Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W0lMbhb0nQi-dhyowOqnEihy-oI.cer
File: W0lMbhb0nQi-dhyowOqnEihy-oI.cer (raw, json)
Hash identifier: 3ir7yftgNEZThsorlChUzL49m5ubHyfOj8ZM9hn2RXY=
Subject key identifier: 5B:49:4C:6E:16:F4:9D:08:BE:76:1C:A8:C0:EA:A7:12:28:72:FA:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D9D91213469B46EC18A5E162455E8B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/W0lMbhb0nQi-dhyowOqnEihy-oI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:58 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 43706
IP: 79.170.0.0/21
IP: 185.123.20.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:d9:12:13:46:9b:46:ec:18:a5:e1:62:45:5e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b494c6e16f49d08be761ca8c0eaa7122872fa82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:82:22:dc:ff:70:08:ea:ae:29:8a:d7:ff:a7:
4d:90:74:c0:99:f6:c3:18:85:e9:8e:3e:68:82:c6:
08:13:e4:4b:96:ac:e9:58:75:04:43:e4:b6:cd:d4:
e0:3d:97:b8:eb:9e:59:5e:5e:43:ae:d8:bb:29:ac:
ba:7b:c6:c1:8d:8c:a8:d0:f4:3e:b4:c9:01:c0:71:
b5:c4:52:fe:40:f2:75:be:44:ab:5b:1b:c9:39:96:
f5:15:fd:07:c8:c6:ad:f8:f9:f8:5f:e3:94:95:ea:
28:0c:98:c3:73:44:67:71:12:c9:18:71:27:05:b8:
bf:3c:fb:fc:50:2e:8a:68:e1:9a:29:b0:fe:9f:31:
96:3a:e3:7e:20:81:d9:49:60:f8:37:57:7e:46:ad:
bc:4b:9e:3c:c9:ca:e1:38:cd:90:25:bf:49:14:4c:
13:c6:5b:40:df:a7:fe:09:aa:87:c6:2c:7e:ae:6b:
44:68:b0:a1:16:b3:4c:f8:fd:15:26:72:ba:46:d8:
99:09:98:30:78:58:c4:1f:0c:37:50:c4:0f:22:2c:
26:cd:91:fa:dc:51:ad:22:8b:90:87:b1:3a:e5:9b:
f3:17:77:eb:3b:74:ab:c8:e8:79:1b:fb:25:27:63:
ff:ed:a9:b3:69:67:90:cf:4d:7d:6f:14:ee:fe:f4:
95:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:49:4C:6E:16:F4:9D:08:BE:76:1C:A8:C0:EA:A7:12:28:72:FA:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/92bcf4-d0f2-4f9e-874d-c2c6f6a4097f/1/W0lMbhb0nQi-dhyowOqnEihy-oI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.170.0.0/21
185.123.20.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43706
Signature Algorithm: sha256WithRSAEncryption
74:0b:e4:24:87:a3:bb:5d:72:00:50:6e:a9:ff:4e:5d:22:63:
9c:f9:90:3c:3a:64:f1:83:c1:23:23:0e:56:82:8e:b2:7f:da:
7d:2d:3c:ac:fd:6d:81:e5:ca:99:01:16:78:2e:42:d9:3e:80:
7a:97:9c:31:f5:26:1d:30:8b:a1:73:ab:91:3e:33:21:12:f1:
17:06:02:0a:76:e1:ac:72:66:e7:8f:3f:2b:50:57:b9:f9:3d:
65:68:a8:02:e8:7d:ef:8b:ea:13:ff:cf:b6:32:ea:d0:a4:0d:
93:0a:b5:b6:bf:3b:21:29:24:37:54:db:53:f7:b0:d4:6e:ec:
d4:60:c2:f9:fc:6b:e1:62:f8:a3:23:d8:f4:81:3d:16:a7:9a:
c5:3b:d1:fb:78:3c:d1:5c:34:6f:b0:86:2b:99:c2:89:ee:aa:
a2:a4:db:be:88:be:2b:5d:68:45:83:68:71:a8:b5:c9:89:9b:
d5:da:9e:d0:ed:fe:42:45:ca:40:cb:5f:33:69:93:8e:d8:31:
e7:8b:2b:54:e4:7e:65:53:1b:0c:11:17:90:61:be:2f:83:47:
dc:2d:6d:6a:c2:62:4e:aa:97:75:0b:8f:f3:be:13:a5:06:c0:
3a:42:50:1b:4e:6b:df:0a:80:e2:7a:08:de:35:af:0b:9e:54:
f3:4e:38:d6
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:23:28 2025 by rpki-client