Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I0BAUrjKlyu7L_aoE8pB6KlVnso.cer
File: I0BAUrjKlyu7L_aoE8pB6KlVnso.cer (raw, json)
Hash identifier: 2cE2eav6qm+XauJtDlT6LTk+izi35bm5JSLElBjUlUI=
Subject key identifier: 23:40:40:52:B8:CA:97:2B:BB:2F:F6:A8:13:CA:41:E8:A9:55:9E:CA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856ED420A10026AC3500A67A79C16AE882
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/55ebd7-5fb8-4011-bce6-bd1102bb8c1b/1/I0BAUrjKlyu7L_aoE8pB6KlVnso.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/55ebd7-5fb8-4011-bce6-bd1102bb8c1b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 01 Jan 2023 19:34:33 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 44865
IP: 194.116.242.0/23
IP: 2001:67c:2b50::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:20:a1:00:26:ac:35:00:a6:7a:79:c1:6a:e8:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:34:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=23404052b8ca972bbb2ff6a813ca41e8a9559eca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:70:67:20:7e:d0:b2:4f:56:bd:6f:43:2a:8b:
29:48:e2:5e:00:17:c0:30:25:0b:b1:d2:b8:1f:5d:
ff:a3:23:b8:0b:aa:80:e9:2c:d9:9f:aa:3b:2a:b8:
50:13:f8:79:57:d7:ef:64:46:38:fa:7c:a1:c6:de:
90:92:80:c6:ec:da:c0:d8:e8:38:8d:99:a6:06:79:
74:0f:b7:53:ad:1b:21:33:eb:08:02:b3:4b:73:27:
83:a1:75:0f:54:df:47:99:a7:74:39:27:bc:62:f2:
4c:d6:bf:7e:1b:b6:2f:d7:4e:e7:b1:b3:0b:6f:cb:
ce:93:d6:26:97:fa:c4:a2:e9:c4:d9:10:d8:04:0b:
4c:40:19:63:2d:ef:c1:87:35:df:5d:8c:4e:10:19:
7a:7b:db:ad:62:d9:51:8e:c7:a4:0a:a5:2e:51:ec:
cc:5a:29:a3:5e:70:5c:86:32:2e:c2:92:44:ab:4d:
c7:7c:43:5c:74:4a:b0:61:3b:43:b0:3e:56:5c:0b:
2c:dc:5f:81:2d:58:96:46:31:c1:a9:de:fc:23:1a:
8f:ab:60:e3:19:0d:5f:46:e2:c7:09:41:1a:c8:1d:
af:c3:07:cc:7f:4e:be:00:ac:69:e5:a3:ee:5c:9f:
9b:f2:ce:06:4d:82:b4:fd:2c:6a:d2:0e:ed:19:02:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:40:40:52:B8:CA:97:2B:BB:2F:F6:A8:13:CA:41:E8:A9:55:9E:CA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55ebd7-5fb8-4011-bce6-bd1102bb8c1b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/55ebd7-5fb8-4011-bce6-bd1102bb8c1b/1/I0BAUrjKlyu7L_aoE8pB6KlVnso.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.242.0/23
IPv6:
2001:67c:2b50::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44865
Signature Algorithm: sha256WithRSAEncryption
