Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/madzR6fTnzfwTrT1hftt_NsubSY.cer
File: madzR6fTnzfwTrT1hftt_NsubSY.cer (raw, json)
Hash identifier: mlkum0ZHNoES13AloEuM4dAiC0YFw0RL6q89VFxgcao=
Subject key identifier: 99:A7:73:47:A7:D3:9F:37:F0:4E:B4:F5:85:FB:6D:FC:DB:2E:6D:26
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194232ABC92B92B9754DB7C21D3FB457AD4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/99A77347A7D39F37F04EB4F585FB6DFCDB2E6D26.mft
caRepository: rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/
Notify URL: https://rpki.as207960.net/rrdp/notification.xml
Certificate not before: Wed 01 Jan 2025 18:39:50 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210561
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:2a:bc:92:b9:2b:97:54:db:7c:21:d3:fb:45:7a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:39:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=99a77347a7d39f37f04eb4f585fb6dfcdb2e6d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4c:42:2e:16:c0:c4:8d:3a:bc:d1:5e:f3:4f:
04:4a:48:84:34:68:73:c9:c8:06:72:45:6b:17:a1:
24:1a:ad:bc:90:c4:4b:4a:4d:40:49:36:7f:45:52:
61:21:05:22:1a:b8:8d:e0:4e:03:10:6b:19:7a:5a:
fe:05:ea:3a:65:ef:6c:a8:95:63:0a:0e:75:f2:24:
6b:ba:a9:7a:d7:69:95:33:03:ba:84:06:50:54:51:
de:b8:a3:3a:e0:87:ca:0d:4e:fa:65:35:16:1d:2a:
01:20:12:54:fa:69:72:ee:b6:47:bd:72:76:46:40:
71:1f:77:4c:72:3f:96:3e:f5:ce:9d:f5:b0:80:c0:
f6:12:6f:63:23:9f:4d:23:28:eb:83:a3:0e:b8:8f:
cc:12:4f:a2:36:4e:10:99:56:ef:fa:bc:ed:6e:bd:
ac:e3:36:32:21:3c:e8:46:49:92:9a:05:2d:0c:d7:
46:83:9c:cf:31:c5:37:92:eb:c1:2d:6c:73:4a:b6:
9b:e5:0a:ec:af:bc:74:13:56:14:14:93:9b:24:eb:
ed:df:57:74:4e:b5:2f:5a:88:f2:77:7c:f9:b1:42:
59:d8:1c:2e:81:46:b3:87:e4:f9:04:57:a8:60:9f:
9f:42:e9:c9:56:ee:44:71:8b:ae:47:13:8f:62:49:
b0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A7:73:47:A7:D3:9F:37:F0:4E:B4:F5:85:FB:6D:FC:DB:2E:6D:26
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/
RPKI Manifest - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_d0f2db99fe1d4b36b9301c821220fe3a/1/99A77347A7D39F37F04EB4F585FB6DFCDB2E6D26.mft
RPKI Notify - URI:https://rpki.as207960.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210561
Signature Algorithm: sha256WithRSAEncryption
2b:43:53:01:ee:0b:b0:70:20:40:a7:7a:79:ee:c4:29:90:ae:
dc:71:b6:c6:1d:85:cb:9d:d6:36:e7:4d:b5:bf:f2:4c:9f:e9:
57:85:73:88:c9:78:cb:f4:e9:33:07:d9:52:38:b6:19:ae:d5:
8b:be:b3:94:76:60:6c:34:dc:f4:96:26:a1:bd:88:d3:fc:c4:
07:ef:ce:47:4a:d9:78:b7:d9:9e:f1:d1:cb:b0:f7:50:44:2c:
b2:fb:ed:75:31:9b:b4:49:4c:de:1d:45:5b:e5:ec:21:6d:cb:
66:c4:21:0d:36:16:4f:a7:b2:61:ee:f4:37:cd:c3:95:65:3a:
4e:a4:76:ca:1e:8d:bb:61:b8:3e:5a:7a:87:bd:d1:5b:26:7d:
28:ac:41:2a:30:54:72:54:9c:99:72:ff:b0:fd:58:cb:a2:d6:
fc:db:38:0a:70:c8:5c:cc:d3:b5:9d:52:ae:c3:5c:e3:d0:8d:
c0:0e:5c:1c:27:4b:66:7e:6d:94:3a:8c:47:1c:f4:28:9e:67:
fe:c5:d8:46:ca:93:36:7b:6f:c0:fb:e5:ed:8e:68:f8:7b:58:
ab:4f:43:cf:12:8a:97:a2:a8:9b:39:fc:73:4c:46:00:77:f1:
28:00:c6:e8:30:e9:20:9f:03:7a:80:10:e2:ab:dc:e3:61:9d:
2c:09:9a:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 11:00:04 2025 by rpki-client