Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer
File: G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.cer (raw, json)
Hash identifier: GpkYJe7MOIeoaqgWcy9m4BR3OY9xUZWFc/WsIK6uHEk=
Subject key identifier: 1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195D837F3EF4C64C45B2B799F62F9AA1670
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 27 Mar 2025 15:28:20 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 2.59.8.0/23
IP: 2.59.14.0/24
IP: 5.42.198.0/24
IP: 31.14.219.0/24
IP: 31.14.236.0/23
IP: 31.42.112.0/22
IP: 31.210.18.0/24
IP: 43.240.140.0/22
IP: 45.78.80.0/22
IP: 45.94.244.0/22
IP: 45.95.48.0/22
IP: 45.116.168.0/22
IP: 45.138.232.0/22
IP: 45.142.92.0 -- 45.142.99.255
IP: 45.149.148.0/22
IP: 46.183.210.0 -- 46.183.215.255
IP: 58.97.128.0/21
IP: 58.97.232.0 -- 58.97.255.255
IP: 62.3.29.0/24
IP: 62.68.91.0/24
IP: 62.106.92.0/24
IP: 62.112.12.0/23
IP: 77.81.104.0/21
IP: 77.95.116.0/22
IP: 78.24.206.0/24
IP: 78.138.1.0 -- 78.138.2.255
IP: 78.138.16.0/24
IP: 78.138.25.0/24
IP: 78.138.30.0/24
IP: 78.138.40.0/24
IP: 78.138.47.0 -- 78.138.48.255
IP: 78.138.50.0/24
IP: 80.240.103.0/24
IP: 80.240.111.0/24
IP: 82.97.196.0/23
IP: 82.97.199.0 -- 82.97.200.255
IP: 83.229.76.0/22
IP: 83.229.104.0/22
IP: 84.39.224.0/21
IP: 85.89.192.0/19
IP: 85.204.241.0/24
IP: 86.106.120.0/24
IP: 89.19.40.0/22
IP: 89.32.129.0/24
IP: 89.32.184.0/24
IP: 89.32.203.0/24
IP: 89.34.7.0/24
IP: 89.34.78.0/23
IP: 89.37.28.0/24
IP: 89.37.216.0/23
IP: 89.38.106.0/23
IP: 89.38.132.0/23
IP: 89.39.150.0/24
IP: 89.39.214.0/24
IP: 89.40.108.0/23
IP: 89.41.62.0/24
IP: 89.42.48.0/23
IP: 89.43.51.0/24
IP: 89.43.68.0/23
IP: 89.44.115.0/24
IP: 89.44.213.0/24
IP: 89.44.245.0/24
IP: 89.46.152.0/21
IP: 89.47.63.0/24
IP: 89.249.51.0/24
IP: 89.249.56.0/22
IP: 91.132.184.0/22
IP: 91.197.252.0/22
IP: 91.238.148.0/23
IP: 91.245.235.0/24
IP: 92.43.84.0/22
IP: 93.113.124.0/23
IP: 93.114.0.0/20
IP: 93.115.12.0/23
IP: 93.180.192.0/20
IP: 93.180.224.0/20
IP: 94.176.112.0/20
IP: 94.176.163.0/24
IP: 94.176.216.0/22
IP: 94.177.52.0 -- 94.177.57.255
IP: 95.215.36.0/22
IP: 103.204.124.0/22
IP: 103.204.212.0/22
IP: 104.167.22.0/23
IP: 119.13.192.0/19
IP: 121.91.80.0/21
IP: 136.242.96.0/19
IP: 138.124.144.0/22
IP: 150.129.92.0/22
IP: 176.117.84.0/22
IP: 176.118.195.0/24
IP: 176.119.8.0/21
IP: 176.223.168.0/22
IP: 185.38.102.0/24
IP: 185.77.250.0/23
IP: 185.90.243.0/24
IP: 185.125.192.0/22
IP: 185.131.220.0/23
IP: 185.221.221.0/24
IP: 185.223.56.0/24
IP: 185.223.58.0/23
IP: 185.225.104.0/22
IP: 185.229.250.0/24
IP: 185.240.252.0/24
IP: 185.240.254.0/23
IP: 185.243.108.0/22
IP: 188.95.152.0/21
IP: 188.119.116.0/22
IP: 188.210.94.0/23
IP: 188.211.250.0/23
IP: 188.212.120.0/24
IP: 188.212.131.0/24
IP: 188.214.89.0/24
IP: 188.214.93.0/24
IP: 188.215.233.0/24
IP: 188.241.59.0/24
