:7b:6b:19:62:f7:c4:92:
15:7f:bb:48:7c:44:ce:40:4a:3f:ed:18:6d:44:a0:
ba:df:28:b0:7b:13:3c:a3:d7:3d:01:f9:2f:9f:01:
97:2f:d9:6e:5e:bf:37:99:32:6c:11:cf:00:8d:ca:
7d:50:f7:de:31:3a:78:4a:86:51:f4:3f:de:0e:da:
e1:f2:08:5d:4f:a5:cb:b6:2d:83:98:38:0c:f6:b9:
17:75:1d:8e:0b:33:bd:0f:3b:70:94:b5:02:0a:98:
af:2c:2e:c1:6b:d7:11:d7:61:fc:94:88:d8:f5:b5:
8f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:F9:30:E2:3B:08:A1:5C:CD:4D:C9:AB:18:29:C6:07:FE:DD:E8:A5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/ea128c-a09d-40e8-bb11-aea714ec5113/1/8fkw4jsIoVzNTcmrGCnGB_7d6KU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.230.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:46:df:94:85:4c:a3:6c:96:15:10:d0:0e:cb:ef:d9:cc:d1:
96:8d:fc:50:c5:f3:d6:83:2d:bd:4d:d0:00:57:ca:4e:b2:a1:
a2:8c:a6:92:62:de:1c:ea:e9:4c:3f:3d:c7:47:1e:4e:e3:41:
37:6c:d4:21:5c:a5:95:dc:51:9c:82:7b:92:de:b3:99:87:19:
4b:9a:5c:be:d7:e6:3f:c0:c0:88:c8:3b:7b:5c:ce:3d:40:7b:
7a:07:44:ea:d6:4e:bc:b5:4f:a0:47:df:37:32:48:89:55:04:
6a:02:06:88:bb:aa:9f:03:80:e7:e7:fd:91:1f:2f:41:a3:f1:
96:f0:69:a6:e7:4d:c2:4d:49:e5:6e:8b:ef:a3:3e:d1:c6:f4:
b0:a8:e2:42:40:93:51:3b:26:fb:31:32:9f:97:60:a7:d0:5f:
f3:47:e6:89:e7:4b:42:9c:7c:06:fb:57:f7:30:dc:98:32:ee:
82:4e:10:16:1c:77:32:0f:89:ae:d0:c4:17:05:27:b8:2d:74:
ed:ce:9f:17:32:81:44:c4:b1:13:2d:0d:f2:7c:00:02:72:82:
2f:3f:4c:1a:76:31:8c:a2:5d:71:32:a4:8d:d4:0a:b1:90:0d:
31:8c:47:b8:d7:b6:a3:e1:ef:2a:50:d7:a4:51:76:9a:95:1c:
d7:8f:fc:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:18:27 2025 by rpki-client