Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer
File: nw0kyFXu4A_kq_OQPG6PzHCD7U0.cer (raw, json)
Hash identifier: 4K+CUC7HXFaexcJt8kL5PQ/tVUn4SO+Uj2sfM3wr7Is=
Subject key identifier: 9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D6415D19A87BF7A1752D2EF53EAB5A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 5464
IP: 62.112.128.0/19
IP: 109.95.240.0/21
IP: 185.2.160.0/22
IP: 193.37.236.0/24
IP: 194.0.229.0/24
IP: 195.184.92.0/23
IP: 2001:67c:33c::/48
IP: 2a00:1df0::/32
IP: 2a02:d000::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:41:5d:19:a8:7b:f7:a1:75:2d:2e:f5:3e:ab:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9f0d24c855eee00fe4abf3903c6e8fcc7083ed4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1f:bc:4c:2e:63:9b:20:9e:d1:02:5f:fd:77:
40:8f:34:ac:5c:5a:48:b2:5c:9c:7f:68:5b:80:18:
94:5a:0f:2c:24:44:f0:bc:ad:54:d1:4d:92:45:e7:
3f:64:87:b3:e2:1e:8c:bb:3f:70:45:04:4b:62:7a:
07:41:5f:9f:96:fc:e7:8c:22:a3:83:bb:fa:03:a3:
33:6b:09:9e:96:65:92:09:3a:59:64:1c:98:05:29:
41:71:bf:89:ea:6e:95:62:c3:bc:f3:59:f4:22:55:
9a:0c:0c:68:46:30:42:ea:ac:fc:b0:d5:72:16:8f:
44:f6:ee:fa:c4:64:f3:f1:1e:54:cc:ad:5d:f4:1c:
46:b5:17:e9:ec:6d:bf:77:8d:f6:00:36:77:2c:c7:
49:eb:00:2f:0d:4d:00:96:f6:36:da:6d:2c:25:88:
8a:c3:3a:10:99:93:06:1f:68:31:a9:5e:ed:e2:38:
1b:de:c5:6d:18:24:76:f0:fe:44:9e:82:fb:82:35:
25:ea:9c:a5:5e:25:4f:c0:df:11:37:69:3f:92:fa:
7b:e0:9f:29:3a:d2:79:73:22:6c:1c:50:e0:af:6b:
4e:36:65:cd:54:b0:2b:95:ec:7f:da:ef:9d:17:bf:
40:1a:26:b6:d0:64:08:d9:a5:72:88:b2:a1:67:5f:
88:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:0D:24:C8:55:EE:E0:0F:E4:AB:F3:90:3C:6E:8F:CC:70:83:ED:4D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/af31768d-42b1-4e92-b83f-bef7ee017813/0/9F0D24C855EEE00FE4ABF3903C6E8FCC7083ED4D.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.112.128.0/19
109.95.240.0/21
185.2.160.0/22
193.37.236.0/24
194.0.229.0/24
195.184.92.0/23
IPv6:
2001:67c:33c::/48
2a00:1df0::/32
2a02:d000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5464
Signature Algorithm: sha256WithRSAEncryption
a3:6c:eb:fc:55:b9:b1:d5:7a:57:6f:d8:eb:e9:f8:e5:b4:4f:
85:82:d8:22:66:91:c5:c4:5b:b8:d9:ee:a1:2a:dc:ef:bd:ce:
fe:89:5e:55:cd:7e:87:87:e5:5c:3b:3a:39:77:9b:6e:8c:a0:
bc:3b:4a:2a:dc:5b:dd:c4:58:d6:d9:4b:5d:ae:b1:91:31:cf:
c0:6d:16:55:99:28:5d:ea:05:ea:e8:de:3b:3e:b2:c3:f6:b2:
