Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V-K4ajPJ-XIUU22MopGdfzw4AM4.cer
File: V-K4ajPJ-XIUU22MopGdfzw4AM4.cer (raw, json)
Hash identifier: Z5otBuj8RNz72lPJ7KevaChTGM9CAHGsze59YXtfPgc=
Subject key identifier: 57:E2:B8:6A:33:C9:F9:72:14:53:6D:8C:A2:91:9D:7F:3C:38:00:CE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942368D29F1F232481F9BD273A3B949AE0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/6149a5-c8de-4c61-beb7-2201203a0bab/1/V-K4ajPJ-XIUU22MopGdfzw4AM4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/6149a5-c8de-4c61-beb7-2201203a0bab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:47:39 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.42.72.0/22
IP: 2a01:5be0::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:d2:9f:1f:23:24:81:f9:bd:27:3a:3b:94:9a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57e2b86a33c9f97214536d8ca2919d7f3c3800ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:33:b6:61:c0:8c:66:ee:3a:53:3b:59:d1:2a:
05:99:d3:52:8e:73:29:35:97:d6:a1:64:f0:e0:85:
97:0d:6c:87:b3:87:17:66:49:fc:cd:e5:90:58:24:
0f:f1:23:70:89:81:bb:af:b7:ed:f9:65:9e:9c:7e:
59:a3:ea:54:3d:e4:94:67:a4:50:70:27:cc:89:0c:
b3:37:a2:43:16:6d:75:99:66:49:8b:1c:23:aa:ad:
08:2e:c6:40:17:ff:e0:8e:e3:56:2c:41:22:31:83:
fb:01:3e:b9:86:0c:f5:33:80:61:c8:b1:58:bc:1b:
4a:b5:65:ab:5e:85:7f:24:eb:5c:38:10:ff:4b:b6:
43:45:c0:57:23:0a:f3:c5:85:af:68:be:9d:21:67:
cc:fe:86:76:ae:ee:cd:3b:f4:ff:09:c5:5a:fd:12:
74:49:94:10:ff:38:b6:63:03:03:0a:21:50:76:3d:
02:08:bc:7c:b3:7f:f3:2b:83:f0:d9:9c:eb:e0:68:
86:99:1b:72:ca:6e:12:52:37:7c:65:15:25:89:67:
7c:02:80:ea:8c:c7:53:cf:0c:b4:f2:8c:04:78:50:
58:72:41:8c:8f:ba:f5:53:df:27:02:dd:c8:e1:e3:
c0:87:2d:64:86:40:77:1e:e4:76:9f:4b:62:cb:9f:
b1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E2:B8:6A:33:C9:F9:72:14:53:6D:8C:A2:91:9D:7F:3C:38:00:CE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/6149a5-c8de-4c61-beb7-2201203a0bab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/6149a5-c8de-4c61-beb7-2201203a0bab/1/V-K4ajPJ-XIUU22MopGdfzw4AM4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.72.0/22
IPv6:
2a01:5be0::/32
Signature Algorithm: sha256WithRSAEncryption
32:63:1e:40:c8:a6:c5:61:d0:2e:37:85:17:23:21:57:af:93:
c3:e6:6a:d7:16:54:26:cb:37:a8:88:c8:ab:7d:b4:7a:5b:6b:
c7:f8:61:c0:46:7a:cc:4a:ee:3c:37:bf:7a:a5:7e:d1:48:cb:
f9:82:b0:f6:8c:ee:0a:6f:96:81:7c:bc:3b:92:1a:1c:85:a1:
93:1f:ba:62:ae:8b:f6:38:dc:0d:40:cb:e5:09:63:7b:a0:c4:
bf:8a:14:fb:de:6e:47:ae:e7:3c:3d:8b:c2:7c:87:ee:d6:e9:
47:cc:c3:a8:62:ff:08:63:b1:3a:8b:44:26:02:82:88:da:95:
c2:9a:67:b4:0f:f4:2f:ba:29:9f:0f:b4:fc:ea:95:69:b2:07:
93:38:0e:c9:5f:09:99:bf:70:15:72:2c:06:7e:a6:32:bf:b7:
b0:e9:e5:62:6d:e1:ed:3d:8c:63:bc:20:c7:65:f9:0d:e6:47:
ff:0d:3e:a6:05:37:70:22:b3:52:67:12:26:4f:9a:a1:44:58:
b4:ee:e7:1d:78:9f:15:2a:a0:92:35:29:91:77:38:c6:16:03:
23:2a:34:c1:dc:c2:1b:95:4c:8f:a6:d2:28:1d:b5:5a:24:89:
69:1a:ae:3b:2f:e4:7a:8b:9d:1f:e4:ad:89:41:05:b2:97:5e:
22:a9:a5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:14:59 2025 by rpki-client