Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer
File: db3TijiDJA5GxLGsi7-DF96P-IU.cer (raw, json)
Hash identifier: HUspf8JgW7r7S/gBi3p/yV0Ti++YIDCas3rnHHMhEww=
Subject key identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D6C205EBF1E84E6BC17F1AF6B356DB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:47:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.132.116.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:c2:05:eb:f1:e8:4e:6b:c1:7f:1a:f6:b3:56:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:21:97:07:e6:d6:74:58:7c:a1:49:a3:1b:
88:3b:6d:96:40:72:62:34:28:e1:75:fa:a5:7d:09:
32:f9:e9:68:00:07:c7:7b:77:62:06:69:7f:52:1a:
71:4b:7e:f4:c7:4b:1e:b1:55:3a:00:c9:c4:bd:19:
dc:30:f0:4c:af:3b:f8:c4:6e:c6:a8:10:8c:09:c3:
31:08:69:06:0b:35:43:eb:2c:b0:8e:a1:5f:f6:2c:
96:5c:49:fb:f9:4f:b3:17:21:cf:3e:a1:34:c8:62:
15:0a:58:22:cc:a4:6e:b5:b8:7f:5b:7f:9f:07:4a:
df:36:68:e9:e1:14:bc:d5:2e:51:e8:09:be:05:48:
d7:ca:2f:a8:b4:6c:47:88:8f:03:2c:d9:76:b0:ae:
31:a8:d9:30:d1:81:98:91:10:66:97:ae:dd:bb:75:
fa:c0:52:b7:ff:ed:9d:38:8b:e3:bd:42:29:4e:6c:
8a:ec:e2:84:d7:43:4a:92:f5:57:d2:7e:f8:67:47:
b7:3c:a3:85:5f:03:ff:43:f1:84:47:44:45:4b:0e:
71:81:0c:92:09:22:f9:a1:2c:4d:86:10:d2:3d:9f:
37:77:80:ee:d2:05:b6:b4:73:74:92:5e:df:a6:69:
2c:e4:63:b7:d2:ca:fa:b8:c2:15:61:a8:8c:7b:ee:
a1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.132.116.0/22
Signature Algorithm: sha256WithRSAEncryption
82:d2:d6:19:11:43:b6:57:73:58:39:e6:5a:d9:2e:e1:1f:8f:
aa:c2:c5:ec:0d:ab:6b:12:53:be:46:0c:f5:07:ea:24:88:2f:
05:d4:c9:70:6e:2e:61:45:04:b4:71:cb:6b:1f:ea:f4:10:6c:
85:92:14:fb:f0:7c:18:ee:c1:70:4a:2c:66:0b:d2:04:a3:27:
19:12:cb:94:02:59:02:70:db:74:1a:56:46:eb:d4:e3:52:65:
fc:7e:12:57:f1:fc:89:f4:2e:af:6f:14:ca:bb:7f:ae:1e:bb:
6f:eb:64:f4:5b:d2:82:ba:5b:c4:60:ae:5e:8e:e5:94:2b:97:
1c:c8:ef:88:fd:05:77:26:0a:aa:0a:ce:ed:7e:62:41:67:07:
43:bd:13:9a:ad:f4:cd:b8:ec:93:cb:d8:a2:57:d7:56:75:a2:
64:71:7b:32:2f:0e:c1:6e:5a:d3:f0:e1:67:ca:0d:4e:9e:90:
08:17:a4:a8:1a:f4:ce:25:e4:14:4b:2c:76:e1:72:fa:ac:5b:
72:83:18:8b:69:a3:c9:bc:69:25:61:16:de:7a:c6:64:13:e1:
70:c1:87:3a:3f:3b:22:b3:b9:d6:41:9e:98:a1:b4:6a:68:8d:
f8:9d:05:a2:de:bd:26:77:27:07:b4:2c:44:65:a5:fa:1d:18:
ae:89:cf:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 05:23:15 2025 by rpki-client