Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SU14c0FlEKL7I0bvNCKAFVUicTs.cer
File: SU14c0FlEKL7I0bvNCKAFVUicTs.cer (raw, json)
Hash identifier: ehd8AlqRVzQPv0Cx9M9BwC0nhSVCTznLu3YJKw3/n0k=
Subject key identifier: 49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FE337B30EEAA53A98ADFA36D83665
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:22 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 29141
IP: 5.45.176.0/21
IP: 31.14.46.0/23
IP: 31.170.104.0/21
IP: 80.83.112.0/20
IP: 130.255.72.0/21
IP: 130.255.184.0/21
IP: 185.13.148.0/22
IP: 185.45.112.0/22
IP: 195.68.246.0/23
IP: 195.128.160.0/23
IP: 2a02:e00::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e3:37:b3:0e:ea:a5:3a:98:ad:fa:36:d8:36:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=494d7873416510a2fb2346ef342280155522713b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:10:47:54:e4:a0:ea:f4:84:3c:b0:11:2c:6d:
00:18:88:85:9b:11:8f:51:18:1b:14:bf:3e:a7:bc:
8d:1f:06:07:a4:ba:2d:d9:4d:13:65:d6:09:db:c6:
6c:17:0a:f0:68:60:40:4d:2b:b6:e9:46:76:7a:81:
11:9d:19:99:ce:65:2b:dd:05:ac:09:ff:9d:bc:7c:
68:0e:1b:69:b6:fb:42:c1:c9:af:50:24:1f:43:c2:
1a:58:54:23:e8:80:3b:6f:bf:da:65:29:ea:23:03:
f8:36:67:9c:0d:49:88:58:90:92:8f:1d:43:59:32:
83:54:72:f9:82:06:ae:4e:5e:47:42:c2:d3:5b:c1:
b8:24:59:00:1a:0a:2a:f4:f6:93:95:6b:54:7b:75:
ed:6e:de:2f:74:da:a3:23:ab:94:85:b9:46:3a:53:
2a:bf:4c:1d:c4:6a:b1:82:28:23:9a:d4:8b:7f:f4:
ff:29:28:ba:80:a4:7f:46:5f:7f:d6:9b:c3:80:3a:
29:af:ba:b0:2c:01:8b:3b:d3:ec:c3:54:e9:54:27:
87:91:d3:ea:30:09:41:3a:c1:4c:68:cd:2f:e9:b0:
c4:95:b1:98:fa:ac:37:1a:18:77:36:15:44:ad:c6:
08:23:08:7f:eb:03:5f:14:92:3d:d0:04:b9:89:83:
00:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:4D:78:73:41:65:10:A2:FB:23:46:EF:34:22:80:15:55:22:71:3B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/28f7a6-e1ba-4978-9122-e18e7b2ac536/1/SU14c0FlEKL7I0bvNCKAFVUicTs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.45.176.0/21
31.14.46.0/23
31.170.104.0/21
80.83.112.0/20
130.255.72.0/21
130.255.184.0/21
185.13.148.0/22
185.45.112.0/22
195.68.246.0/23
195.128.160.0/23
IPv6:
2a02:e00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29141
Signature Algorithm: sha256WithRSAEncryption
67:11:82:59:88:6d:ba:17:42:f1:77:07:7e:9f:b4:a2:d7:1f:
0a:01:95:26:f7:68:c9:38:31:4d:50:11:5c:5c:a8:d0:2a:28:
5a:34:60:3a:44:6a:04:a0:e6:31:b6:61:88:6a:14:e4:8b:c6:
42:69:ed:af:7a:d1:3d:ea:05:e2:4f:ab:9c:3f:80:28:d7:34:
45:76:c5:2a:fe:b4:22:75:0d:6d:92:ca:06:5e:9e:d8:8b:7d:
0d:14:86:a1:40:43:0c:46:3b:94:b9:ec:62:4b:58:df:84:54:
57:fe:19:8b:f6:d3:6b:f8:05:91:07:1b:4e:a3:fe:0f:6d:c9:
49:ae:e1:cf:dc:aa:29:8b:4e:88:8c:81:8d:78:7a:37:93:40:
41:ef:5f:de:a1:94:f6:62:a5:3c:34:8c:27:cb:d4:ce:68:80:
c6:b6:61:64:c5:b5:03:44:fe:d6:08:1a:b6:cd:da:25:20:0e:
fc:fa:2c:bd:21:77:cb:33:3b:06:f3:d1:91:e9:17:e0:15:d8:
10:40:15:fa:e7:d0:e5:f2:8e:f1:8e:12:61:4a:65:e1:54:b8:
e2:6d:bc:c1:ef:0b:7f:9e:c3:31:1e:f6:d5:e6:56:b7:34:c7:
48:8a:e9:66:aa:61:01:8c:e1:cb:74:6f:70:d5:c4:d2:36:22:
41:14:a6:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 07:09:27 2025 by rpki-client