Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pQ8hw9yTdX_AMoKoNWANZZ-WHo4.cer
File: pQ8hw9yTdX_AMoKoNWANZZ-WHo4.cer (raw, json)
Hash identifier: mdvgzhdY+WxN+xnZOQu09mWe0e/X7UnMyXewypBIKD0=
Subject key identifier: A5:0F:21:C3:DC:93:75:7F:C0:32:82:A8:35:60:0D:65:9F:96:1E:8E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5B60CCA83E8F12754840A358F7BCC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/pQ8hw9yTdX_AMoKoNWANZZ-WHo4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:47:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 91.207.64.0/23
IP: 91.208.247.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:b6:0c:ca:83:e8:f1:27:54:84:0a:35:8f:7b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a50f21c3dc93757fc03282a835600d659f961e8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d5:bb:46:d4:a1:87:cc:18:11:c2:ab:3b:7b:
66:c6:52:11:f4:18:46:be:b1:dd:e2:88:aa:cd:d9:
de:42:0e:8c:c7:61:ca:bb:e5:28:6a:b8:cb:a4:31:
19:c0:f9:83:2f:be:20:7d:70:97:61:95:d7:6c:a5:
9c:09:65:3a:e4:67:e6:72:de:6a:02:64:0b:64:6b:
fa:a6:cf:be:57:b6:a6:78:b2:76:1f:1e:c9:ed:40:
fd:a3:bc:92:51:bd:4f:3b:67:f3:dc:c3:ae:cf:cb:
49:63:86:bd:0f:e0:a6:70:f3:7c:fe:35:76:29:46:
58:09:9d:9a:f8:0a:e2:f6:06:39:ed:01:02:33:59:
65:d5:4c:40:5e:36:28:fd:2d:79:3c:50:fc:ef:83:
c7:27:93:cb:1f:56:76:a8:ef:59:70:fd:50:6b:41:
83:6e:59:d3:8c:32:81:db:a8:35:73:34:ab:c9:ab:
f0:d2:29:1f:22:f6:38:31:0e:e3:e4:fc:a5:c1:01:
3c:17:8d:44:ab:f5:4e:a7:b0:24:0e:72:5a:d2:ef:
06:9d:b7:e9:a1:cb:31:27:7d:cf:3e:d3:a9:d8:d1:
e7:ae:66:8d:9a:26:69:2b:13:c1:0e:a5:bd:c5:53:
db:89:db:08:e8:0a:70:7a:ff:9e:0d:3f:e3:87:f4:
14:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0F:21:C3:DC:93:75:7F:C0:32:82:A8:35:60:0D:65:9F:96:1E:8E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/pQ8hw9yTdX_AMoKoNWANZZ-WHo4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.64.0/23
91.208.247.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:a3:3e:9e:bb:6a:0f:54:5d:97:91:4d:4e:fe:0f:0d:be:30:
2b:8f:20:f9:bc:a4:03:5b:3a:cb:da:a5:8f:cf:97:df:1d:ef:
66:e0:d5:f3:50:42:51:34:18:0e:b6:78:a6:19:0c:69:12:28:
02:c9:96:71:31:07:a3:0a:0f:bc:9c:53:60:36:41:4b:91:e1:
23:19:96:cf:de:5a:a1:74:42:5c:16:bc:6f:9e:9e:78:c9:fa:
e7:24:c8:ea:7c:6c:2f:39:03:96:6d:c9:be:95:0e:44:5e:03:
4b:2e:3f:65:24:c0:12:db:60:56:61:67:dc:dc:8a:da:8b:39:
98:5f:7f:3e:6e:90:e8:c2:e0:64:5b:c8:0a:b2:52:68:51:6e:
24:7e:8a:be:47:a6:03:99:7c:ba:12:0e:1a:e7:04:7c:63:98:
33:7c:c7:b5:9e:12:e8:ab:1e:01:3f:cb:d2:11:cf:d6:2b:0c:
46:6f:be:a0:d3:3b:32:7f:d9:34:d7:c0:3e:43:90:b2:2e:b9:
b3:3b:a3:de:37:5d:ef:37:47:88:37:85:1e:26:22:92:8e:a6:
45:b6:e7:61:cf:28:29:0a:c7:19:85:2b:22:cf:5b:5e:93:fb:
2b:3c:fd:13:ea:c9:2d:90:53:2d:8b:d8:73:5d:e0:c9:a0:9d:
6f:78:d7:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:31:39 2025 by rpki-client