Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cNZU8uFv6IJuBK6W315csKJgOAo.cer
File: cNZU8uFv6IJuBK6W315csKJgOAo.cer (raw, json)
Hash identifier: Evd0tJ9Pd+1O2zzrdrv5AnjJHfEmGbvU0mL3KfAxnLw=
Subject key identifier: 70:D6:54:F2:E1:6F:E8:82:6E:04:AE:96:DF:5E:5C:B0:A2:60:38:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018FC84C9D68EF9A653ED619E3FC65044834
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/74bbbc-9d72-44ec-859b-c767cb74bddb/1/cNZU8uFv6IJuBK6W315csKJgOAo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/74bbbc-9d72-44ec-859b-c767cb74bddb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 30 May 2024 07:00:15 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 198505
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:4c:9d:68:ef:9a:65:3e:d6:19:e3:fc:65:04:48:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 30 07:00:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70d654f2e16fe8826e04ae96df5e5cb0a260380a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:ed:ea:61:a9:b5:8b:9d:a6:4f:d1:ff:f7:06:
e6:60:1f:9a:67:28:3d:a1:d5:2b:51:f9:cc:e1:5d:
41:47:89:f4:56:4c:4f:8a:61:c6:09:64:60:7e:79:
a1:c1:da:03:58:d8:68:86:6e:f0:4b:9e:d7:ab:df:
bd:7c:71:ae:3f:94:e3:0a:ef:f8:4c:07:67:67:19:
08:a1:3b:f6:15:6c:8e:11:61:55:83:d8:27:cf:4a:
6b:87:8b:5a:52:82:22:16:6b:a5:62:b4:2c:6d:74:
83:3e:18:ae:b9:ca:9e:60:e2:ac:25:09:61:17:8d:
9b:1e:b8:14:14:b0:13:b2:90:36:f4:d9:61:f6:ca:
7f:ea:21:17:3a:15:05:fd:5c:65:24:3a:75:04:f2:
d1:cd:d5:15:f4:58:28:9f:90:0f:bf:0f:2f:bd:fb:
a2:d0:19:79:89:87:cb:8a:b7:84:88:13:e0:4e:50:
b2:99:84:0b:98:c9:12:6e:0b:c8:5e:e6:df:56:79:
d1:54:36:7d:d9:4f:96:63:e5:bf:7c:a1:08:42:ae:
57:6e:73:27:f0:72:81:f0:63:c9:65:73:2b:ee:19:
ba:40:94:0e:f7:a0:a8:f3:a0:4e:4b:27:7c:da:0a:
5e:17:42:3c:52:17:b9:65:14:92:c0:06:8a:11:77:
20:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D6:54:F2:E1:6F:E8:82:6E:04:AE:96:DF:5E:5C:B0:A2:60:38:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/74bbbc-9d72-44ec-859b-c767cb74bddb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/74bbbc-9d72-44ec-859b-c767cb74bddb/1/cNZU8uFv6IJuBK6W315csKJgOAo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198505
Signature Algorithm: sha256WithRSAEncryption
82:d5:b1:89:ec:40:9b:9a:b1:1f:84:4b:a0:e8:c8:13:62:3f:
ef:b6:92:0d:e5:98:43:60:ba:74:08:11:8d:78:1f:5c:0c:13:
ec:47:2d:a1:7a:89:6d:cc:48:00:c4:ef:fa:a5:d6:03:23:73:
69:2a:0b:af:65:09:be:e3:a0:f9:23:a5:20:da:3f:6b:cd:70:
fc:fa:0c:d6:cb:7f:a2:28:fd:bb:90:30:a7:d5:df:9b:f7:aa:
b1:67:a2:fe:e7:ed:e3:45:7e:13:15:50:ba:ff:e7:57:cc:cd:
dc:5e:67:ba:b2:0e:b9:a7:7a:e8:56:06:71:63:a7:a5:36:70:
46:dd:04:ee:23:71:c0:38:b7:2e:a2:df:1e:13:dc:84:26:4e:
34:a2:62:79:76:59:a8:63:03:c7:d7:49:56:2c:53:26:7d:30:
d3:56:93:0c:aa:8f:5a:26:3e:30:0d:a0:4e:57:ae:08:e4:11:
c2:90:c5:cb:c5:39:b2:66:a7:52:3b:a0:a1:a9:56:de:27:ff:
e3:7e:a7:6d:d3:d4:61:06:54:82:db:0a:1b:3a:db:02:f9:0d:
bd:32:e9:f5:0d:f3:ef:d9:ff:5d:de:a4:e0:3e:d1:cd:d9:38:
b1:6c:f0:b8:f4:67:e4:50:a4:5b:b5:a7:1b:cb:c7:65:f9:78:
0f:21:e4:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:20:05 2025 by rpki-client