Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Goki00gTCNvUwqtucOran3X222g.cer
File: Goki00gTCNvUwqtucOran3X222g.cer (raw, json)
Hash identifier: jAhEPYJt8+BcZp+Agq0U9L6lWJlBPJzuOOQj2lXQypk=
Subject key identifier: 1A:89:22:D3:48:13:08:DB:D4:C2:AB:6E:70:EA:DA:9F:75:F6:DB:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C7F6DA9B6E5E97D8240A8D3D0AF01
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d0/1b8a9d-d3de-41bb-82c8-7ae263922822/1/Goki00gTCNvUwqtucOran3X222g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d0/1b8a9d-d3de-41bb-82c8-7ae263922822/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:48:08 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.77.100.0/22
IP: 2a03:53e0::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:7f:6d:a9:b6:e5:e9:7d:82:40:a8:d3:d0:af:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1a8922d3481308dbd4c2ab6e70eada9f75f6db68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:dc:f0:a1:b4:89:05:f2:53:5c:7d:d4:cd:49:
02:d4:dc:2d:87:f0:70:39:91:ce:3a:58:3c:4d:53:
b1:2e:13:96:74:30:f3:2d:ed:43:53:a4:74:fe:75:
e6:d8:d6:51:97:a1:f8:60:4c:b4:c0:57:5b:17:c6:
fe:2c:39:66:e3:a0:ea:f4:ff:57:85:82:8a:a7:21:
88:3e:21:50:71:f2:fb:f1:db:62:a2:7f:1f:18:1f:
ad:b9:b4:f9:e3:0a:01:1c:90:c5:e5:8a:e5:69:7c:
f1:bb:86:7a:18:9f:1c:27:25:2a:a9:14:e2:63:2b:
e6:02:e4:85:e4:ea:6c:29:04:0f:66:e5:22:8a:8f:
97:48:f2:b2:39:b3:ff:1a:8a:a3:21:67:ea:c2:36:
d9:6b:f5:3c:21:35:af:b0:21:03:c3:23:63:3c:29:
aa:d4:9a:dc:29:4b:4f:3d:9f:c6:21:3f:53:a4:e0:
e4:6f:bd:ce:2e:54:19:d3:c6:3e:0d:ca:40:17:40:
16:9f:be:50:0a:27:c3:5e:c7:67:1c:ef:3b:67:54:
e8:c2:7c:d5:63:02:d8:d8:ca:47:93:49:80:b2:31:
c4:cc:a1:25:f6:01:1b:d5:f9:55:46:92:71:cc:70:
e4:6d:6d:91:ce:65:3b:47:be:cf:ce:96:a5:fa:d3:
e0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:89:22:D3:48:13:08:DB:D4:C2:AB:6E:70:EA:DA:9F:75:F6:DB:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1b8a9d-d3de-41bb-82c8-7ae263922822/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1b8a9d-d3de-41bb-82c8-7ae263922822/1/Goki00gTCNvUwqtucOran3X222g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.100.0/22
IPv6:
2a03:53e0::/32
Signature Algorithm: sha256WithRSAEncryption
8e:33:94:12:d1:ea:1d:b1:ab:54:87:5c:59:1e:1b:e3:46:9a:
d5:49:71:2c:78:fa:7e:b3:2d:6b:58:d4:8f:13:a0:6b:5f:6f:
29:31:83:0b:e9:87:28:dd:42:c1:3b:61:63:d5:3f:f7:b2:df:
ae:04:46:ee:e0:6a:14:b4:3b:d4:e7:8b:0c:03:08:eb:86:0c:
fd:5c:dc:9e:9b:8a:77:97:5d:44:6b:68:dc:66:f0:1a:31:86:
79:83:d8:a7:0c:ef:4f:64:cd:d6:56:77:0f:04:f0:0e:5f:e4:
a6:eb:dd:9b:30:b8:d1:24:72:86:ea:8f:ad:01:bf:71:00:7f:
3a:88:28:5f:60:1b:81:19:a9:14:43:7a:a1:80:e5:d9:6f:67:
e2:1d:5a:d9:bf:7f:72:7d:43:78:f1:b9:24:49:0c:18:ce:49:
45:4c:5b:fe:ed:e6:45:f6:e6:a3:78:b8:61:56:ae:dc:65:a9:
e7:ce:1b:b5:01:34:5f:55:56:34:19:0e:b5:b8:dd:23:9e:ff:
71:a2:7e:7a:1b:43:30:56:69:33:cf:46:37:9f:f1:18:c2:37:
a7:e2:89:b0:e5:64:17:ae:9d:51:e3:82:c3:d8:eb:a0:7a:55:
2a:54:13:d4:72:76:7d:f7:02:c7:e3:14:51:09:45:90:a4:ff:
19:7e:57:8a
-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISAZQfjH9tqbbl6X2CQKjT0K8BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDE0ODA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYTg5MjJkMzQ4MTMwOGRiZDRjMmFiNmU3MGVhZGE5Zjc1ZjZkYjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAydzwobSJBfJTXH3UzUkC1Nwth/Bw
OZHOOlg8TVOxLhOWdDDzLe1DU6R0/nXm2NZRl6H4YEy0wFdbF8b+LDlm46Dq9P9X
hYKKpyGIPiFQcfL78dtion8fGB+tubT54woBHJDF5YrlaXzxu4Z6GJ8cJyUqqRTi
YyvmAuSF5OpsKQQPZuUiio+XSPKyObP/GoqjIWfqwjbZa/U8ITWvsCEDwyNjPCmq
1JrcKUtPPZ/GIT9TpODkb73OLlQZ08Y+DcpAF0AWn75QCifDXsdnHO87Z1TownzV
YwLY2MpHk0mAsjHEzKEl9gEb1flVRpJxzHDkbW2RzmU7R77Pzpal+tPgTQIDAQAB
o4ICkzCCAo8wHQYDVR0OBBYEFBqJItNIEwjb1MKrbnDq2p919ttoMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QwLzFiOGE5
ZC1kM2RlLTQxYmItODJjOC03YWUyNjM5MjI4MjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAvMWI4YTlk
LWQzZGUtNDFiYi04MmM4LTdhZTI2MzkyMjgyMi8xL0dva2kwMGdUQ052VXdxdHVj
T3JhbjNYMjIyZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuU1kMA0EAgACMAcDBQAqA1PgMA0GCSqGSIb3
DQEBCwUAA4IBAQCOM5QS0eodsatUh1xZHhvjRprVSXEsePp+sy1rWNSPE6BrX28p
MYML6Yco3ULBO2Fj1T/3st+uBEbu4GoUtDvU54sMAwjrhgz9XNyem4p3l11Ea2jc
ZvAaMYZ5g9inDO9PZM3WVncPBPAOX+Sm692bMLjRJHKG6o+tAb9xAH86iChfYBuB
GakUQ3qhgOXZb2fiHVrZv39yfUN48bkkSQwYzklFTFv+7eZF9uajeLhhVq7cZann
zhu1ATRfVVY0GQ61uN0jnv9xon56G0MwVmkzz0Y3n/EYwjen4omw5WQXrp1R44LD
2OugelUqVBPUcnZ99wLH4xRRCUWQpP8ZfleK
-----END CERTIFICATE-----
Generated at Tue Apr 8 07:31:19 2025 by rpki-client