Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YDJcIdL6_nQzmNweVXRDMoARBGk.cer
File: YDJcIdL6_nQzmNweVXRDMoARBGk.cer (raw, json)
Hash identifier: j9r9iq1Z2+Xi7W+rjTkIePELgv4blwwUM8MTal2Xh/g=
Subject key identifier: 60:32:5C:21:D2:FA:FE:74:33:98:DC:1E:55:74:43:32:80:11:04:69
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D98582BF2E62AFA9167DECBF59796F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/YDJcIdL6_nQzmNweVXRDMoARBGk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 195.10.217.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:85:82:bf:2e:62:af:a9:16:7d:ec:bf:59:79:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60325c21d2fafe743398dc1e5574433280110469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0e:be:1f:0d:ff:5d:b5:99:9c:7b:1c:34:05:
05:b8:f1:3b:20:a2:f7:e0:ce:7c:fe:07:49:f1:74:
6a:9e:09:cc:0e:ca:fd:7c:ea:93:5d:d3:40:88:1d:
71:92:2b:4e:7d:3c:a1:cf:c0:ad:cc:df:9a:18:c8:
e8:cc:10:d1:24:e7:f4:0e:94:09:a6:8d:35:7c:a7:
6f:2c:14:15:28:a6:72:77:30:95:9e:1a:35:d6:ba:
64:a4:b1:ad:7b:7c:f8:ed:98:c0:9a:9a:4d:50:a0:
63:da:ce:15:61:d1:4e:f8:d0:31:f6:99:82:10:47:
35:e2:02:37:57:cf:68:71:26:b1:67:c0:f5:cb:7c:
93:1c:53:28:7c:81:63:64:4b:5f:95:84:92:d4:29:
36:50:59:04:58:fb:c7:c0:3e:24:b4:20:b7:bc:33:
c6:0a:2e:64:81:ad:ef:9d:da:fa:d3:bd:17:61:31:
80:96:ad:02:a2:f5:d8:e6:e1:d5:ed:f6:43:3a:0d:
b1:e8:45:cc:46:96:47:d9:07:db:38:e0:d5:50:8d:
f8:f6:2b:d6:9e:3d:7b:aa:d5:24:0c:ef:f9:6e:81:
e4:ae:a3:d8:d9:8f:b4:68:66:c8:ca:01:3a:0c:b7:
63:70:e7:67:7c:91:2c:28:e7:90:de:e2:40:ee:1d:
a9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:32:5C:21:D2:FA:FE:74:33:98:DC:1E:55:74:43:32:80:11:04:69
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f2770b-da19-4790-a494-c58e95cd4277/1/YDJcIdL6_nQzmNweVXRDMoARBGk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.10.217.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:72:42:e8:00:90:26:a8:bc:81:53:d1:98:e7:25:05:e2:f1:
90:df:9f:17:21:9b:6c:0c:b3:3f:05:98:56:b4:8d:80:5f:40:
2e:b9:67:42:be:e5:0a:5f:b4:2a:7a:74:4b:b8:ec:09:5c:c3:
99:f6:e3:70:0e:be:58:62:23:5d:bb:42:32:5b:0b:8c:7c:20:
94:b7:f5:30:91:c7:b2:10:94:9a:c9:5f:11:28:16:2a:e4:88:
f9:05:95:a0:a3:1f:7b:9c:03:c1:a6:b4:58:17:02:53:a8:22:
df:48:f0:1b:88:2f:bb:24:59:e7:ae:b0:9d:53:36:f6:06:ea:
6f:47:40:2d:d6:84:2b:39:45:a6:4a:77:ed:f8:4e:ae:b0:bc:
b3:83:e8:27:8d:1b:94:f1:b3:35:cc:08:60:51:e6:d5:78:af:
00:28:87:0a:c3:79:05:f6:e3:99:60:f4:1c:d6:83:6c:0e:43:
4d:14:a4:1e:e0:3d:49:d3:da:9c:25:98:1a:33:a0:a6:8b:79:
c5:c6:7d:59:85:d9:05:c1:36:3f:a1:d5:a4:b0:3c:a3:9a:61:
19:a0:43:f1:86:45:9e:f4:d8:8c:d1:97:d3:6a:26:35:39:ca:
28:1a:41:e9:5f:7f:78:ff:4b:91:f3:3a:67:89:34:06:9a:0d:
cb:65:c0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:57:06 2025 by rpki-client