Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
File: njUz1mLD8Na7HmkvP6tte6OCTCg.cer (raw, json)
Hash identifier: oa5+srF2sisu51Ojcb5THJ6rRvsdGbr7nHHizZOf0Ok=
Subject key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D9E02C714ACBBD66B4C825FD5926D4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:50:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.34.48.0/22
IP: 195.13.60.0/22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:e0:2c:71:4a:cb:bd:66:b4:c8:25:fd:59:26:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:50:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:40:f1:63:79:54:a9:f7:69:4b:24:00:53:f3:
25:2f:67:0b:9f:f3:db:cb:6f:2b:a0:c5:51:9d:06:
49:2c:91:54:3f:f5:65:6a:13:b7:21:6e:f1:96:6c:
ee:e4:e9:3b:01:11:7a:c4:a4:e5:28:a1:db:75:2f:
b5:bf:f2:dd:d1:85:86:9a:23:57:17:75:da:e3:a1:
4f:df:3d:95:89:b1:44:f2:a0:9e:19:eb:d5:bc:99:
eb:5c:14:aa:05:a1:34:04:9b:40:af:22:22:27:56:
96:11:13:35:ee:9c:5b:d2:64:5e:3e:42:d8:a0:4b:
a2:f9:b8:d1:ca:7d:a6:09:8d:42:ee:10:8e:6f:98:
4f:08:85:68:fe:bf:fc:60:20:46:64:20:46:b0:f4:
1a:83:21:cc:3e:d5:a9:30:c1:09:c3:a7:bb:24:19:
2d:04:94:4f:57:2c:b0:1f:97:f9:56:76:32:cc:c1:
46:30:67:75:a9:b1:04:07:ac:63:35:ac:00:1a:33:
fa:00:f9:ce:f1:37:8a:83:0c:c7:17:a6:05:aa:ff:
81:8d:f3:75:01:82:ce:43:f7:d2:a2:84:61:ab:ae:
c3:5b:8a:c8:4a:fb:04:29:4e:68:e8:df:23:27:a3:
61:73:1c:be:52:b4:20:9c:3e:53:fe:39:ab:29:8b:
85:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.48.0/22
195.13.60.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:b8:3a:85:64:0f:1c:cc:2a:86:2b:23:93:ce:25:54:51:b9:
12:f7:c7:8f:50:e3:89:36:a0:d9:e7:c5:53:98:21:0e:3f:3b:
02:da:4c:32:85:c9:3e:d8:30:b9:00:a0:5e:02:69:f2:f3:59:
59:5d:f4:d3:6f:15:8c:8b:cd:b4:75:ae:97:b5:bc:fb:2d:d1:
ae:0a:ba:62:8c:38:33:65:9a:22:d1:64:be:ef:58:1b:3e:94:
d7:7b:2a:d4:b0:12:33:e3:e0:a8:3c:c7:a1:76:46:a4:8a:15:
15:57:15:da:63:a2:3d:02:9b:98:56:53:61:c8:14:13:6f:ce:
5a:d3:00:d1:48:f9:9c:d9:23:e1:5a:b0:bf:93:7c:b4:40:ff:
5f:7a:f5:f4:8f:cb:52:8d:69:9b:fa:f7:78:c8:3b:3b:d0:0b:
64:b8:44:23:24:eb:69:65:60:61:17:03:b3:43:57:14:4a:9b:
fe:57:f3:1a:91:9c:dc:67:9f:c9:41:ac:23:eb:f9:4e:b2:2d:
43:96:ee:fb:fa:2d:73:6c:3d:1b:dd:3a:01:5d:dc:cd:b2:1a:
85:2d:fa:51:1e:94:9b:20:49:a2:e3:7f:d5:4a:1c:63:30:f3:
c4:db:ac:df:95:ea:5e:ec:d3:2c:01:e8:3c:2e:87:69:db:0a:
6d:0b:d6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:57:17 2025 by rpki-client