IP: 188.241.127.0 -- 188.241.133.255
IP: 188.241.146.0/24
IP: 193.169.8.0/23
IP: 193.192.52.0/23
IP: 193.203.36.0/24
IP: 193.203.39.0/24
IP: 193.239.172.0/23
IP: 193.239.246.0/23
IP: 194.24.234.0/23
IP: 194.88.134.0/23
IP: 194.135.26.0/23
IP: 194.135.132.0/23
IP: 194.145.118.0/24
IP: 194.145.220.0/23
IP: 194.187.50.0/23
IP: 194.246.106.0/23
IP: 195.2.196.0/23
IP: 195.13.48.0/23
IP: 195.34.80.0/23
IP: 195.93.140.0/23
IP: 195.128.188.0/23
IP: 195.133.208.0/23
IP: 195.135.192.0/23
IP: 195.189.132.0/23
IP: 195.189.250.0/23
IP: 195.210.44.0/23
IP: 195.254.140.0/23
IP: 202.81.208.0/20
IP: 202.181.20.0/22
IP: 203.109.52.0/22
IP: 203.109.60.0/22
IP: 203.166.144.0 -- 203.166.157.255
IP: 203.168.136.0 -- 203.168.159.255
IP: 209.20.160.0/19
IP: 213.159.10.0 -- 213.159.13.255
IP: 222.167.96.0/19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:d8:37:f3:ef:4c:64:c4:5b:2b:79:9f:62:f9:aa:16:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 27 15:28:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1ba51a0bc0f0afebbf6d5d927fe1f9816f52352d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:da:9e:89:e0:ed:49:ef:6f:5d:1e:1e:28:cf:
e1:2b:d0:77:48:7f:c5:96:be:66:1e:c8:2b:44:71:
97:97:73:90:ad:ca:4b:3a:14:d7:1c:8e:e0:f9:0f:
3b:6f:40:8b:83:37:96:32:6b:86:05:ce:c5:fa:a5:
b2:5a:c1:fb:2d:c5:91:f1:2f:3b:87:69:d7:d4:2f:
4e:fe:91:06:ec:32:9a:4b:42:05:bf:24:6b:eb:6e:
37:29:e1:5f:0a:d7:7a:8f:72:77:24:96:18:2e:68:
9f:7c:84:e5:37:74:68:6d:b0:1d:3f:3a:a2:8e:c4:
1e:63:25:52:85:41:80:69:0a:8b:d5:56:f6:f5:d3:
ed:63:2a:16:8b:e2:3a:36:3b:d9:7c:9b:3e:75:63:
f7:6b:4f:27:10:24:3a:d7:aa:07:e0:b9:71:74:6d:
69:57:ec:8f:4a:73:5c:89:96:a8:c2:5e:7c:82:cc:
58:78:0f:b0:d0:49:de:46:1b:ec:34:13:5e:20:cd:
8d:a3:35:61:51:53:e5:05:9d:96:14:51:5d:6f:e4:
ed:3a:9f:7b:76:22:f5:a6:0f:6d:59:2c:ac:d9:c6:
37:1a:cb:58:a4:7e:77:fa:ba:d7:27:62:0a:a2:e1:
36:a5:08:2f:5e:f4:ba:20:0c:81:b1:18:8e:3c:38:
00:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A5:1A:0B:C0:F0:AF:EB:BF:6D:5D:92:7F:E1:F9:81:6F:52:35:2D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4f211e-79d7-4504-9ead-871f9ed708e0/1/G6UaC8Dwr-u_bV2Sf-H5gW9SNS0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.8.0/23
2.59.14.0/24
5.42.198.0/24
31.14.219.0/24
31.14.236.0/23
31.42.112.0/22
31.210.18.0/24
43.240.140.0/22
45.78.80.0/22
45.94.244.0/22
45.95.48.0/22
45.116.168.0/22
45.138.232.0/22
45.142.92.0-45.142.99.255
45.149.148.0/22
46.183.210.0-46.183.215.255
58.97.128.0/21
58.97.232.0-58.97.255.255
62.3.29.0/24
62.68.91.0/24
62.106.92.0/24
62.112.12.0/23
77.81.104.0/21
77.95.116.0/22
78.24.206.0/24
78.138.1.0-78.138.2.255
78.138.16.0/24
78.138.25.0/24
78.138.30.0/24
78.138.40.0/24
78.138.47.0-78.138.48.255
78.138.50.0/24
80.240.103.0/24
80.240.111.0/24
82.97.196.0/23
82.97.199.0-82.97.200.255
83.229.76.0/22
