Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_97EpGpubk-aktC6Lgs6tWWL4b0.cer
File: _97EpGpubk-aktC6Lgs6tWWL4b0.cer (raw, json)
Hash identifier: L7CdteehCTiJ9n2z7vCaxcEC0NV9/umeFn8hL8uoIDs=
Subject key identifier: FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194F517E3856488964488C910231F56F03B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 11 Feb 2025 12:59:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 24669
AS: 34202
AS: 35545
AS: 42902
AS: 43878
AS: 62240
AS: 202791 -- 202792
AS: 206136
AS: 206144
AS: 206822
AS: 206848
AS: 206986
AS: 207019
AS: 207158
IP: 2.56.188.0/22
IP: 5.180.208.0/22
IP: 5.253.112.0/22
IP: 45.86.208.0/22
IP: 45.140.42.0/23
IP: 45.144.112.0/22
IP: 45.149.172.0/22
IP: 45.150.172.0/22
IP: 45.250.24.0/22
IP: 62.106.78.0/24
IP: 62.164.130.0/24
IP: 62.182.96.0/22
IP: 64.238.203.0 -- 64.238.204.255
IP: 77.247.124.0/22
IP: 80.91.222.0/24
IP: 83.229.17.0/24
IP: 83.229.26.0/24
IP: 91.199.118.0/24
IP: 91.238.82.0/24
IP: 91.239.130.0/24
IP: 91.239.157.0/24
IP: 91.246.58.0/24
IP: 92.119.16.0/22
IP: 94.154.156.0/22
IP: 103.103.98.0/23
IP: 103.214.44.0/22
IP: 103.219.20.0/22
IP: 130.185.164.0/23
IP: 144.48.60.0/22
IP: 152.89.204.0/22
IP: 162.120.68.0/22
IP: 178.238.8.0/22
IP: 185.42.220.0/22
IP: 185.81.171.0/24
IP: 185.141.56.0/22
IP: 185.145.200.0/22
IP: 185.149.195.0/24
IP: 185.164.136.0/22
IP: 185.169.232.0/22
IP: 185.174.108.0/22
IP: 185.175.136.0/22
IP: 185.178.230.0/24
IP: 185.193.156.0/22
IP: 185.195.56.0/22
IP: 185.195.104.0/22
IP: 185.198.188.0/22
IP: 185.232.46.0/24
IP: 185.238.28.0/24
IP: 185.245.80.0/22
IP: 188.95.65.0/24
IP: 193.84.51.0/24
IP: 193.107.20.0/24
IP: 193.163.194.0/24
IP: 193.228.193.0/24
IP: 193.228.196.0/24
IP: 193.228.199.0/24
IP: 193.228.206.0/24
IP: 193.239.236.0/23
IP: 194.0.213.0/24
IP: 194.33.44.0/22
IP: 194.35.232.0/22
IP: 194.49.52.0/23
IP: 194.49.66.0/23
IP: 194.79.30.0/24
IP: 200.162.144.0/20
IP: 202.49.186.0/24
IP: 203.24.124.0/24
IP: 209.46.102.0/23
IP: 212.23.215.0/24
IP: 213.255.226.0/24
IP: 213.255.246.0/24
IP: 216.183.125.0/24
IP: 216.245.140.0/24
IP: 217.114.38.0/24
IP: 2a04:92c0::/29
IP: 2a06:bdc0::/29
IP: 2a07:41c0::/29
IP: 2a0a:39c0::/29
IP: 2a0a:54c0::/29
IP: 2a0a:5940::/29
IP: 2a0a:7100::/29
IP: 2a0a:8dc0::/29
IP: 2a0b:1c00::/29
IP: 2a0b:9b00::/29
IP: 2a0b:f300::/29
IP: 2a0c:19c0::/29
IP: 2a0d:5080::/29
IP: 2a0f:93c0::/29
IP: 2a0f:9440::/29
IP: 2a14:100::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:f5:17:e3:85:64:88:96:44:88:c9:10:23:1f:56:f0:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 11 12:59:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ffdec4a46a6e6e4f9a92d0ba2e0b3ab5658be1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e8:84:6c:d4:d0:19:0a:08:09:82:54:3a:3f:
70:2a:92:a6:65:3c:41:3d:4e:ec:95:c8:a5:f2:e7:
50:78:b9:cf:f3:93:11:2b:8f:97:0e:b2:1b:af:05:
6d:b4:3d:78:1c:1f:9c:89:74:4a:fa:fc:03:a9:3d:
37:2e:2f:2a:24:c4:c6:93:7b:bd:84:dc:0c:f9:d6:
54:72:3a:ff:1a:e4:8d:81:ae:a6:d0:55:c8:15:8c:
dc:66:34:c3:73:b0:eb:d3:1c:b9:8d:2b:40:85:25:
4a:67:14:81:97:78:f5:1a:0a:f9:b1:4a:85:39:73:
05:de:b7:f1:3f:9e:6c:e8:dc:0e:e1:bb:81:9c:fd:
