Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oZo5w0n5uFp9JVBfWkEDcVxapaw.cer
File: oZo5w0n5uFp9JVBfWkEDcVxapaw.cer (raw, json)
Hash identifier: 6yhg/O0NXSYVsKV81Xh9sGw+F2wa9RWD+knJa16H/MQ=
Subject key identifier: A1:9A:39:C3:49:F9:B8:5A:7D:25:50:5F:5A:41:03:71:5C:5A:A5:AC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018571685C1E62112D339593FB78438709C5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a3/0c03a7-4bc5-4a46-8f02-d3dd0938f927/1/oZo5w0n5uFp9JVBfWkEDcVxapaw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a3/0c03a7-4bc5-4a46-8f02-d3dd0938f927/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 02 Jan 2023 07:35:42 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 37.140.221.0/24
IP: 2a11:7b00::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:68:5c:1e:62:11:2d:33:95:93:fb:78:43:87:09:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:35:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a19a39c349f9b85a7d25505f5a4103715c5aa5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:2a:ee:a1:d5:14:70:76:a8:8d:4d:a3:36:da:
54:7f:89:d5:d9:4c:95:05:dc:94:a1:b7:ee:4a:73:
81:c1:55:72:fb:94:9d:17:d1:e1:63:af:ac:38:b3:
28:47:b4:27:09:7c:d6:08:5f:ee:66:ce:70:5e:1f:
55:cd:e4:4e:62:d7:82:80:b2:8c:15:19:c2:59:0c:
27:48:ae:e6:34:8e:49:25:b9:08:3b:7c:5f:fd:53:
ab:7b:9d:55:73:8b:83:02:62:6d:8e:02:03:01:1d:
b5:dc:d3:4b:27:6f:da:65:b4:c6:b0:90:0a:18:1a:
a7:2a:0d:16:a4:a5:c9:ab:0a:77:ad:02:2d:74:db:
30:77:6e:f2:12:06:d5:8c:f9:71:a8:8f:4c:6c:d5:
da:af:55:84:cf:32:f1:7e:05:58:61:58:96:22:f6:
84:b8:bf:04:d9:44:2b:41:49:44:80:63:71:1d:ae:
68:ee:45:28:47:7d:dd:6a:9c:83:29:e8:63:71:50:
1d:3b:12:12:f8:7c:22:23:75:42:85:c0:ab:c3:b9:
6e:24:a1:ae:70:0f:ac:33:df:d0:55:38:ed:cf:c6:
05:d0:8c:2c:f6:64:87:f1:92:9f:63:31:13:11:55:
08:16:ec:cc:8a:80:98:dc:70:41:a5:d7:20:2d:51:
59:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9A:39:C3:49:F9:B8:5A:7D:25:50:5F:5A:41:03:71:5C:5A:A5:AC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0c03a7-4bc5-4a46-8f02-d3dd0938f927/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0c03a7-4bc5-4a46-8f02-d3dd0938f927/1/oZo5w0n5uFp9JVBfWkEDcVxapaw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.221.0/24
IPv6:
2a11:7b00::/29
Signature Algorithm: sha256WithRSAEncryption
4a:35:28:08:ba:b1:ce:3b:35:96:fd:18:83:cc:3a:c1:91:80:
36:ce:b9:31:31:a9:f8:57:eb:9d:c5:a9:ca:04:1c:b7:c1:d7:
b1:a1:5f:cd:1b:df:72:8c:8f:74:f7:ae:0e:cd:c8:d4:5a:f8:
86:75:b5:e9:94:9b:31:6b:f8:60:48:50:3a:aa:6e:61:2a:ef:
45:d0:eb:b5:d7:3a:cf:ee:4b:a0:22:8f:fc:4e:1d:29:e9:53:
1f:e7:34:77:1c:6f:07:2c:63:bb:0b:16:c2:75:9a:1b:14:73:
7c:0f:5b:54:5d:1a:3a:6f:46:f1:5c:c2:28:28:74:83:d8:26:
43:02:3c:00:17:03:8e:8d:7e:1c:55:fa:60:d2:72:6f:39:da:
df:c7:df:5d:1a:6b:dc:0e:53:35:94:a0:03:2f:c5:cc:c7:f9:
2f:4e:29:c1:46:12:2e:2d:9c:94:2d:c2:2d:67:cf:cf:33:e0:
90:6c:a5:00:4a:12:77:4a:f9:be:5a:cd:b2:28:cd:e5:23:a8:
4c:d3:4c:5e:09:0e:72:97:cd:6c:d1:95:b0:9f:0a:50:a6:01:
12:91:5f:5f:f1:16:b1:09:b8:d5:a4:3d:ed:94:f9:e5:e0:ba:
92:c3:dc:ca:1c:78:10:e2:e9:03:a8:a9:f9:4c:50:fb:2f:7b:
28:f6:da:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:31:38 2025 by rpki-client