Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VG8F2b4omRw-YZozFJWA5QzIbMk.cer
File: VG8F2b4omRw-YZozFJWA5QzIbMk.cer (raw, json)
Hash identifier: Jhe8lj30641KShEhCsuk/hLX+m7vncYRRwehhzCQFH8=
Subject key identifier: 54:6F:05:D9:BE:28:99:1C:3E:61:9A:33:14:95:80:E5:0C:C8:6C:C9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019300A3BA9AC6167B23302FBD059C6F3AF0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/VG8F2b4omRw-YZozFJWA5QzIbMk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 06 Nov 2024 08:42:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 2a04:7900::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:00:a3:ba:9a:c6:16:7b:23:30:2f:bd:05:9c:6f:3a:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 6 08:42:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=546f05d9be28991c3e619a33149580e50cc86cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4f:c5:25:9f:a8:2d:b6:4d:e6:c3:d8:87:98:
8e:94:cc:72:8b:11:2c:7a:a8:ef:04:ec:06:15:e5:
92:e0:ab:80:0c:b3:a1:c0:32:f0:67:e2:49:55:fe:
0b:c0:39:a9:cb:97:5c:2c:af:9c:a2:d8:ae:cd:ae:
a8:9d:65:db:8b:d4:fa:74:b2:da:33:b2:2c:ad:6f:
04:92:15:26:fb:1a:6f:e6:ea:94:f4:ee:44:40:22:
6a:1a:2e:45:1c:bf:a3:16:3a:ab:51:6a:98:53:6f:
b0:a1:7e:e4:9c:96:a7:33:97:be:16:9f:6e:5a:20:
3d:8c:22:36:92:c0:8a:dd:e5:58:92:7e:99:f7:26:
7d:f6:df:4e:e6:cc:4e:53:ca:e9:50:7b:25:14:7c:
c8:3b:b6:30:10:1d:ae:c8:be:7c:5a:70:62:72:e6:
d7:6e:64:6f:23:6e:04:eb:53:bc:fb:45:3f:9f:4d:
08:2c:4c:e5:d5:4a:93:55:8d:ce:6c:f6:5f:97:43:
51:56:10:80:60:26:1e:07:f6:05:4b:83:04:e3:af:
fd:ad:07:96:23:11:a4:74:10:bb:b7:6f:4c:dd:1d:
33:84:d2:3e:97:61:33:5d:91:ec:42:90:3c:39:35:
ad:41:37:05:7b:06:31:e8:59:44:dc:50:ee:ad:1a:
b3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:6F:05:D9:BE:28:99:1C:3E:61:9A:33:14:95:80:E5:0C:C8:6C:C9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8a0dc4-e402-4118-93a2-a3d8257803e5/1/VG8F2b4omRw-YZozFJWA5QzIbMk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:7900::/29
Signature Algorithm: sha256WithRSAEncryption
93:54:34:99:80:f1:fc:df:2a:ce:49:2c:12:92:83:f9:15:df:
dd:08:48:5b:ac:ce:9f:f8:a6:53:4b:21:ae:31:14:79:ce:3e:
73:16:93:c6:02:60:41:8a:5d:12:52:93:44:e2:66:6b:55:0d:
1b:3e:93:40:02:8c:fd:18:7e:a5:f5:4c:d3:fe:06:77:c7:00:
d0:cd:42:8a:8b:65:48:d1:a8:06:13:c2:1b:25:7c:f4:90:cf:
53:ad:12:22:63:2d:8f:68:54:d0:fe:46:36:68:19:96:e0:6d:
2a:f2:a7:c1:f9:69:68:2b:7a:55:40:15:7e:35:d4:40:3e:0e:
8e:ea:9f:ed:b8:c5:23:e0:d5:3b:48:25:9c:31:0a:da:03:91:
33:03:b8:c6:3f:02:8f:30:42:1b:d2:66:7e:18:bb:1b:83:55:
b1:b4:1e:11:70:4b:2e:cd:e2:ba:0a:fe:d3:aa:2a:4a:42:b4:
b5:07:08:c5:50:cc:32:0e:ba:f2:0c:59:a3:58:bf:45:06:fd:
10:82:cc:9b:8a:14:15:bb:41:d9:ee:73:fb:c5:d5:66:ff:1e:
a7:9e:fb:88:1f:a7:97:85:a5:86:ff:af:7f:d2:4a:71:b5:b7:
60:d5:04:74:d9:1a:f7:d5:cc:36:57:6d:bb:66:18:e6:7b:95:
e9:58:9e:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:02:00 2025 by rpki-client