Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_nzo-_uEec-5drRDzDx84vcDq34.cer
File: _nzo-_uEec-5drRDzDx84vcDq34.cer (raw, json)
Hash identifier: RBfMSrLQ4ZC5UvVL/REzajgva/2JKnJkn/fr1S4Fo2w=
Subject key identifier: FE:7C:E8:FB:FB:84:79:CF:B9:76:B4:43:CC:3C:7C:E2:F7:03:AB:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194274841C3722087FE98425DDBB648586A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/927638-fd47-4e56-bb9e-d7920ae44920/1/_nzo-_uEec-5drRDzDx84vcDq34.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/927638-fd47-4e56-bb9e-d7920ae44920/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:50:34 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.247.96.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:41:c3:72:20:87:fe:98:42:5d:db:b6:48:58:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:50:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fe7ce8fbfb8479cfb976b443cc3c7ce2f703ab7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:92:06:f3:f3:4f:07:a5:7e:e8:69:e7:3b:3e:
6d:64:d8:e5:6e:43:50:08:17:e1:2e:ce:9a:50:68:
fa:53:3a:9b:95:11:15:a7:2c:34:f0:5d:d2:7a:d6:
7d:b4:ad:9c:69:9f:a7:1c:2e:58:13:74:70:17:5a:
55:00:36:6d:9d:95:2c:d7:07:06:9a:c9:6f:69:77:
95:17:8d:d7:9d:a5:dd:dc:e5:41:70:a6:0f:1f:e9:
70:f5:64:d6:33:62:71:28:d3:d9:b1:a3:28:14:6a:
2c:b2:9f:90:62:b8:f1:3b:5a:d6:e3:2b:f1:7e:be:
bd:4b:8c:29:8a:66:2c:60:b8:e1:36:9f:4a:a9:44:
62:d3:c3:be:e7:36:fb:06:d4:b4:e7:05:23:50:d1:
b5:76:44:5f:71:92:5d:99:24:2f:51:77:1a:4b:ba:
43:81:9e:5c:d5:59:2c:06:7f:f7:39:5c:39:81:bd:
cd:1f:45:4b:0f:39:31:b4:78:b7:4b:5d:5f:71:bb:
68:22:da:34:ac:09:da:11:cf:ac:40:e6:b5:bf:94:
48:96:ae:d3:3d:92:b4:e4:64:08:af:7b:5e:4a:de:
37:b8:1c:32:b1:8e:78:a3:98:89:9f:32:06:19:6c:
c1:c0:23:a1:13:9c:29:28:90:34:2f:07:98:df:85:
5c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:7C:E8:FB:FB:84:79:CF:B9:76:B4:43:CC:3C:7C:E2:F7:03:AB:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/927638-fd47-4e56-bb9e-d7920ae44920/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/927638-fd47-4e56-bb9e-d7920ae44920/1/_nzo-_uEec-5drRDzDx84vcDq34.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.96.0/22
Signature Algorithm: sha256WithRSAEncryption
73:4d:21:27:bb:91:dc:db:59:89:85:92:ac:d5:48:bb:df:c6:
d4:31:5c:ba:a5:a1:45:b7:76:81:ea:a9:f0:eb:69:43:e8:35:
a1:b3:0c:37:46:44:0b:6f:f0:6d:c6:ca:41:c6:da:57:bc:39:
d6:65:8b:96:8b:7f:38:ae:bc:67:10:53:2a:57:81:f8:91:3d:
b8:25:97:92:bf:ba:c9:0a:22:75:02:e6:7c:ef:b1:9c:c8:bd:
ae:83:d0:3c:66:a9:b8:b7:aa:aa:50:b3:b5:b8:6b:51:43:8f:
93:e1:7a:d6:69:25:58:99:c4:1e:0f:9b:bd:be:e7:6f:9b:60:
af:d1:0d:c6:52:db:68:01:09:2d:44:b7:51:a2:bd:6f:3e:29:
27:3a:2e:b2:29:72:ee:d3:21:f8:3c:31:69:5d:49:8a:f9:6d:
e9:3c:e0:8e:b3:67:5c:99:f6:dc:58:04:8f:64:f2:8d:32:0f:
2b:87:1e:de:e4:01:0b:a5:d9:03:51:7c:35:0d:23:eb:f0:55:
f4:23:08:2d:e0:8c:32:b9:bc:51:d0:ff:52:35:88:1b:de:3a:
f4:3b:59:d1:b8:ab:be:78:57:52:7d:9c:9b:1c:58:66:40:bf:
fe:8e:88:4e:16:c8:27:f8:11:59:6e:11:61:b9:55:df:da:4a:
60:66:8f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:13:35 2025 by rpki-client