Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer
File: b8zf_aakxIkUtejN59pdgguclxg.cer (raw, json)
Hash identifier: fw9E58C+igHCPZv+0HxJAmGp1gyQp4Vk1q7bYkogByI=
Subject key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194EFE9FCEAA0A1998134E8034A037DAC47
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 10 Feb 2025 12:51:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 80.68.159.0/24
IP: 91.90.192.0/22
IP: 91.196.7.0/24
IP: 91.210.164.0/22
IP: 91.215.152.0/22
IP: 91.223.123.0/24
IP: 91.247.36.0/23
IP: 92.118.148.0/22
IP: 94.131.16.0/22
IP: 94.142.255.0/24
IP: 171.33.241.0/24
IP: 176.126.162.0/23
IP: 185.39.30.0/23
IP: 185.190.250.0/23
IP: 185.198.164.0/22
IP: 185.237.218.0/23
IP: 185.237.224.0/23
IP: 185.253.0.0/24
IP: 185.253.44.0/22
IP: 193.111.210.0/24
IP: 193.162.47.0/24
IP: 195.28.182.0/23
IP: 195.245.112.0/23
IP: 2001:67c:2f4c::/48
IP: 2001:67c:2f5c::/48
IP: 2001:67c:2f6c::/48
IP: 2a0a:8c40::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:ef:e9:fc:ea:a0:a1:99:81:34:e8:03:4a:03:7d:ac:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 10 12:51:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0f:3d:6e:6a:51:54:80:15:86:c4:09:f4:21:
dc:9f:10:92:6a:3f:4d:89:9b:8f:68:b4:00:b8:6f:
8b:d1:5c:95:a8:c5:ac:89:d7:5a:0f:ad:33:59:f7:
21:5f:a9:d6:fe:40:85:80:e2:1e:b1:58:9e:00:f7:
db:b0:13:1b:54:33:a3:70:25:35:28:1f:c1:da:9c:
6a:d7:fb:f7:73:65:3b:b2:51:10:b1:de:57:49:49:
1c:c4:65:bf:0c:f9:aa:e2:ef:a8:85:c0:f4:5e:5a:
dd:32:27:55:c5:f3:b4:1c:b6:2f:fa:1f:b2:03:1f:
a1:42:f1:f4:ef:31:e1:b9:9c:87:28:ce:bd:f2:ec:
57:93:10:f9:e1:41:7f:cc:2e:16:d5:09:b2:f5:33:
c4:e4:92:24:1e:a7:51:68:6a:0a:f9:a3:fa:4f:02:
55:54:85:1d:19:38:5d:de:97:b4:d0:45:c9:e3:28:
b3:3e:57:24:44:7a:fa:e8:e9:3d:96:f9:77:27:0c:
94:18:f7:4f:27:46:65:35:85:0d:c0:df:42:bd:81:
70:78:50:87:a4:88:38:48:d1:db:bd:1a:0f:7a:98:
65:be:ba:f5:f1:dd:16:f9:8e:be:4b:14:b8:0c:02:
be:7c:6e:8b:d6:cf:3c:78:cc:dd:20:ff:16:f3:de:
77:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.68.159.0/24
91.90.192.0/22
91.196.7.0/24
91.210.164.0/22
91.215.152.0/22
91.223.123.0/24
91.247.36.0/23
92.118.148.0/22
94.131.16.0/22
94.142.255.0/24
171.33.241.0/24
176.126.162.0/23
185.39.30.0/23
185.190.250.0/23
185.198.164.0/22
185.237.218.0/23
185.237.224.0/23
185.253.0.0/24
185.253.44.0/22
193.111.210.0/24
193.162.47.0/24
195.28.182.0/23
195.245.112.0/23
IPv6:
2001:67c:2f4c::/48
2001:67c:2f5c::/48
2001:67c:2f6c::/48
2a0a:8c40::/29
Signature Algorithm: sha256WithRSAEncryption
81:77:f9:82:5a:cd:19:df:b3:f0:13:f6:06:69:70:e1:e6:1a:
94:5d:82:b9:d2:bc:db:c7:19:e4:f2:c3:8e:99:25:b8:00:46:
1f:e0:d5:94:ea:09:c5:a3:df:2b:dc:33:c3:1d:eb:1b:bf:b9:
82:c8:35:5e:10:e6:1d:a8:29:08:4d:67:78:8e:b1:86:93:4f:
f9:cd:62:8b:76:3f:7a:75:3c:41:23:5e:fd:7e:38:7e:8d:50:
d0:e3:95:94:ed:c9:f4:4f:e8:88:63:5f:de:cb:0c:07:f3:5e:
17:d2:1f:7c:37:9d:8c:ef:a5:88:b2:71:98:b1:5c:7f:70:17:
fd:06:7a:d6:66:6a:c3:b5:04:04:1e:63:52:55:f2:ba:b9:0d:
b1:bd:8f:4c:df:d1:ab:c9:e4:5c:f0:3c:55:8a:3b:20:a4:e5:
83:34:0d:0d:44:f7:0a:46:20:45:9f:5d:e7:ac:bf:ad:f4:61:
5f:46:65:f4:33:6e:10:c3:63:8e:44:f6:7d:79:2d:29:ec:78:
29:07:ef:9b:7d:a5:73:07:81:7f:87:e6:98:80:b0:4a:d7:d2:
9a:68:f7:f8:f8:14:bf:d8:aa:99:02:61:0a:e1:0c:2a:6a:ec:
3d:42:5b:c2:2d:23:4e:f8:35:29:b5:7b:d5:4c:2a:fa:72:3d:
9a:41:53:8e
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:08:00 2025 by rpki-client