Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer
File: gw4GQZ_EaigC9vA7cTaKx7qvZM4.cer (raw, json)
Hash identifier: 2/aSdBcRtaLgcZdlk+LbAw/ubEza/5/cRmHWqaxQc58=
Subject key identifier: 83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5BC3A686AD607A1E59A4278613741
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:47:45 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201963
IP: 45.89.148.0/22
IP: 45.93.184.0/22
IP: 45.128.12.0/22
IP: 45.132.216.0/22
IP: 45.140.36.0/22
IP: 45.145.240.0/22
IP: 185.250.40.0/22
IP: 2a02:d800::/29
IP: 2a04:de00::/29
IP: 2a0b:fb80::/29
IP: 2a0e:2f40::/29
IP: 2a0e:3cc0::/29
IP: 2a0e:7140::/29
IP: 2a0e:b180::/29
IP: 2a0e:e480::/29
IP: 2a0e:fcc0::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:bc:3a:68:6a:d6:07:a1:e5:9a:42:78:61:37:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:47:45 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=830e06419fc46a2802f6f03b71368ac7baaf64ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:24:74:93:15:5d:38:a5:d8:8b:4a:d4:a1:b2:
19:df:fe:a4:41:53:8b:f0:9b:8b:fe:df:34:61:2a:
84:ed:19:14:53:30:28:ec:9c:56:f1:9a:0e:88:7b:
78:6d:c3:02:ca:ce:1e:fb:e5:45:f1:27:3c:4c:65:
93:09:18:85:8a:f9:c5:54:15:88:2e:e2:a2:bd:71:
69:67:5f:9f:22:6d:c5:84:1f:23:1b:81:85:58:27:
06:37:63:2c:e8:1e:7d:44:ca:02:48:c4:58:99:f9:
46:31:a7:e7:dc:37:28:25:ba:9f:41:03:d7:87:e9:
94:0d:10:2a:c2:7a:e7:e0:8c:71:76:e0:b8:49:00:
e5:12:39:02:24:39:2a:f0:73:4f:9b:f8:90:25:98:
39:d2:b8:a0:a4:6c:67:bd:f0:69:01:d4:16:4c:ff:
35:4f:87:3e:3e:42:86:ed:81:d3:e2:1f:04:a5:36:
c8:da:31:00:77:a9:9d:10:6f:e7:c3:58:65:0b:73:
97:b4:dd:82:9c:44:51:6a:a1:da:50:e0:f3:0f:4a:
d2:f5:28:ef:81:71:b0:a2:40:73:a5:5c:32:9d:b4:
6f:a8:02:25:f0:b1:e4:a3:ce:e9:d7:f2:ba:22:d1:
35:bb:04:67:42:20:75:50:2d:3d:9f:f2:7e:f0:ec:
fa:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:0E:06:41:9F:C4:6A:28:02:F6:F0:3B:71:36:8A:C7:BA:AF:64:CE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/8e0d6a4d-ba67-4979-8d12-0ed4748fc86e/0/830E06419FC46A2802F6F03B71368AC7BAAF64CE.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.148.0/22
45.93.184.0/22
45.128.12.0/22
45.132.216.0/22
45.140.36.0/22
45.145.240.0/22
185.250.40.0/22
IPv6:
2a02:d800::/29
2a04:de00::/29
2a0b:fb80::/29
2a0e:2f40::/29
2a0e:3cc0::/29
2a0e:7140::/29
2a0e:b180::/29
2a0e:e480::/29
2a0e:fcc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201963
Signature Algorithm: sha256WithRSAEncryption
4b:27:0f:36:11:7f:4f:52:ff:f7:b1:6d:3e:2e:36:c7:22:79:
ff:c9:af:31:47:59:11:f0:10:f0:60:f6:28:ee:0e:70:2b:35:
d1:1f:f5:32:3b:b2:c2:6c:85:60:2e:c2:10:c3:8b:c1:e4:a1:
00:49:88:4e:c9:2a:bd:46:da:3a:6b:d7:2a:85:83:4b:27:41:
5d:f7:05:25:f1:62:54:dd:c2:22:6a:4f:08:2f:fc:b8:5e:17:
4d:98:d2:05:bf:65:43:8f:ea:0a:c4:a5:34:94:0a:09:1a:01:
4a:cc:52:3e:b3:bf:a0:f7:d4:ce:a6:d6:84:a5:0f:90:d3:8c:
d7:36:fa:41:83:ed:fc:84:3b:57:65:d7:c8:92:fa:ce:ca:de:
7d:42:d6:ad:b3:db:1d:a3:8e:39:b9:6b:c0:7b:95:20:d9:7c:
03:88:98:2c:b1:e5:3c:49:f7:c9:ab:81:32:47:09:3b:95:e3:
bb:9e:29:14:a0:c8:25:91:eb:56:74:43:31:3d:56:32:92:b5:
d7:78:24:9e:d0:94:18:56:d4:ea:63:f1:9c:d3:ad:64:d8:80:
ca:8b:ac:93:56:db:10:a7:ae:9c:84:c1:c2:4a:c4:99:07:05:
fa:09:80:b8:9b:9a:36:cb:01:67:b9:75:10:5b:01:aa:25:2b:
fd:40:a5:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 21:14:21 2025 by rpki-client