83.229.104.0/22
84.39.224.0/21
85.89.192.0/19
85.204.241.0/24
86.106.120.0/24
89.19.40.0/22
89.32.129.0/24
89.32.184.0/24
89.32.203.0/24
89.34.7.0/24
89.34.78.0/23
89.37.28.0/24
89.37.216.0/23
89.38.106.0/23
89.38.132.0/23
89.39.150.0/24
89.39.214.0/24
89.40.108.0/23
89.41.62.0/24
89.42.48.0/23
89.43.51.0/24
89.43.68.0/23
89.44.115.0/24
89.44.213.0/24
89.44.245.0/24
89.46.152.0/21
89.47.63.0/24
89.249.51.0/24
89.249.56.0/22
91.132.184.0/22
91.197.252.0/22
91.238.148.0/23
91.245.235.0/24
92.43.84.0/22
93.113.124.0/23
93.114.0.0/20
93.115.12.0/23
93.180.192.0/20
93.180.224.0/20
94.176.112.0/20
94.176.163.0/24
94.176.216.0/22
94.177.52.0-94.177.57.255
95.215.36.0/22
103.204.124.0/22
103.204.212.0/22
104.167.22.0/23
119.13.192.0/19
121.91.80.0/21
136.242.96.0/19
138.124.144.0/22
150.129.92.0/22
176.117.84.0/22
176.118.195.0/24
176.119.8.0/21
176.223.168.0/22
185.38.102.0/24
185.77.250.0/23
185.90.243.0/24
185.125.192.0/22
185.131.220.0/23
185.221.221.0/24
185.223.56.0/24
185.223.58.0/23
185.225.104.0/22
185.229.250.0/24
185.240.252.0/24
185.240.254.0/23
185.243.108.0/22
188.95.152.0/21
188.119.116.0/22
188.210.94.0/23
188.211.250.0/23
188.212.120.0/24
188.212.131.0/24
188.214.89.0/24
188.214.93.0/24
188.215.233.0/24
188.241.59.0/24
188.241.127.0-188.241.133.255
188.241.146.0/24
193.169.8.0/23
193.192.52.0/23
193.203.36.0/24
193.203.39.0/24
193.239.172.0/23
193.239.246.0/23
194.24.234.0/23
194.88.134.0/23
194.135.26.0/23
194.135.132.0/23
194.145.118.0/24
194.145.220.0/23
194.187.50.0/23
194.246.106.0/23
195.2.196.0/23
195.13.48.0/23
195.34.80.0/23
195.93.140.0/23
195.128.188.0/23
195.133.208.0/23
195.135.192.0/23
195.189.132.0/23
195.189.250.0/23
195.210.44.0/23
195.254.140.0/23
202.81.208.0/20
202.181.20.0/22
203.109.52.0/22
203.109.60.0/22
203.166.144.0-203.166.157.255
203.168.136.0-203.168.159.255
209.20.160.0/19
213.159.10.0-213.159.13.255
222.167.96.0/19
Signature Algorithm: sha256WithRSAEncryption
97:c6:95:51:f6:16:be:03:f2:3b:50:ad:c7:ea:2e:a3:2b:cd:
41:42:2d:af:35:1d:d5:1c:8c:45:c5:1d:61:d8:2a:ae:4d:20:
04:3c:d8:6f:fe:50:7a:dc:d8:2d:06:3a:91:81:a2:7f:90:10:
b7:2f:ce:92:a4:a3:99:56:a0:b4:67:f6:3b:11:61:f2:18:b3:
e4:a4:4e:50:c9:fe:76:bf:ea:8a:2d:5b:f5:29:fa:e8:87:54:
fe:25:9d:37:a0:aa:0c:b8:5b:8d:37:8b:04:15:cd:61:26:93:
9a:ad:cb:8b:00:b1:3f:2b:0a:74:7b:9c:2b:5f:03:1f:10:92:
b0:52:a1:2c:34:be:05:5b:6a:d0:67:1a:2c:57:e4:c7:2c:f6:
89:e1:36:dc:dd:17:d4:80:b2:75:93:6e:06:48:21:1c:ce:f3:
82:2d:59:bd:90:db:ab:d5:ea:88:27:a4:47:2c:86:c1:da:e3:
7d:ca:23:3e:69:61:25:36:d4:61:ec:94:01:4f:a1:cd:45:4f:
73:e3:58:1c:e3:37:c9:9f:87:82:53:78:4f:ae:90:3f:d5:dd:
24:5b:69:3c:c2:4e:87:15:2a:de:c1:0d:ad:72:2b:39:c6:78:
2b:8d:ee:ee:45:90:ae:82:1c:60:77:3f:09:c0:b9:5b:09:7f:
4d:e1:f0:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:38:52 2025 by rpki-client