Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer
File: ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer (raw, json)
Hash identifier: nGSSjS1eFSEstNlR5gG9pP3gBnvVpMRFhOQQzgQudno=
Subject key identifier: 65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194236A3B68D6A4D42A348A9A4BAC4822ED
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:49:12 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.38.160.0/19
IP: 194.35.128.0/19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:3b:68:d6:a4:d4:2a:34:8a:9a:4b:ac:48:22:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=659c356633388e9bd897d000a3f38bc1e546ef4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e5:a4:d8:82:7b:1e:c1:48:22:44:b7:2c:a9:
42:b3:f6:d3:26:b9:c8:f5:dc:34:20:02:cd:e9:10:
5a:a0:47:a6:b6:da:0a:c4:1d:08:db:31:e3:59:05:
ec:5c:01:6b:51:16:3a:81:09:54:7b:fc:45:83:04:
d7:c1:24:b3:c5:c1:80:34:61:cf:2c:99:67:10:b4:
c2:e9:27:31:67:ef:74:56:dd:9f:a0:79:94:79:75:
fc:4a:b5:ab:3e:e5:85:7c:5a:ea:ba:3d:3f:e8:aa:
3d:c0:e5:e0:4f:1d:6a:97:32:7b:ba:7b:62:16:fa:
a1:7f:79:4a:ec:97:8c:ab:91:ee:87:1e:07:92:78:
f1:c2:43:b5:54:9c:be:77:2f:89:89:b9:1a:3b:2f:
7c:c6:b8:aa:2a:f0:7f:11:5c:92:86:8e:f4:a9:db:
9a:16:86:42:bf:b0:b9:56:8d:a8:58:5f:db:ed:13:
5a:97:a0:68:f6:0e:0e:82:77:19:c3:c4:45:dc:f5:
ee:4a:5a:65:96:98:77:f4:a3:47:4f:a8:7d:6b:2a:
28:60:7e:8e:66:97:ff:92:41:ae:47:b7:ab:60:bb:
42:24:ee:20:7c:84:89:68:68:1c:49:a6:06:17:50:
4c:e5:6b:27:6a:1b:b3:d0:f6:03:1f:49:ef:74:c0:
6d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.160.0/19
194.35.128.0/19
Signature Algorithm: sha256WithRSAEncryption
9a:18:37:43:68:42:52:ea:58:b9:8f:59:0d:a6:a5:ae:67:44:
c5:a5:35:9c:0a:72:fd:19:27:48:40:67:c7:bb:1f:60:ec:89:
c4:76:36:36:94:73:36:0d:d7:04:4f:07:f6:47:6c:6e:60:bf:
a4:31:0b:44:a7:35:49:9e:80:9e:86:37:92:8a:f7:bf:9e:cf:
c3:b9:1b:00:f2:28:79:2a:58:08:16:b3:45:69:b2:b5:fc:e3:
cd:70:ec:84:c7:b8:7f:d0:f3:bf:10:ef:6f:2f:ef:dd:b6:35:
cd:63:83:9d:94:71:6c:e0:14:30:9d:35:40:23:45:f4:98:f3:
3e:f2:d9:d3:11:19:17:d3:59:33:e9:b0:ba:0e:1c:db:41:30:
32:40:d7:21:17:eb:be:02:f0:f1:84:8a:32:40:91:ee:dc:7f:
3d:27:a2:56:9c:48:58:e3:ef:e1:68:c2:12:7d:67:1d:91:22:
14:0e:10:79:56:1a:cc:54:4a:f9:02:ff:0a:1e:69:b5:f6:5c:
c7:11:0b:ac:2c:de:56:48:6b:eb:91:8c:02:3b:b4:56:89:6f:
88:79:e2:07:fe:3b:34:e9:d0:11:a8:f2:a1:ee:75:82:09:54:
d1:07:84:5d:1c:b7:8e:25:4a:86:91:3a:41:ed:39:e6:20:dd:
1a:c2:f5:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:56:38 2025 by rpki-client