Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
File: BVFgW2dezk4PznF1rjGpP6gnK6Y.cer (raw, json)
Hash identifier: eWUGfM44ZNekdJGaqqUOI8UFiIrp4jc1VOp2D8skOpY=
Subject key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427474258F46D742AD6B9ED863CF16391
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:29 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 42303
IP: 5.35.184.0/21
IP: 45.84.240.0/22
IP: 46.182.200.0/21
IP: 62.56.208.0/21
IP: 77.72.96.0/21
IP: 85.208.44.0/22
IP: 94.127.32.0/21
IP: 151.236.200.0/21
IP: 185.55.8.0/22
IP: 185.104.12.0/22
IP: 185.153.212.0/22
IP: 185.226.56.0/22
IP: 193.149.178.0/23
IP: 194.179.136.0/22
IP: 213.170.145.0/24
IP: 2a02:470::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:42:58:f4:6d:74:2a:d6:b9:ed:86:3c:f1:63:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:56:21:71:15:33:06:70:eb:f3:3c:e4:23:e4:
d0:4f:ba:f2:d1:a1:a0:d9:c8:00:94:6a:f9:93:bb:
85:64:c0:c1:df:33:5d:3a:ec:46:4a:c2:84:3e:c0:
85:ed:7e:98:5b:96:52:a1:fe:ba:62:a7:b4:ba:eb:
e3:7a:ba:eb:9a:31:dc:e5:5c:b3:23:62:c4:86:3b:
a3:82:3c:96:17:0e:26:ae:13:62:70:49:ae:67:ac:
17:86:7f:5a:d4:cc:5b:80:8e:ba:7a:23:f4:0a:a2:
c6:e0:da:31:65:18:ae:38:02:84:ad:f6:61:37:e0:
c8:f8:76:66:1d:d3:fe:ec:e9:3c:8c:82:11:8f:99:
24:4d:d4:1d:45:66:8d:9d:39:15:60:a4:9b:91:bb:
f5:d8:42:8a:c3:1b:b5:4b:c1:7d:66:89:33:d4:c7:
7d:9c:c9:bf:b8:cb:87:6b:3d:a8:ab:e1:ea:7d:a8:
91:0e:75:26:0d:61:e1:2c:b5:7a:9f:76:cd:38:9a:
a0:b8:7f:c4:66:bf:65:f0:9f:a5:20:3a:d8:12:e1:
57:5c:a9:ac:bb:31:8a:81:4d:86:a1:9a:37:b8:2f:
42:65:a2:2a:15:17:c8:2a:2c:12:9b:8c:80:a0:65:
4a:3d:e2:e8:0f:3a:65:3a:43:58:ad:a4:f7:19:83:
14:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.184.0/21
45.84.240.0/22
46.182.200.0/21
62.56.208.0/21
77.72.96.0/21
85.208.44.0/22
94.127.32.0/21
151.236.200.0/21
185.55.8.0/22
185.104.12.0/22
185.153.212.0/22
185.226.56.0/22
193.149.178.0/23
194.179.136.0/22
213.170.145.0/24
IPv6:
2a02:470::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42303
Signature Algorithm: sha256WithRSAEncryption
44:82:c1:5b:23:ea:4b:5d:ee:c9:05:91:a3:9b:5c:e1:0a:7f:
70:c0:0e:49:9b:d9:90:9b:24:81:ee:6c:01:f5:b3:7a:e7:a8:
0e:20:b2:94:c4:a4:d6:49:10:40:39:bb:65:72:2d:46:12:9f:
8e:af:bc:e8:c2:1b:f5:c9:3a:6e:57:47:9e:b9:bd:91:2c:f1:
