Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EhUb9X9TFrLdXNij95hSfqwUt3Q.cer
File: EhUb9X9TFrLdXNij95hSfqwUt3Q.cer (raw, json)
Hash identifier: AR9yflG9n7KZye51vJud0hGIl8iKHnJw3PaSaL/jiso=
Subject key identifier: 12:15:1B:F5:7F:53:16:B2:DD:5C:D8:A3:F7:98:52:7E:AC:14:B7:74
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228E17D34B5519F5A7A968A0A13928C4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/EhUb9X9TFrLdXNij95hSfqwUt3Q.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:45 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 194.0.51.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:17:d3:4b:55:19:f5:a7:a9:68:a0:a1:39:28:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12151bf57f5316b2dd5cd8a3f798527eac14b774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8d:02:32:03:46:97:72:d7:e7:0d:5c:b7:52:
8a:b1:38:73:72:a3:79:11:f8:6a:22:62:0b:0c:fb:
d7:69:f0:64:ef:7b:e3:9f:e2:69:bb:e6:7f:02:cb:
a0:41:34:a9:94:fb:63:69:da:cc:9d:58:dc:f5:8b:
9b:57:06:1c:5a:df:a2:c9:2a:8b:e5:01:93:7a:75:
19:34:28:0f:a1:41:a8:90:d6:d8:ed:bd:c0:19:c9:
57:d0:11:36:07:61:72:57:c7:8c:57:b2:64:e1:71:
d2:e3:12:36:60:c7:44:b5:cf:9d:b6:75:b4:57:1c:
6d:6a:32:ad:57:9c:80:60:78:bd:30:ff:16:6b:d5:
44:39:51:07:4a:4f:bf:03:c8:96:55:98:67:74:f6:
45:45:13:51:88:04:b5:da:1e:6d:75:37:ad:0f:d4:
e1:f0:5e:9a:28:c0:22:b3:7c:b2:8c:8e:cd:89:df:
b0:00:69:ac:87:c8:54:60:84:d5:bc:18:8f:ca:85:
58:9b:55:a8:da:ae:07:6a:6f:f1:db:30:9e:e3:c1:
ed:97:1e:a7:60:14:73:17:85:42:16:8f:1b:c4:44:
7c:cc:e4:3e:6c:f3:c2:2f:e9:8b:3e:8d:cb:86:39:
5a:8f:73:67:2a:17:c4:54:ec:ca:79:5a:1e:fc:90:
c0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:15:1B:F5:7F:53:16:B2:DD:5C:D8:A3:F7:98:52:7E:AC:14:B7:74
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c50d0c-388e-4c00-bef4-4dc6a4f4ee55/1/EhUb9X9TFrLdXNij95hSfqwUt3Q.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.51.0/24
Signature Algorithm: sha256WithRSAEncryption
69:09:f4:d2:86:c1:24:7b:c7:ad:75:6f:a0:ab:ee:ee:f0:01:
65:e7:e9:1f:4b:11:bd:77:a3:68:a2:60:32:2e:15:a6:c8:f7:
00:f9:1c:db:57:ad:47:c9:1b:48:03:27:a5:69:cf:ff:56:5d:
40:45:b2:7d:15:a3:24:be:4f:ab:36:c5:46:26:e6:84:c8:84:
40:0f:96:be:a5:42:6b:5c:9b:4c:53:4d:1a:1b:b0:c9:b7:3e:
5a:77:d9:59:d8:7a:ab:30:58:a0:4a:7d:3b:03:26:32:4b:6b:
d0:d6:97:c9:34:50:ee:84:c0:5b:0d:45:d2:3b:3c:b1:b1:dd:
3b:e6:57:f9:30:d5:14:b7:a3:6c:85:82:2f:ac:f1:31:b2:30:
91:5c:6a:7e:0f:bb:f8:89:85:0d:f4:69:12:46:d7:7b:ac:73:
d6:d0:3c:22:6b:c5:57:10:30:66:a2:9e:d6:d4:06:72:c4:35:
14:53:da:c3:50:2f:1e:c0:7d:df:11:be:86:30:cf:e8:6a:42:
53:91:2e:df:5a:69:73:7c:44:e8:bc:3e:a0:a3:9e:24:5c:fb:
f0:96:96:00:67:4b:15:a3:b2:8d:89:b5:d8:86:f4:66:03:99:
52:f0:fc:44:9e:b0:2c:ab:0b:c0:d7:8c:18:04:f6:36:af:cc:
5f:35:c9:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:23:02 2025 by rpki-client