Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GawUmIYOK7CVgXOFS9BMhpo2kBc.cer
File: GawUmIYOK7CVgXOFS9BMhpo2kBc.cer (raw, json)
Hash identifier: 5czpwr+lU1ih0G0dvrIvxortriR/pyuNx0Vm7VE3F84=
Subject key identifier: 19:AC:14:98:86:0E:2B:B0:95:81:73:85:4B:D0:4C:86:9A:36:90:17
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA68700852F93C6BE682E6E7ADCDF4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/GawUmIYOK7CVgXOFS9BMhpo2kBc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:48:12 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 37.143.128.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:68:70:08:52:f9:3c:6b:e6:82:e6:e7:ad:cd:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19ac1498860e2bb0958173854bd04c869a369017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:4b:67:96:e5:97:7b:58:eb:95:71:ad:61:
aa:a9:b5:72:ca:30:33:28:ba:c8:bd:5f:72:dd:2d:
ff:35:59:bc:a1:de:ab:c3:81:96:c0:4d:e5:e9:05:
09:9d:d0:4b:cd:fa:8e:4b:b1:4c:59:57:86:82:38:
b9:ef:1a:48:a7:af:41:ed:95:ee:93:4c:9b:af:5a:
bf:b2:db:9a:57:12:3d:02:80:a6:be:ed:39:11:65:
5f:93:ab:97:e0:9c:f0:e4:ef:85:01:1e:4e:c7:1d:
9e:db:2b:60:d6:20:2a:88:a5:4c:c2:93:94:c7:48:
82:66:2c:ce:ea:cb:83:cb:22:87:4b:3c:79:34:fa:
bd:3a:9d:16:48:29:15:7b:c1:88:87:da:37:99:45:
00:a5:27:c9:84:a4:90:95:c2:0b:c3:f7:c0:0f:48:
f6:3c:37:19:d1:bc:de:d3:69:c5:b5:a4:58:e8:80:
03:c7:69:c9:aa:62:47:27:53:e6:68:c5:fb:c2:86:
92:5b:7b:5d:ae:61:ff:90:87:76:68:13:7a:93:d5:
40:0f:dd:76:dd:98:c2:81:a3:24:f5:a0:66:36:f5:
8a:7f:89:df:0a:87:48:7e:e4:0c:f4:99:1b:04:13:
04:b2:04:11:eb:c4:60:73:6e:e6:20:f4:01:fe:37:
b2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:AC:14:98:86:0E:2B:B0:95:81:73:85:4B:D0:4C:86:9A:36:90:17
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/69c389-17c9-4461-a390-7aa290e857e9/1/GawUmIYOK7CVgXOFS9BMhpo2kBc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.143.128.0/22
Signature Algorithm: sha256WithRSAEncryption
10:87:bc:a6:46:35:7d:2a:d3:d7:ea:48:8c:40:a5:88:56:08:
04:98:5e:dc:d2:b3:2d:30:5a:6c:d7:a9:37:5a:b1:a4:48:5e:
dd:85:a3:6a:01:d5:8b:0f:d1:82:1b:89:21:77:cf:1d:c5:59:
50:a6:91:09:aa:6d:27:56:ab:32:d3:60:10:b7:b0:ec:53:30:
20:05:1e:35:43:90:82:74:27:37:dc:c4:f4:05:d6:70:62:5a:
5a:cd:fd:66:07:5d:51:38:a1:82:af:a5:6e:72:f6:0e:50:8e:
c9:eb:08:9d:75:05:00:13:8d:fe:4d:78:6f:a5:6d:da:5b:8e:
6d:0f:99:b6:8f:33:f0:e4:29:f9:bb:e8:16:a9:a4:1f:e4:a5:
95:4c:18:5b:66:68:d4:cc:89:99:fc:93:d6:35:9f:1d:de:6e:
c6:5c:99:68:94:d0:23:2a:7e:e7:c4:1b:90:dc:84:e5:5b:cd:
d9:37:e2:1d:0a:8e:68:a8:78:12:65:d4:cf:22:04:6f:b4:40:
c5:87:1a:0d:9e:b5:fd:bb:53:73:c7:58:d0:d4:a4:36:5b:2e:
eb:5d:00:7e:f8:17:69:ea:05:5d:47:a7:96:d6:21:93:ca:20:
49:9e:cf:d3:99:06:f9:9d:09:7b:e1:78:37:cc:dd:0a:97:30:
53:c3:2a:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:03:48 2025 by rpki-client