52:84:e3:76:f8:6b:5f:c1:2b:fa:d6:09:c4:c8:45:5d:2b:66:
2b:d8:01:9a:c3:81:6d:84:31:47:1c:46:df:8f:b7:2e:83:b6:
5f:8e:f2:8e:8f:f7:fe:33:f9:74:e9:f4:0b:7a:91:6e:8b:2e:
6e:44:c5:ff:e8:95:d2:a0:57:c6:cf:44:2d:58:e6:69:4e:88:
48:8c:b5:b2:c9:38:af:ee:f5:a9:c9:00:ad:b8:6f:03:75:0c:
ad:64:b5:29:11:42:bb:97:2b:89:ad:d5:cc:7e:48:14:1b:97:
e5:7f:c0:8f:14:d6:a8:89:3e:14:39:03:1c:b4:bf:ba:49:23:
84:dd:1d:d0:a5:e1:5a:6c:75:dd:6d:7f:2b:7b:8c:8e:81:c4:
2b:42:88:69:3b:4a:fd:d2:b9:8a:ef:63:58:16:ca:c5:09:75:
75:2a:d1:ee:3a:58:9a:ed:4b:a8:06:f9:7b:4c:3a:b1:eb:73:
49:dd:4b:4a:4f:b8:57:c2:01:e0:34:cc:cd:f3:58:ef:7b:49:
00:a2:00:f4:f3:79:e5:53:c7:26:cd:72:bf:8e:9e:13:2f:22:
c7:ab:c1:be:f0:6f:14:8f:52:f7:10:d5:a6:9b:20:bb:34:21:
88:8a:ef:d6:55:19:c6:71:2c:04:e3:4e:f9:9b:fb:4c:7a:cc:
bb:73:4f:0f
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgISAYVu1CChACasNQCmennBauiCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjMwMTAxMTkzNDMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzQwNDA1MmI4Y2E5NzJiYmIyZmY2YTgxM2NhNDFlOGE5NTU5ZWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXBnIH7Qsk9WvW9DKospSOJeABfA
MCULsdK4H13/oyO4C6qA6SzZn6o7KrhQE/h5V9fvZEY4+nyhxt6QkoDG7NrA2Og4
jZmmBnl0D7dTrRshM+sIArNLcyeDoXUPVN9Hmad0OSe8YvJM1r9+G7Yv107nsbML
b8vOk9Yml/rEounE2RDYBAtMQBljLe/BhzXfXYxOEBl6e9utYtlRjsekCqUuUezM
WimjXnBchjIuwpJEq03HfENcdEqwYTtDsD5WXAss3F+BLViWRjHBqd78IxqPq2Dj
GQ1fRuLHCUEayB2vwwfMf06+AKxp5aPuXJ+b8s4GTYK0/Sxq0g7tGQIlZwIDAQAB
o4ICsTCCAq0wHQYDVR0OBBYEFCNAQFK4ypcruy/2qBPKQeipVZ7KMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY3LzU1ZWJk
Ny01ZmI4LTQwMTEtYmNlNi1iZDExMDJiYjhjMWIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjcvNTVlYmQ3
LTVmYjgtNDAxMS1iY2U2LWJkMTEwMmJiOGMxYi8xL0kwQkFVcmpLbHl1N0xfYW9F
OHBCNktsVm5zby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF
BwEHAQH/BCEwHzAMBAIAATAGAwQBwnTyMA8EAgACMAkDBwAgAQZ8K1AwGgYIKwYB
BQUHAQgBAf8ECzAJoAcwBQIDAK9BMA0GCSqGSIb3DQEBCwUAA4IBAQBShON2+Gtf
wSv61gnEyEVdK2Yr2AGaw4FthDFHHEbfj7cug7ZfjvKOj/f+M/l06fQLepFuiy5u
RMX/6JXSoFfGz0QtWOZpTohIjLWyyTiv7vWpyQCtuG8DdQytZLUpEUK7lyuJrdXM
fkgUG5flf8CPFNaoiT4UOQMctL+6SSOE3R3QpeFabHXdbX8re4yOgcQrQohpO0r9
0rmK72NYFsrFCXV1KtHuOlia7UuoBvl7TDqx63NJ3UtKT7hXwgHgNMzN81jve0kA
ogD083nlU8cmzXK/jp4TLyLHq8G+8G8Uj1L3ENWmmyC7NCGIiu/WVRnGcSwE4075
m/tMesy7c08P
-----END CERTIFICATE-----
Generated at Fri Feb 21 12:56:31 2025 by rpki-client