fd:42:69:2e:27:23:a1:ef:d0:75:e5:96:ec:c7:fd:2b:9b:65:
c9:b4:8f:c3:52:69:aa:14:b4:df:0b:81:22:0d:31:7e:30:f9:
01:89:fb:89:af:f5:a1:24:c7:9a:43:46:df:d3:57:19:87:ef:
31:a5:70:0c:b1:22:72:fd:bf:30:1d:95:37:83:8a:52:32:64:
61:7b:d0:26:02:0f:e6:0e:ce:ca:10:77:68:2e:eb:10:93:c2:
9e:c4:be:ac:0b:3c:c1:1d:f3:dd:c6:10:c2:20:fb:b1:dd:18:
d2:69:c8:24:bb:3d:90:d3:5f:fe:75:6c:c0:2c:ea:85:ab:39:
3a:f3:aa:16:0b:76:1a:16:b5:91:68:ad:fc:1e:9c:59:91:13:
97:30:69:a4:d6:5d:c5:d2:7f:e4:87:ff:1b:73:59:13:fe:ae:
cf:fb:3e:8b
-----BEGIN CERTIFICATE-----
MIIF7DCCBNSgAwIBAgISAZQg1kFdGah796F1LS71PqtaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDc0ODE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjBkMjRjODU1ZWVlMDBmZTRhYmYzOTAzYzZlOGZjYzcwODNlZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlh+8TC5jmyCe0QJf/XdAjzSsXFpI
slycf2hbgBiUWg8sJETwvK1U0U2SRec/ZIez4h6Muz9wRQRLYnoHQV+flvznjCKj
g7v6A6MzawmelmWSCTpZZByYBSlBcb+J6m6VYsO881n0IlWaDAxoRjBC6qz8sNVy
Fo9E9u76xGTz8R5UzK1d9BxGtRfp7G2/d432ADZ3LMdJ6wAvDU0AlvY22m0sJYiK
wzoQmZMGH2gxqV7t4jgb3sVtGCR28P5EnoL7gjUl6pylXiVPwN8RN2k/kvp74J8p
OtJ5cyJsHFDgr2tONmXNVLArlex/2u+dF79AGia20GQI2aVyiLKhZ1+ImQIDAQAB
o4IC+DCCAvQwHQYDVR0OBBYEFJ8NJMhV7uAP5KvzkDxuj8xwg+1NMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy
c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2FmMzE3
NjhkLTQyYjEtNGU5Mi1iODNmLWJlZjdlZTAxNzgxMy8wLzCBiwYIKwYBBQUHMAqG
f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWYz
MTc2OGQtNDJiMS00ZTkyLWI4M2YtYmVmN2VlMDE3ODEzLzAvOUYwRDI0Qzg1NUVF
RTAwRkU0QUJGMzkwM0M2RThGQ0M3MDgzRUQ0RC5tZnQwPAYIKwYBBQUHMA2GMGh0
dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ
BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjBcBggrBgEFBQcBBwEB/wRNMEswKgQCAAEwJAME
BT5wgAMEA21f8AMEArkCoAMEAMEl7AMEAMIA5QMEAcO4XDAdBAIAAjAXAwcAIAEG
fAM8AwUAKgAd8AMFAyoC0AAwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICFVgwDQYJ
KoZIhvcNAQELBQADggEBAKNs6/xVubHVeldv2Ovp+OW0T4WC2CJmkcXEW7jZ7qEq
3O+9zv6JXlXNfoeH5Vw7Ojl3m26MoLw7SircW93EWNbZS12usZExz8BtFlWZKF3q
Bero3js+ssP2sv1CaS4nI6Hv0HXlluzH/SubZcm0j8NSaaoUtN8LgSINMX4w+QGJ
+4mv9aEkx5pDRt/TVxmH7zGlcAyxInL9vzAdlTeDilIyZGF70CYCD+YOzsoQd2gu
6xCTwp7EvqwLPMEd893GEMIg+7HdGNJpyCS7PZDTX/51bMAs6oWrOTrzqhYLdhoW
tZForfwenFmRE5cwaaTWXcXSf+SH/xtzWRP+rs/7Pos=
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:35:21 2025 by rpki-client