Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bHGp21PGQkgvl-fR_Aa-S4N9HFY.cer
File: bHGp21PGQkgvl-fR_Aa-S4N9HFY.cer (raw, json)
Hash identifier: WGs8Ss/DcDeeEAZs9xVNifsJypGz8QL6X/jahKXuF3c=
Subject key identifier: 6C:71:A9:DB:53:C6:42:48:2F:97:E7:D1:FC:06:BE:4B:83:7D:1C:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018570F954EF6C97EBADED1F67E3B642C233
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/96/a2f6d8-e479-42b2-8e84-0ee68e166232/1/bHGp21PGQkgvl-fR_Aa-S4N9HFY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/96/a2f6d8-e479-42b2-8e84-0ee68e166232/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 05:34:26 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 212071
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f9:54:ef:6c:97:eb:ad:ed:1f:67:e3:b6:42:c2:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:34:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c71a9db53c642482f97e7d1fc06be4b837d1c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5a:e5:04:cd:ee:bf:fe:a3:b5:0a:66:3d:58:
9a:28:05:81:17:f4:a2:32:c5:bb:42:b2:be:d5:c1:
d7:ee:86:31:e5:81:81:d1:c0:df:25:a1:dc:82:30:
b7:c3:b8:d8:e0:6e:77:dc:89:f4:ca:41:a6:91:2d:
5d:35:e7:f2:fb:3c:35:5b:99:37:42:88:99:99:3d:
9a:57:3c:12:81:4b:25:73:94:b7:5f:db:85:72:9b:
ec:47:8e:4f:ae:b5:a7:58:29:dd:96:5e:9d:71:99:
c1:2a:7e:e6:7a:a6:f3:d8:43:b3:64:d9:6f:cd:81:
56:c8:dc:17:9b:17:c6:82:5f:ce:54:4b:80:c6:9e:
b7:9d:35:a5:70:77:38:ef:cb:3c:93:45:62:df:b1:
b5:0a:3b:57:5f:d9:90:fd:17:66:19:77:ae:b9:78:
2c:e1:ed:93:9a:40:13:9d:b4:d4:d5:f8:f1:f2:8f:
fb:7a:d3:b8:e0:f7:37:4d:b6:f8:33:3a:41:93:d0:
e1:cc:22:89:3d:4b:03:c5:56:80:8e:83:d5:6a:d6:
52:f7:d6:80:7e:70:ba:b7:d0:40:48:20:4e:7c:eb:
3b:b2:40:a0:79:fd:aa:f0:85:b3:13:72:18:83:9f:
25:fb:ad:00:3f:45:29:dd:c8:5d:d1:80:e3:0e:4d:
e8:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:71:A9:DB:53:C6:42:48:2F:97:E7:D1:FC:06:BE:4B:83:7D:1C:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a2f6d8-e479-42b2-8e84-0ee68e166232/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a2f6d8-e479-42b2-8e84-0ee68e166232/1/bHGp21PGQkgvl-fR_Aa-S4N9HFY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212071
Signature Algorithm: sha256WithRSAEncryption
0e:66:6e:ca:7e:88:17:40:27:89:02:81:f0:2c:30:c7:70:c2:
48:48:9b:01:d0:6e:9c:7d:fb:31:f5:fb:7a:c6:b6:03:8f:a6:
ec:ed:7c:7e:9f:c1:25:96:b8:24:1e:78:49:75:b6:fd:3f:79:
60:8f:3e:5b:c5:4c:5e:4a:ea:46:ca:1a:4a:56:a5:99:c5:43:
66:03:5c:c5:d5:d7:47:a2:3d:f4:f0:eb:9d:eb:ec:c8:d4:4b:
0c:99:18:ef:e6:19:8b:0a:ff:d9:bd:18:80:6d:87:7a:69:bd:
6b:a8:d2:e7:31:dd:21:cc:db:34:93:cb:cd:1b:30:3c:ba:83:
d8:6c:cd:3e:1b:97:49:a5:e2:5e:c6:07:52:9a:d0:d4:67:29:
29:6b:29:9f:03:cf:27:9f:87:39:9a:51:16:b6:8c:8e:c5:01:
43:fa:43:74:b7:80:f0:6a:b9:14:94:13:69:2e:53:b2:60:88:
f5:99:17:d1:24:75:dc:a0:33:46:94:f8:5d:63:c0:68:2b:0f:
e9:d8:55:c0:76:b9:4c:e7:88:9a:db:dc:83:8e:37:23:63:18:
a8:19:4d:7e:1a:16:d5:7b:e3:73:da:c0:aa:5e:97:ac:08:56:
07:b4:23:ec:e1:b8:66:f1:86:d1:04:85:cd:c9:6d:3f:4e:cf:
bf:21:71:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:18:24 2025 by rpki-client