Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
File: evGnv3QoXbLoIJH79GOi7vbjpXg.cer (raw, json)
Hash identifier: axG1N2rQB5UoKv50B06J+0jCrykpS3qNXii3mubIf0k=
Subject key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421442C9FA93EC9F8B6FD15ED45813702
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:48:23 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 91.90.161.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:2c:9f:a9:3e:c9:f8:b6:fd:15:ed:45:81:37:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bf:4c:2d:7c:ae:76:42:b8:e3:29:e3:8a:1a:
8b:e0:b2:29:d1:b2:06:61:77:5d:98:f0:fb:34:dc:
3d:56:06:ec:9c:ff:bd:29:a6:f8:1d:17:a2:9a:45:
69:44:8b:c4:31:8b:5f:45:3d:63:40:3b:dc:13:d0:
69:14:68:de:e0:77:d7:dd:b6:78:bb:c8:83:97:2c:
fa:4a:7d:c6:1a:d8:d5:8c:ef:ec:0c:e7:6c:1f:b7:
db:a2:30:94:a7:b5:38:e8:2d:d2:ab:c6:71:ce:c8:
8b:9b:fa:13:68:3c:ac:50:ee:82:3f:fe:1e:d1:62:
3f:6b:a3:29:f3:89:ec:36:06:d9:21:bf:b4:e1:ca:
12:04:d0:2a:42:21:a3:f8:13:12:c7:e2:e0:57:d1:
a0:2e:80:93:28:a0:34:4d:41:ea:e9:6e:fa:84:f4:
d7:48:41:3f:49:77:13:9f:c4:29:b9:53:ba:de:3c:
c8:f5:e6:70:d4:b6:35:c5:8d:83:f1:ca:ce:31:d1:
48:bb:4d:8c:6e:09:1f:f4:b7:6a:a0:e0:54:5c:46:
01:4b:bf:d0:ee:9f:b2:17:f1:c8:ba:7b:b3:0c:be:
75:48:26:6e:be:eb:a7:09:dc:01:29:64:81:40:c7:
f8:48:9f:ef:f9:5c:8d:a8:d6:b6:31:de:02:5a:14:
10:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.90.161.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:d1:b4:9c:53:70:6d:f0:0c:90:c2:08:0b:34:67:4a:24:1c:
b5:c3:1c:41:aa:48:d0:14:9a:47:53:49:88:dc:13:98:83:5b:
fb:f2:aa:44:07:01:53:cf:14:e8:11:b9:6c:4c:c3:fa:5d:2e:
78:66:4c:9c:08:ab:2a:a5:b3:48:b3:d5:66:d4:54:9b:9f:ea:
d5:39:cd:6a:ea:37:77:d3:2f:5e:f5:95:37:16:0c:7b:4d:be:
76:58:d9:a9:56:8d:e4:34:fa:49:48:f7:72:f5:03:6c:b1:8d:
48:99:9d:f8:fd:72:23:45:09:02:94:8a:33:c3:0a:11:23:60:
6e:ca:d9:d1:6f:0d:83:29:22:65:21:d7:d7:c7:5d:9d:bd:7d:
63:3a:f6:97:73:88:4b:6f:57:c9:93:bd:eb:2e:c3:bb:3b:1b:
4c:07:1f:32:65:d3:78:3a:09:cc:d9:3f:4a:f6:26:0e:9d:89:
44:8b:29:a5:8d:90:ff:4b:61:17:a3:25:7f:d5:a9:ba:ac:d5:
52:40:22:83:a4:9f:39:25:26:8a:4c:3e:e7:01:33:f2:a6:13:
2a:e6:dd:87:cf:d9:a8:12:26:b0:47:94:f8:2c:cf:5b:99:52:
24:48:04:64:82:83:a4:f3:6a:83:e8:9b:c4:38:5b:6b:28:6e:
bd:f5:f0:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:50:58 2025 by rpki-client