Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JkOSPnc-snBJKuzI2hXC5cpXwso.cer
File: JkOSPnc-snBJKuzI2hXC5cpXwso.cer (raw, json)
Hash identifier: bJtGtvhj9gv/sgAhQ/HsHXrubhYKMdPARi2fhg0IpdQ=
Subject key identifier: 26:43:92:3E:77:3E:B2:70:49:2A:EC:C8:DA:15:C2:E5:CA:57:C2:CA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942445A3C8479991A223D9E3D15937C972
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/0631a7-416c-41be-8e45-78c37c0b0d97/1/JkOSPnc-snBJKuzI2hXC5cpXwso.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/0631a7-416c-41be-8e45-78c37c0b0d97/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 208505
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:a3:c8:47:99:91:a2:23:d9:e3:d1:59:37:c9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2643923e773eb270492aecc8da15c2e5ca57c2ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f1:d1:26:4b:d6:f5:b4:60:36:df:0c:dd:fd:
0f:c0:c1:4a:98:c2:2e:98:80:3b:df:9d:bb:04:c7:
67:dc:4a:13:ec:5a:23:2e:38:83:d5:1c:f3:d5:3b:
98:cf:f0:dd:31:60:f5:fe:27:ed:5d:6f:6d:15:bb:
10:11:37:17:7c:0f:d2:95:3f:34:e6:f9:7b:c3:96:
ac:3c:c5:72:08:22:2f:52:a4:1d:fa:f6:c5:37:d7:
ba:5c:44:49:81:8f:90:c3:67:f1:92:53:4c:f4:89:
ba:16:5c:b0:26:d4:93:e1:77:f2:19:10:31:2a:6c:
5e:44:c2:a0:a0:2b:42:98:97:36:12:44:8b:3c:76:
cd:5a:2f:f3:4c:35:cc:c7:e9:51:6c:72:af:94:1f:
2a:29:c2:23:53:12:8d:8f:2e:21:d2:2b:92:42:f1:
1d:d3:c7:61:2d:be:a5:bd:c6:48:51:6e:d2:91:ef:
c4:e9:31:ff:b8:a5:cb:a5:7f:5b:41:30:fd:2c:98:
08:ba:10:d8:34:fe:b7:2f:d7:b2:a8:d5:fe:46:44:
3d:e2:3d:80:a1:23:69:b5:01:c9:32:52:6e:bb:17:
28:d1:34:bc:04:1f:68:69:ec:5b:f5:d6:06:aa:62:
23:50:7c:c7:b6:42:f9:5c:4c:d2:bf:f6:8f:e8:f8:
da:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:43:92:3E:77:3E:B2:70:49:2A:EC:C8:DA:15:C2:E5:CA:57:C2:CA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0631a7-416c-41be-8e45-78c37c0b0d97/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0631a7-416c-41be-8e45-78c37c0b0d97/1/JkOSPnc-snBJKuzI2hXC5cpXwso.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208505
Signature Algorithm: sha256WithRSAEncryption
a7:cd:09:db:fb:b3:53:3e:5b:da:79:66:0e:ba:e9:f0:2a:6c:
aa:5c:67:94:17:ef:3b:10:1d:2b:a9:80:30:3e:08:b4:39:97:
0c:cc:52:18:16:2d:8a:e9:98:08:db:5c:d7:3f:a2:28:65:20:
f0:08:18:bd:a3:c5:a8:fe:33:df:ae:73:33:89:40:26:b2:8a:
9b:7c:c7:74:38:5d:8d:3c:96:b7:7b:5d:85:a0:7d:7b:96:38:
68:c9:1d:c7:c3:de:b5:b8:d0:df:39:60:ff:33:09:33:03:28:
be:63:d8:4a:67:a5:75:80:77:75:62:41:60:a3:56:40:67:50:
42:c7:d9:e0:d0:37:35:ba:62:b7:d2:0f:fd:61:19:4e:32:68:
11:3c:f0:5c:24:d9:55:35:76:0c:4f:b1:a5:59:b7:2c:ce:7c:
3c:de:87:93:35:46:46:71:47:7c:4d:fa:b3:8f:01:50:7f:24:
bd:72:89:2e:9f:58:72:4c:fa:7a:ac:17:b3:da:54:6e:12:5d:
72:f7:06:9d:0c:27:b9:e1:3c:91:c1:35:2c:1d:2d:b2:c4:25:
58:0b:c4:94:a5:ae:b0:d5:f1:0e:c0:ce:fa:6f:85:df:1d:68:
7f:11:c7:c0:37:62:49:4c:76:36:46:e7:6e:c9:11:42:dc:f2:
db:aa:ad:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:12:31 2025 by rpki-client