Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JwKaNvwMyi4KjQRfAi38gxpRcwg.cer
File: JwKaNvwMyi4KjQRfAi38gxpRcwg.cer (raw, json)
Hash identifier: vwGAXewNEhtGtFh5XVn557gmzVunivcIantAuw4KjRY=
Subject key identifier: 27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266B73EDB9CC25411E4F7A996CE73856
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:49:23 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 35432
IP: 46.251.96.0/19
IP: 64.59.208.0/20
IP: 65.18.208.0/20
IP: 66.205.64.0/19
IP: 69.6.0.0/19
IP: 69.94.112.0/20
IP: 77.83.248.0/22
IP: 80.244.16.0/20
IP: 85.132.224.0/19
IP: 91.184.192.0/19
IP: 109.110.224.0/19
IP: 139.138.192.0/19
IP: 164.215.0.0/19
IP: 185.7.156.0/22
IP: 185.42.32.0/22
IP: 185.162.16.0/22
IP: 194.64.144.0/22
IP: 194.233.16.0/22
IP: 194.233.24.0/22
IP: 194.233.60.0/22
IP: 195.179.96.0/20
IP: 212.32.16.0/21
IP: 212.32.56.0/21
IP: 212.50.96.0/19
IP: 213.133.80.0/20
IP: 213.140.192.0/19
IP: 216.241.128.0/19
IP: 2a01:5120::/32
IP: 2a02:540::/32
IP: 2a07:cac0::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:73:ed:b9:cc:25:41:1e:4f:7a:99:6c:e7:38:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:49:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27029a36fc0cca2e0a8d045f022dfc831a517308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e6:c2:7f:65:3a:10:8b:5a:3e:7e:6a:8c:ba:
43:4a:e2:f2:9e:9b:08:9b:9f:27:2f:92:52:d7:db:
ea:f2:eb:dd:6d:94:3e:67:37:e8:15:9f:c3:52:44:
1f:b5:1a:2b:7e:4d:5d:f9:ff:00:93:fd:8e:b2:52:
08:e0:f8:e3:28:7e:0b:85:c4:77:a7:a0:b1:9a:de:
e1:d0:b9:73:6a:97:0d:57:f4:56:1e:4e:8d:11:0c:
d1:10:16:df:f0:90:a8:b8:e8:43:86:ee:a7:a8:49:
73:1c:55:96:59:ea:68:ed:d3:c6:36:f3:8a:4e:88:
66:03:f0:47:f0:ca:61:fa:59:87:43:87:2b:07:f4:
32:47:b3:48:69:e5:6f:70:09:2f:6a:af:be:d2:cc:
34:d8:37:d8:80:80:23:f1:ce:a8:4c:f4:5b:37:4f:
92:fb:38:d8:a7:95:ef:81:38:34:d2:b4:46:aa:13:
9a:4f:f8:32:e3:00:7f:22:63:eb:2c:67:e0:ff:e5:
e6:c7:1d:44:cf:0c:dc:63:d3:11:46:0d:29:0d:35:
e2:39:c1:4b:71:6e:fe:fe:07:c2:c6:0f:97:e2:2b:
29:a0:ca:d1:56:9f:72:a4:ba:df:d2:1a:88:1f:ce:
6b:d2:b1:f5:17:99:7c:03:ae:75:38:97:87:63:8b:
d7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:02:9A:36:FC:0C:CA:2E:0A:8D:04:5F:02:2D:FC:83:1A:51:73:08
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/53bb23-dfa8-4792-b317-50d0a5323641/1/JwKaNvwMyi4KjQRfAi38gxpRcwg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.251.96.0/19
64.59.208.0/20
65.18.208.0/20
66.205.64.0/19
69.6.0.0/19
69.94.112.0/20
77.83.248.0/22
80.244.16.0/20
85.132.224.0/19
91.184.192.0/19
109.110.224.0/19
139.138.192.0/19
164.215.0.0/19
185.7.156.0/22
185.42.32.0/22
185.162.16.0/22
194.64.144.0/22
194.233.16.0/22
194.233.24.0/22
194.233.60.0/22
195.179.96.0/20
212.32.16.0/21
212.32.56.0/21
212.50.96.0/19
213.133.80.0/20
213.140.192.0/19
216.241.128.0/19
IPv6:
2a01:5120::/32
2a02:540::/32
2a07:cac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35432
Signature Algorithm: sha256WithRSAEncryption
43:f9:03:3a:df:0e:3f:4c:a5:bb:5b:91:47:aa:02:f4:7a:b5:
ee:35:74:12:63:57:4c:b3:e2:7a:25:ce:fe:ad:38:cb:79:4f:
f6:3b:b9:ac:f3:4a:54:ac:17:ca:e5:6e:de:6b:30:d3:ba:f2:
68:e3:a9:a7:4a:d3:54:3a:e7:af:71:59:17:10:b5:cf:58:31:
63:11:a7:56:6b:20:7b:79:be:3c:b0:8e:07:fc:7d:ac:7e:8d:
57:7d:a0:35:b9:77:6d:fa:aa:f7:cf:d2:77:23:4e:a8:af:12:
71:ae:1b:8e:5a:3f:09:06:33:fb:29:1b:d6:43:f5:b8:b8:cc:
c2:14:b9:57:c4:a6:49:5f:6c:f6:b7:60:38:09:83:ba:45:68:
fb:4c:cf:4a:0f:32:89:a8:70:e4:62:37:20:87:96:81:11:be:
c7:8e:fb:60:4a:c3:86:eb:50:18:65:b0:0e:d9:91:7b:b9:c3:
8e:09:ef:df:64:cf:27:32:83:2c:6a:92:94:ee:3f:ca:bf:35:
a5:56:74:3b:1d:9e:8a:c6:7a:75:89:22:24:d9:ab:a7:54:b4:
36:cd:66:8b:af:85:f9:e8:9f:85:7e:5a:96:1a:26:19:69:90:
fd:46:c8:46:9f:9a:98:13:bd:0c:b2:d2:8b:f6:f2:c2:cf:5e:
92:b0:95:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:35:59 2025 by rpki-client