Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer
File: V5mzJ91s2hrTe8HCJKRUsC3qKvw.cer (raw, json)
Hash identifier: uN6tkL7CeWdyP0n/apTVb9/lRXEvWXe+jNn+WMfzAdk=
Subject key identifier: 57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942521E1DCCC4500EE9CF716806CF0DF66
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 87.251.24.0/21
IP: 91.102.180.0/22
IP: 145.224.64.0/18
IP: 162.43.192.0/22
IP: 169.155.224.0/19
IP: 176.116.124.0/23
IP: 188.92.248.0/21
IP: 188.95.144.0/23
IP: 209.198.128.0/19
IP: 212.105.128.0/19
IP: 216.128.0.0/19
IP: 217.65.136.0/21
IP: 217.142.16.0/20
IP: 2a0d:3340::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:e1:dc:cc:45:00:ee:9c:f7:16:80:6c:f0:df:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5799b327dd6cda1ad37bc1c224a454b02dea2afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fa:27:b4:a5:ef:e5:a8:73:05:6f:dc:93:a8:
d2:a8:d5:52:0c:ae:38:86:4a:52:41:17:63:7e:e5:
14:76:84:84:5d:ad:ac:34:0b:c2:ee:73:81:80:bb:
df:1e:34:87:32:d2:2e:ce:ec:a6:36:e4:eb:2d:0e:
91:f3:d8:8e:04:23:de:84:1e:94:ce:78:22:32:5f:
8d:dc:a8:a5:9c:8d:55:85:34:79:9f:3b:32:1a:0d:
7d:8c:93:11:d1:72:e2:c3:54:64:f2:31:17:28:fc:
39:9a:cc:e6:bf:0a:05:42:eb:06:dd:c3:14:2e:0f:
5b:ff:6a:ba:80:33:8a:87:9d:19:b8:fc:c7:e3:64:
d8:1c:74:c0:a0:61:7a:b7:7d:10:80:52:f9:73:ab:
08:d4:f3:64:7d:09:13:04:7d:bc:1c:90:a4:49:6b:
13:ab:96:ae:48:c3:13:38:9e:fa:c4:ac:85:af:75:
7c:88:96:84:b0:6e:20:31:84:b6:8b:6b:0c:14:af:
26:cd:68:d7:8e:57:f1:aa:6c:e4:80:06:26:50:43:
49:8d:bc:b0:6d:a9:34:49:33:13:aa:43:c1:2a:ea:
e9:c7:3b:9b:74:fc:14:e2:da:dc:83:73:73:7a:c9:
0c:e7:12:c5:9b:9d:36:d7:f7:88:68:bc:e4:93:97:
28:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:99:B3:27:DD:6C:DA:1A:D3:7B:C1:C2:24:A4:54:B0:2D:EA:2A:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8c2ae9-0a77-49eb-ad3a-ea150e7638ce/1/V5mzJ91s2hrTe8HCJKRUsC3qKvw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.24.0/21
91.102.180.0/22
145.224.64.0/18
162.43.192.0/22
169.155.224.0/19
176.116.124.0/23
188.92.248.0/21
188.95.144.0/23
209.198.128.0/19
212.105.128.0/19
216.128.0.0/19
217.65.136.0/21
217.142.16.0/20
IPv6:
2a0d:3340::/29
Signature Algorithm: sha256WithRSAEncryption
02:94:ed:44:65:59:bb:2c:5a:d2:ef:82:77:86:d6:b1:94:f9:
b1:f5:0c:dc:f1:65:10:8f:fb:d7:5b:46:41:ff:d4:d9:b2:8f:
76:6b:13:e9:ad:c2:44:4e:97:49:b9:32:b4:88:7e:5b:c8:f0:
5e:da:c7:29:b4:92:94:de:19:ef:a2:7d:e2:2f:d4:75:29:20:
b9:4a:18:07:4f:78:f0:40:b6:27:91:80:60:27:3e:5b:72:93:
eb:6c:45:18:fc:dd:ea:81:0b:6a:2f:03:c9:b9:e7:68:f5:86:
26:87:d1:8c:42:1e:c3:cd:68:45:5d:5d:12:f7:43:16:c9:5a:
32:61:0a:5e:0b:b1:98:1d:3a:05:04:90:97:4e:89:c1:1f:b3:
7d:9f:0b:f2:97:e8:7d:1d:8b:48:cc:3a:3a:7f:06:59:ee:08:
d0:f9:fe:aa:16:b1:54:b2:24:01:1b:34:80:6b:f9:e2:a6:3a:
5f:59:1e:f4:bc:41:b2:c6:22:e6:23:d7:68:b2:6d:5b:3f:ea:
e4:76:dd:1d:bf:4a:7e:f5:4c:5f:26:07:c6:50:f3:64:f4:7f:
e9:74:c4:66:15:ea:01:0d:bf:cc:d2:93:fd:67:d9:ab:2f:b1:
82:f1:67:77:8a:e5:b5:d2:ee:0e:3e:3b:0e:6d:65:64:5a:b4:
a3:a8:08:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 21:33:24 2025 by rpki-client