Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RfrUZJQD8kUC6cP6QBA5Vbw7WSQ.cer
File: RfrUZJQD8kUC6cP6QBA5Vbw7WSQ.cer (raw, json)
Hash identifier: 1CHuoEFXrgrOkEmsgsrTiHERP6IDDU3xBc1uP+2yhAA=
Subject key identifier: 45:FA:D4:64:94:03:F2:45:02:E9:C3:FA:40:10:39:55:BC:3B:59:24
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FA22D274F238988052A18B8ED9D65BF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.sn-p.io/repo/sn-p-io/1/45FAD4649403F24502E9C3FA40103955BC3B5924.mft
caRepository: rsync://rpki.sn-p.io/repo/sn-p-io/1/
Notify URL: https://rpki.sn-p.io/rrdp/notification.xml
Certificate not before: Wed 01 Jan 2025 02:11:49 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200975
AS: 205848
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:a2:2d:27:4f:23:89:88:05:2a:18:b8:ed:9d:65:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:11:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=45fad4649403f24502e9c3fa40103955bc3b5924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:db:0b:88:81:e6:36:dc:67:a3:51:c7:5a:f8:
d5:44:7f:bc:31:40:5b:38:a0:52:71:6b:49:d1:82:
88:57:d1:af:86:33:2d:18:b1:12:73:81:4a:f0:3d:
13:9a:f3:ea:99:04:6d:54:e8:5d:22:24:a7:b5:12:
ea:6c:fd:a8:d5:f1:4a:bd:b0:0b:39:89:19:72:49:
93:11:c7:3b:6f:45:05:fe:c5:a4:99:8b:da:30:54:
c8:46:f0:2a:70:02:15:ba:01:6c:22:c3:35:7c:95:
bd:ed:98:9e:f0:45:75:c2:f8:d6:0b:a6:b8:dd:73:
79:1b:81:bc:f7:b2:12:7a:30:53:b4:02:5b:d5:ac:
ce:a0:6c:89:54:83:ac:47:39:1c:a0:4f:3a:0b:25:
ce:d5:84:17:4e:3f:a2:0d:98:74:0a:ab:6f:92:47:
d2:77:4f:b2:86:01:98:23:a5:6c:62:3c:ad:c2:24:
51:fd:6e:e4:81:3a:37:83:c8:46:20:2c:41:3a:c5:
a3:a2:ea:b5:fd:b3:85:0b:0b:c6:6b:7b:d3:06:f7:
cd:3c:d1:31:1b:09:3f:3f:48:4f:ee:2e:4c:e8:4b:
be:b3:37:d6:0f:bf:4f:70:7b:6b:c4:5e:e7:0c:38:
06:bb:c2:1e:e2:4d:59:6b:2f:2d:c1:c4:8b:0e:54:
40:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:FA:D4:64:94:03:F2:45:02:E9:C3:FA:40:10:39:55:BC:3B:59:24
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.sn-p.io/repo/sn-p-io/1/
RPKI Manifest - URI:rsync://rpki.sn-p.io/repo/sn-p-io/1/45FAD4649403F24502E9C3FA40103955BC3B5924.mft
RPKI Notify - URI:https://rpki.sn-p.io/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200975
205848
Signature Algorithm: sha256WithRSAEncryption
92:41:55:8f:2f:55:5d:3e:fd:16:0b:a4:03:8c:a6:04:65:2a:
90:29:82:1f:2d:2b:4c:23:ed:67:b0:1f:d1:0d:67:65:95:52:
b9:fc:a2:47:d0:64:19:bd:64:f8:86:ab:23:c4:47:b6:9a:47:
b8:43:31:4a:18:e1:94:f0:b6:02:5f:63:72:62:b4:c2:9a:08:
2b:50:17:0b:44:b9:94:18:a5:24:da:9c:4a:d5:5f:00:cb:50:
38:15:41:b0:f6:0e:2e:8c:39:98:0e:a0:42:3d:04:11:68:e5:
93:66:7a:de:24:ef:5f:e7:94:e9:87:93:e9:a1:a1:d7:d2:76:
54:db:27:8a:18:23:f1:0e:90:42:88:af:f6:25:12:8c:cb:35:
3e:bf:47:d0:5a:6c:4b:a2:7d:7e:92:08:62:05:64:30:9f:2f:
87:71:a3:44:9e:d2:46:78:0c:c7:48:49:65:89:f8:9d:47:15:
6f:18:4d:e1:28:5f:64:be:51:0c:01:99:c0:46:fb:65:4a:c7:
7a:1e:1c:1c:76:70:9f:2a:22:cb:b2:c0:42:c6:c6:e4:6a:cb:
ce:15:9e:69:72:61:8d:78:7e:bf:6f:8d:4d:49:d5:5e:f9:b0:
5e:eb:e1:86:3c:e7:ca:6c:f6:3c:49:c1:d7:71:86:23:bf:8d:
2e:40:a5:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 07:25:23 2025 by rpki-client