05:00:fb:9c:18:68:7c:af:2b:78:48:d7:e5:18:c2:96:1c:82:
1a:bb:1c:9f:6a:0a:c8:8f:0c:d6:ff:a4:0e:94:07:e4:f2:e1:
82:26:66:46:48:9c:2e:8e:b0:66:8f:79:c9:e3:63:dd:af:66:
aa:d6:ed:0c:f9:85:95:9a:d8:71:3f:4f:ab:9b:e3:d6:6d:26:
06:f3:1d:b4:73:81:2f:7c:7a:05:72:45:ac:45:e3:65:1f:8a:
60:02:10:dd:c6:55:97:c9:4b:ae:93:ad:17:94:37:b4:68:00:
16:97:89:5b:bd:ce:ae:ee:36:2a:bf:60:ec:46:e4:5b:b7:d9:
6e:1c:2f:da:c0:91:13:e2:0d:62:ab:89:94:8a:0d:b4:c7:d4:
05:d1:3f:4c:49:13:f1:e9:1d:02:5e:ee:78:ba:16:e8:82:aa:
6f:24:da:78:b3:48:96:d3:ed:d6:8a:2b:1c:f0:31:05:1b:78:
79:7b:d9:e4
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgISAZQnR0JY9G10Kta57YY88WORMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTM0OTI5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTUxNjA1YjY3NWVjZTRlMGZjZTcxNzVhZTMxYTkzZmE4MjcyYmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlYhcRUzBnDr8zzkI+TQT7ry0aGg
2cgAlGr5k7uFZMDB3zNdOuxGSsKEPsCF7X6YW5ZSof66Yqe0uuvjerrrmjHc5Vyz
I2LEhjujgjyWFw4mrhNicEmuZ6wXhn9a1MxbgI66eiP0CqLG4NoxZRiuOAKErfZh
N+DI+HZmHdP+7Ok8jIIRj5kkTdQdRWaNnTkVYKSbkbv12EKKwxu1S8F9Zokz1Md9
nMm/uMuHaz2oq+HqfaiRDnUmDWHhLLV6n3bNOJqguH/EZr9l8J+lIDrYEuFXXKms
uzGKgU2GoZo3uC9CZaIqFRfIKiwSm4yAoGVKPeLoDzplOkNYraT3GYMUEwIDAQAB
o4IDBDCCAwAwHQYDVR0OBBYEFAVRYFtnXs5OD85xda4xqT+oJyumMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMwLzI4ZWE0
NS03ZDMwLTQ2ZGYtOGYyYS0wNzc5ZjQ4ZWNlYTAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzAvMjhlYTQ1
LTdkMzAtNDZkZi04ZjJhLTA3NzlmNDhlY2VhMC8xL0JWRmdXMmRlems0UHpuRjFy
akdwUDZnbks2WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGCBggrBgEF
BQcBBwEB/wRzMHEwYAQCAAEwWgMEAwUjuAMEAi1U8AMEAy62yAMEAz440AMEA01I
YAMEAlXQLAMEA15/IAMEA5fsyAMEArk3CAMEArloDAMEArmZ1AMEArniOAMEAcGV
sgMEAsKziAMEANWqkTANBAIAAjAHAwUDKgIEcDAaBggrBgEFBQcBCAEB/wQLMAmg
BzAFAgMApT8wDQYJKoZIhvcNAQELBQADggEBAESCwVsj6ktd7skFkaObXOEKf3DA
Dkmb2ZCbJIHubAH1s3rnqA4gspTEpNZJEEA5u2VyLUYSn46vvOjCG/XJOm5XR565
vZEs8QUA+5wYaHyvK3hI1+UYwpYcghq7HJ9qCsiPDNb/pA6UB+Ty4YImZkZInC6O
sGaPecnjY92vZqrW7Qz5hZWa2HE/T6ub49ZtJgbzHbRzgS98egVyRaxF42UfimAC
EN3GVZfJS66TrReUN7RoABaXiVu9zq7uNiq/YOxG5Fu32W4cL9rAkRPiDWKriZSK
DbTH1AXRP0xJE/HpHQJe7ni6FuiCqm8k2nizSJbT7daKKxzwMQUbeHl72eQ=
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:23:19 2025 by rpki-client