Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ArmAwQ1xEPkf_54OzrY52edbNeI.cer
File: ArmAwQ1xEPkf_54OzrY52edbNeI.cer (raw, json)
Hash identifier: SW6Vkm+h5/XC122PdE5X48hC8sxBI8JE0P22sgGThxI=
Subject key identifier: 02:B9:80:C1:0D:71:10:F9:1F:FF:9E:0E:CE:B6:39:D9:E7:5B:35:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B50D20ADD7C59A247D029358C68095
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/ArmAwQ1xEPkf_54OzrY52edbNeI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:49:24 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 29676
IP: 79.135.96.0/22
IP: 109.224.192.0/20
IP: 109.224.220.0 -- 109.224.222.255
IP: 109.224.233.0/24
IP: 109.236.161.0 -- 109.236.167.255
IP: 185.98.188.0/22
IP: 193.111.200.0/24
IP: 195.74.60.0/23
IP: 212.11.65.0 -- 212.11.66.255
IP: 212.11.77.0 -- 212.11.78.255
IP: 2a02:5b8::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:0d:20:ad:d7:c5:9a:24:7d:02:93:58:c6:80:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02b980c10d7110f91fff9e0eceb639d9e75b35e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0e:54:ea:e5:73:88:4b:cb:df:b8:5a:3e:b6:
cb:ce:26:e8:a3:1e:9a:a4:87:73:0b:bf:c0:d9:e4:
80:e4:d2:c1:5b:06:76:18:bf:2a:41:be:b3:19:36:
4e:e4:3f:de:a3:43:b5:c9:77:9e:db:21:d4:e9:a2:
bc:69:75:83:7a:40:0d:d3:00:60:f0:02:b3:a2:2f:
49:9d:41:87:8d:82:bc:6c:73:5a:1c:63:d7:71:0b:
99:c6:f8:1b:86:cd:3c:5c:b3:0f:c2:b4:b4:10:d6:
b6:a7:52:f4:16:ae:05:bb:97:a6:82:84:b8:30:64:
60:a0:a5:bb:bf:ad:b1:25:d0:af:03:dc:c2:b1:00:
eb:a2:c8:fb:c0:95:2b:cf:ef:5a:ab:a9:44:7f:f0:
29:97:4f:07:1a:b5:36:b3:f1:e8:a7:13:05:60:cb:
90:da:6e:8d:f8:4d:2c:29:bd:9b:ac:ee:77:5a:01:
5d:48:a2:30:bf:c6:d0:0c:0a:59:9e:18:84:0c:af:
10:49:c8:c4:90:a6:cd:3f:f6:30:01:95:38:be:a6:
6d:7e:a7:ee:af:7c:61:3a:f5:33:e6:cd:f3:d4:a7:
88:6e:3f:28:be:4e:94:26:cd:61:fe:78:53:77:f3:
a5:9b:cd:e1:32:aa:92:50:f2:a4:64:4c:dd:2b:81:
c5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:B9:80:C1:0D:71:10:F9:1F:FF:9E:0E:CE:B6:39:D9:E7:5B:35:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/a8947f-e52c-4de1-bade-70c0a506d797/1/ArmAwQ1xEPkf_54OzrY52edbNeI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.96.0/22
109.224.192.0/20
109.224.220.0-109.224.222.255
109.224.233.0/24
109.236.161.0-109.236.167.255
185.98.188.0/22
193.111.200.0/24
195.74.60.0/23
212.11.65.0-212.11.66.255
212.11.77.0-212.11.78.255
IPv6:
2a02:5b8::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29676
Signature Algorithm: sha256WithRSAEncryption
2c:95:c5:62:12:1f:7c:1e:f1:e0:d1:05:40:eb:95:52:75:b3:
56:76:d2:1b:41:ff:3e:cd:8b:02:57:c0:af:1c:20:51:60:ff:
07:d6:57:60:df:e9:c6:cb:d5:83:2a:56:0c:23:d5:4c:87:67:
4b:6f:c8:eb:f3:4f:15:46:12:ed:20:ae:91:c7:9e:ae:33:9c:
41:e3:b3:fe:33:04:a8:bf:a3:80:f3:d8:48:64:2b:87:3a:ef:
a6:05:76:93:4f:40:0f:21:31:6c:1e:01:9d:e5:0a:f6:d8:b7:
8c:f2:c3:1c:04:cf:b9:bf:fe:2c:3e:50:fa:90:db:72:09:da:
73:ef:b2:c9:ab:4d:4f:a2:02:4e:00:25:59:61:32:d6:d7:ed:
14:be:39:30:82:60:a0:1a:06:ef:d9:38:f9:32:b7:8a:65:6b:
46:1f:b4:a7:30:e4:ab:35:9c:4a:8b:20:f2:ec:0e:9e:8d:60:
86:90:cb:b8:a1:07:fc:d6:d4:37:95:db:e9:86:35:f5:41:fa:
6f:9f:51:08:ff:9b:60:44:b0:fb:d6:ef:57:bc:ca:9a:63:72:
fb:5f:a8:52:a5:66:66:13:7e:72:24:c6:74:13:16:f8:0b:a7:
4b:fc:f1:25:7f:33:f2:59:9f:7d:2e:06:f3:f9:2b:16:2c:a0:
42:7b:c8:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:33:54 2025 by rpki-client