Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9WPabrO3oH_cRSWIMASXDWQLA2s.cer
File: 9WPabrO3oH_cRSWIMASXDWQLA2s.cer (raw, json)
Hash identifier: O+qTH0wMecbVG74RFsk5sZdJVRPFvzq1N1/f6LeDHe8=
Subject key identifier: F5:63:DA:6E:B3:B7:A0:7F:DC:45:25:88:30:04:97:0D:64:0B:03:6B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942143FB037CD21C688332AE25B0DAE230
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/9WPabrO3oH_cRSWIMASXDWQLA2s.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:48:10 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 6661
AS: 60319
IP: 37.157.152.0/21
IP: 78.141.128.0/18
IP: 83.99.0.0/17
IP: 87.240.192.0/18
IP: 88.207.128.0/17
IP: 107.183.0.0/17
IP: 146.0.58.0/23
IP: 146.0.128.0/18
IP: 146.0.212.0 -- 146.0.223.255
IP: 178.254.64.0/18
IP: 185.9.244.0/22
IP: 185.32.236.0/22
IP: 188.115.0.0/18
IP: 194.154.192.0/19
IP: 195.46.224.0/19
IP: 213.135.224.0/19
IP: 213.166.32.0/19
IP: 2001:7e8::/29
IP: 2a00:ca60::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:fb:03:7c:d2:1c:68:83:32:ae:25:b0:da:e2:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:48:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f563da6eb3b7a07fdc4525883004970d640b036b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:a5:c6:eb:45:f0:84:ab:13:2c:c3:54:b9:
86:cd:83:b3:b3:4d:04:08:d9:dd:f5:c4:95:5a:da:
14:4d:22:3d:58:bb:14:7d:94:b2:ba:1b:ba:37:fa:
ec:89:d9:12:a2:ab:30:4f:ac:91:60:69:2b:da:32:
ea:80:9e:bc:cd:b3:f3:5a:0a:fe:6c:26:1d:e1:aa:
f5:fb:4a:f2:94:27:6b:6a:12:64:a7:3e:7d:be:62:
18:cd:23:fb:e2:d6:ca:6c:41:87:a2:66:87:0b:ec:
2c:45:d9:8e:da:a4:6d:3b:f8:0c:fa:33:0d:6c:85:
e0:43:e2:65:0b:5f:d7:1c:db:5c:eb:0a:89:5e:3e:
09:bf:e6:b1:1b:03:08:22:b6:18:7d:9b:31:3d:db:
d7:df:97:9c:4f:4b:4c:b4:95:c1:f0:46:a8:06:e8:
17:bc:74:07:50:f7:d9:48:31:47:3f:40:6f:25:d1:
e5:a3:a4:df:92:5a:f4:75:d4:c2:55:c8:6e:40:2d:
05:09:75:23:89:6b:d6:e6:79:2b:b3:89:9e:79:9b:
82:7c:85:10:a9:9c:21:53:56:27:93:8c:ae:d7:fb:
11:67:e1:4f:8f:7c:46:79:99:41:57:3c:93:4e:a3:
7d:15:c9:66:22:9c:e4:5b:38:73:6a:7d:b4:eb:0a:
16:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:63:DA:6E:B3:B7:A0:7F:DC:45:25:88:30:04:97:0D:64:0B:03:6B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/63564f-aca1-463d-be1e-e5520aa7ba37/1/9WPabrO3oH_cRSWIMASXDWQLA2s.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.157.152.0/21
78.141.128.0/18
83.99.0.0/17
87.240.192.0/18
88.207.128.0/17
107.183.0.0/17
146.0.58.0/23
146.0.128.0/18
146.0.212.0-146.0.223.255
178.254.64.0/18
185.9.244.0/22
185.32.236.0/22
188.115.0.0/18
194.154.192.0/19
195.46.224.0/19
213.135.224.0/19
213.166.32.0/19
IPv6:
2001:7e8::/29
2a00:ca60::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6661
60319
Signature Algorithm: sha256WithRSAEncryption
15:44:3d:33:38:61:c2:e3:dc:5f:be:6f:33:d8:1e:1e:e9:40:
37:0c:74:85:10:95:75:ad:e7:86:e4:97:f4:e0:d9:b1:5b:85:
e4:2d:56:94:b8:9a:f1:8f:03:2f:ff:41:62:10:76:64:af:d4:
f2:06:fe:9d:6d:24:e8:37:53:8d:3c:6c:b5:44:a0:61:76:71:
8a:b0:03:ec:29:05:7f:13:4a:95:03:04:0d:41:fe:28:de:32:
00:64:4b:10:63:6f:43:fe:0b:0e:a9:90:3b:f5:72:e6:e7:d7:
62:b0:ca:ea:9b:53:9c:e2:d0:04:87:93:60:e9:5b:b5:ba:65:
ab:e1:a9:9b:f0:40:8a:40:47:08:6e:20:bc:e9:3e:0a:8b:c1:
06:4d:a1:0c:14:49:2e:5b:79:09:84:2e:d9:51:c9:10:71:41:
a4:db:e4:5f:c1:17:29:38:f8:e6:e4:72:d0:9e:81:3f:d6:a0:
38:b4:f6:70:a4:58:e7:9d:69:8b:55:2c:9e:1c:ec:15:d3:71:
4b:8d:7c:36:8a:a2:24:ce:f6:64:25:89:24:9c:fb:0d:cf:e2:
fb:e6:6f:af:79:a9:b6:a1:1c:51:26:1e:41:b9:00:37:4c:86:
40:7e:36:55:73:4a:26:0f:8e:86:9e:69:2f:be:ad:c6:32:bb:
b0:53:bc:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:36:11 2025 by rpki-client