c7:6c:93:d0:4c:1d:f4:12:7f:65:bf:74:63:fd:e7:
d9:29:87:4e:55:08:f6:0a:c0:e8:b7:26:e9:83:ea:
a7:64:3d:80:9c:2b:14:94:e7:b9:7e:ae:c7:30:1d:
e9:f1:78:b7:fb:f0:55:69:dc:68:32:bb:1c:72:88:
ec:a0:7e:59:90:c9:38:ea:d1:a9:3e:26:93:be:e7:
e2:d0:b1:77:ac:7f:9e:53:16:64:54:b9:8f:d4:5a:
a4:0c:55:c2:7d:a8:f2:26:b8:e4:6f:6a:99:34:79:
ad:ba:0c:53:e0:dd:52:4a:37:3a:dc:b5:9b:dc:6c:
f2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DE:C4:A4:6A:6E:6E:4F:9A:92:D0:BA:2E:0B:3A:B5:65:8B:E1:BD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/11e5b3-43aa-4279-9441-7e8c6d4d9bef/1/_97EpGpubk-aktC6Lgs6tWWL4b0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.188.0/22
5.180.208.0/22
5.253.112.0/22
45.86.208.0/22
45.140.42.0/23
45.144.112.0/22
45.149.172.0/22
45.150.172.0/22
45.250.24.0/22
62.106.78.0/24
62.164.130.0/24
62.182.96.0/22
64.238.203.0-64.238.204.255
77.247.124.0/22
80.91.222.0/24
83.229.17.0/24
83.229.26.0/24
91.199.118.0/24
91.238.82.0/24
91.239.130.0/24
91.239.157.0/24
91.246.58.0/24
92.119.16.0/22
94.154.156.0/22
103.103.98.0/23
103.214.44.0/22
103.219.20.0/22
130.185.164.0/23
144.48.60.0/22
152.89.204.0/22
162.120.68.0/22
178.238.8.0/22
185.42.220.0/22
185.81.171.0/24
185.141.56.0/22
185.145.200.0/22
185.149.195.0/24
185.164.136.0/22
185.169.232.0/22
185.174.108.0/22
185.175.136.0/22
185.178.230.0/24
185.193.156.0/22
185.195.56.0/22
185.195.104.0/22
185.198.188.0/22
185.232.46.0/24
185.238.28.0/24
185.245.80.0/22
188.95.65.0/24
193.84.51.0/24
193.107.20.0/24
193.163.194.0/24
193.228.193.0/24
193.228.196.0/24
193.228.199.0/24
193.228.206.0/24
193.239.236.0/23
194.0.213.0/24
194.33.44.0/22
194.35.232.0/22
194.49.52.0/23
194.49.66.0/23
194.79.30.0/24
200.162.144.0/20
202.49.186.0/24
203.24.124.0/24
209.46.102.0/23
212.23.215.0/24
213.255.226.0/24
213.255.246.0/24
216.183.125.0/24
216.245.140.0/24
217.114.38.0/24
IPv6:
2a04:92c0::/29
2a06:bdc0::/29
2a07:41c0::/29
2a0a:39c0::/29
2a0a:54c0::/29
2a0a:5940::/29
2a0a:7100::/29
2a0a:8dc0::/29
2a0b:1c00::/29
2a0b:9b00::/29
2a0b:f300::/29
2a0c:19c0::/29
2a0d:5080::/29
2a0f:93c0::/29
2a0f:9440::/29
2a14:100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24669
34202
35545
42902
43878
62240
202791-202792
206136
206144
206822
206848
206986
207019
207158
Signature Algorithm: sha256WithRSAEncryption
8c:cf:c2:f9:66:99:51:ab:a8:b6:ba:1c:39:17:f0:46:f9:f0:
62:58:12:20:bc:b7:6c:c3:63:39:88:8f:1a:90:b3:ff:1e:da:
70:be:7a:47:89:57:d3:fe:35:10:53:09:4c:cd:8d:12:1f:1b:
93:fc:b1:87:57:d2:c8:45:9b:62:3b:ec:ea:22:c1:f2:32:08:
51:05:19:32:a4:f9:a8:63:de:85:b2:a6:ea:e4:2b:55:46:4f:
79:82:28:79:de:03:ec:69:35:8e:b4:a4:3c:b3:88:c4:fe:31:
f4:c9:e4:bc:5d:7d:e1:7f:52:28:d8:7f:74:f4:d3:ae:d4:e3:
7c:9e:36:56:8e:45:b1:9d:9b:70:d0:ee:8a:54:7f:11:3d:e0:
45:30:3a:9b:3a:96:31:40:0a:65:1e:6d:2e:50:e2:1c:38:41:
4b:88:f0:f9:f1:b0:e9:ff:df:f0:75:a3:ff:e4:bf:03:8a:6a:
69:1b:96:6c:81:6b:90:21:3d:38:5a:7f:3b:4a:b9:19:5a:78:
ab:5e:5f:73:f3:a7:1b:a5:8b:79:17:f5:07:b3:50:fb:de:10:
0e:a0:b5:08:29:f5:d5:5d:07:41:fa:55:cb:e6:6d:eb:69:69:
2a:53:4e:a7:80:5b:4e:b5:77:05:c8:89:a3:85:f7:aa:72:2a:
ab:bd:f0:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 03:49:38 2025 by rpki-client