Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer
File: o1E9KI2r3n3uBpvbY2Vzzpw-y2A.cer (raw, json)
Hash identifier: p2XluNtMjMb9/V4AeisjkFuIh4vPDpijt9CfKT5nfvg=
Subject key identifier: A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5C4EE2007AD87742DE72EF710E0FB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:47:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 5.249.160.0/21
IP: 45.141.36.0/23
IP: 45.146.252.0/22
IP: 88.214.56.0/22
IP: 92.42.44.0/22
IP: 134.255.216.0/22
IP: 134.255.231.0 -- 134.255.234.255
IP: 147.189.168.0/21
IP: 185.223.28.0/22
IP: 185.239.236.0/22
IP: 185.249.196.0/22
IP: 193.23.126.0/23
IP: 193.23.160.0/23
IP: 193.34.69.0/24
IP: 193.203.238.0/24
IP: 194.156.88.0/22
IP: 2a0c:3580::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:c4:ee:20:07:ad:87:74:2d:e7:2e:f7:10:e0:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a3513d288dabde7dee069bdb636573ce9c3ecb60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d5:62:ed:af:c2:df:48:f9:52:21:48:56:e4:
0c:83:3a:5f:97:80:3c:d0:a2:e0:b5:79:f1:4e:cc:
16:94:bf:64:b4:e9:87:a0:59:8e:e4:ed:46:6d:eb:
a8:5d:b0:05:04:19:16:d3:29:00:4e:44:8e:1b:21:
67:28:f1:f4:38:02:c9:24:c5:94:50:5e:c1:35:fc:
9c:d1:45:53:71:82:b7:8f:2e:f1:91:83:21:8b:c0:
c8:bf:e6:7b:b3:bc:18:9e:3c:dc:89:d2:9d:73:af:
7f:34:8f:26:eb:5d:f1:3c:46:39:76:16:07:f1:92:
00:5e:a0:74:b1:7e:68:ed:1e:bd:58:0a:24:f3:b6:
1e:0e:5b:31:19:6d:3a:fd:6a:c6:6f:05:3e:52:84:
e9:0a:81:39:ba:37:07:5d:20:ee:8c:ce:e2:57:b3:
c6:f3:27:81:ba:d5:1b:c1:62:ce:75:8f:ef:cb:06:
af:4c:32:bd:fd:8e:97:06:c0:ca:71:1d:d3:06:f7:
a4:02:ff:04:a7:f3:01:82:6f:a8:8f:87:dc:83:72:
c2:d5:df:a2:c4:80:34:dc:88:a4:77:0a:ce:d4:73:
0a:24:27:d0:0b:65:f2:94:e5:24:57:08:3e:0f:53:
00:e9:81:88:14:b7:48:a6:56:9c:94:ab:be:e5:a5:
e3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:51:3D:28:8D:AB:DE:7D:EE:06:9B:DB:63:65:73:CE:9C:3E:CB:60
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/792113-e13c-43ee-84d7-e0d7dd5e2e6f/1/o1E9KI2r3n3uBpvbY2Vzzpw-y2A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.160.0/21
45.141.36.0/23
45.146.252.0/22
88.214.56.0/22
92.42.44.0/22
134.255.216.0/22
134.255.231.0-134.255.234.255
147.189.168.0/21
185.223.28.0/22
185.239.236.0/22
185.249.196.0/22
193.23.126.0/23
193.23.160.0/23
193.34.69.0/24
193.203.238.0/24
194.156.88.0/22
IPv6:
2a0c:3580::/29
Signature Algorithm: sha256WithRSAEncryption
67:50:74:7b:a9:19:9e:0c:a3:b6:14:9b:48:9a:41:bd:fa:98:
78:01:5b:00:49:0b:5f:38:c7:17:d6:7a:60:ed:1a:1e:c4:55:
95:ac:fe:9c:44:cc:51:b4:e7:9b:5f:32:a7:17:25:b0:db:d5:
f4:c0:1f:bc:eb:c7:0d:a4:63:5f:18:98:3b:3c:f8:d5:0b:8b:
33:ae:13:13:f1:c6:f2:30:64:7f:eb:64:fc:af:1a:57:d5:72:
51:33:d8:55:ad:1a:c0:88:9a:4f:bb:5a:05:8d:81:bf:79:e3:
eb:8b:82:8a:9c:65:f6:9e:51:4a:a2:fd:ba:1d:0d:18:9f:0d:
df:63:51:a2:d3:96:84:eb:da:b7:a4:9d:d6:6e:d9:bf:08:ed:
e5:a5:2b:8c:fe:c4:55:6d:2a:4c:1d:b5:3b:db:ce:e5:9b:11:
17:05:8b:c7:ee:09:1a:1e:e3:3c:81:0a:1f:5f:3c:0d:3c:53:
4b:4c:a4:7a:6f:bb:27:f3:aa:9d:fe:64:08:2a:77:7c:4a:b4:
d3:ed:33:39:11:56:1b:87:8e:c6:e3:90:fa:5a:c3:2e:aa:d9:
36:fa:53:1b:ed:25:55:aa:90:d0:ca:c5:98:6a:c9:49:2a:71:
e6:68:d9:0d:9e:5e:8f:8c:13:92:db:ac:18:b3:b8:8f:c8:f4:
0f:4a:1d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:48:20 2025 by rpki-client