Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B7ygSC1gVYfrDgyFHDjoB3VfkBc.cer
File: B7ygSC1gVYfrDgyFHDjoB3VfkBc.cer (raw, json)
Hash identifier: hMF8hcGXGMdGRJaBcZNbPWTYxt5Qu5gfRh+CDZL3Mj0=
Subject key identifier: 07:BC:A0:48:2D:60:55:87:EB:0E:0C:85:1C:38:E8:07:75:5F:90:17
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194739D4408EA1383AEF19121DF364281D3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/B7ygSC1gVYfrDgyFHDjoB3VfkBc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 17 Jan 2025 09:34:33 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.84.157.0/24
IP: 2a14:1740::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:73:9d:44:08:ea:13:83:ae:f1:91:21:df:36:42:81:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 17 09:34:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07bca0482d605587eb0e0c851c38e807755f9017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:38:ff:fa:13:0f:bf:d4:38:1f:1f:bf:31:c7:
75:63:81:2e:7b:c6:32:f5:d9:37:74:63:7e:9b:76:
8d:d6:18:a0:19:de:b6:ec:e7:84:24:28:5c:17:f7:
0a:91:e7:ee:93:7f:1b:c8:d0:9c:af:51:fb:41:2e:
b7:bf:f7:e7:a1:8d:68:59:e7:4e:81:5c:51:ea:b0:
01:08:4f:37:96:5b:ad:10:bf:d9:56:55:2d:74:15:
3a:08:80:a8:29:a0:f5:b2:b7:b6:fc:9a:f2:4a:fa:
19:de:88:6f:0b:3b:e8:d4:a0:58:02:6a:00:2c:4b:
13:ca:fa:8d:b8:a0:25:b4:b5:7f:12:9b:52:bd:25:
75:99:5f:e4:5e:ff:ed:91:d2:77:d6:d2:1f:4d:36:
7c:0e:0d:60:5a:3f:f0:2c:74:62:24:8f:eb:5c:d0:
73:27:35:80:ac:93:5a:98:4e:7d:08:da:a2:85:74:
87:05:6c:3b:d3:81:93:9e:01:02:eb:83:4e:42:aa:
3a:d2:d8:41:1e:6c:dc:2c:b0:0f:33:ec:05:68:ad:
99:a5:ac:48:88:c7:8e:fb:7e:1c:2a:39:e4:2e:33:
59:13:b4:20:0c:63:a1:0c:d9:d7:28:dd:76:31:02:
5e:63:93:ca:5a:e0:87:19:98:7f:f4:00:23:a4:71:
21:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:BC:A0:48:2D:60:55:87:EB:0E:0C:85:1C:38:E8:07:75:5F:90:17
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/766311-caa4-4399-8b35-fc79af1f6fb3/1/B7ygSC1gVYfrDgyFHDjoB3VfkBc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.157.0/24
IPv6:
2a14:1740::/29
Signature Algorithm: sha256WithRSAEncryption
74:8f:d0:4e:30:80:77:9e:b1:ab:96:f2:c9:d0:ed:2a:a5:55:
63:4f:72:13:c4:69:b4:75:b7:2c:09:b9:19:b0:9e:43:37:04:
e8:a7:a2:ac:db:58:f3:d9:d1:3f:f9:0e:ae:dc:2b:70:ef:73:
1c:20:db:4c:e0:eb:86:e1:a9:ed:f2:5b:29:c7:99:d7:d1:c1:
a9:90:9f:2b:ab:27:53:bf:aa:b5:02:84:70:00:f3:21:a1:a7:
77:36:6f:e4:9c:81:e4:e7:bb:de:d2:d4:70:fa:a4:5f:44:ca:
87:90:07:5e:a9:dd:11:75:ff:e0:a6:0d:43:0e:94:7b:2e:8f:
f2:69:4b:fc:02:85:46:83:e5:f1:e6:fc:a2:38:21:4f:a7:e6:
b9:e0:d7:ce:ed:c1:e5:c2:71:e9:cf:4e:b6:52:dc:5c:85:69:
8b:12:eb:ef:4f:25:7f:7a:8e:42:47:62:d0:6e:76:ab:71:b9:
78:55:91:a1:6a:a0:d9:96:a5:51:de:a3:24:0d:66:d2:25:64:
49:49:a8:28:d5:84:93:20:fb:81:1f:2e:a5:58:b7:52:b0:c5:
c3:13:f2:a1:58:1f:15:db:91:c6:97:da:42:49:15:79:38:92:
fd:4c:12:d4:20:90:35:2b:5a:df:2e:e4:36:90:8f:d6:8a:0b:
25:98:9a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 16:01:33 2025 by rpki-client