Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/siYPKCQDuDqEgg3W1RcEJ0YiyzI.cer
File: siYPKCQDuDqEgg3W1RcEJ0YiyzI.cer (raw, json)
Hash identifier: wKB7WtcE/qgLE/rk4IqMj9ShQX40bHXyWlnmSpqwoII=
Subject key identifier: B2:26:0F:28:24:03:B8:3A:84:82:0D:D6:D5:17:04:27:46:22:CB:32
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: A46B0AA0EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7c/485d77-8010-4d96-a116-9a36075b9300/1/siYPKCQDuDqEgg3W1RcEJ0YiyzI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7c/485d77-8010-4d96-a116-9a36075b9300/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 01 Jan 2022 10:04:57 +0000
Certificate not after: Sat 01 Jul 2023 00:00:00 +0000
Subordinate resources: AS: 30728
IP: 82.215.64.0/23
IP: 82.215.70.0/23
IP: 82.215.76.0/24
IP: 82.215.84.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 706170495210 (0xa46b0aa0ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2260f282403b83a84820dd6d51704274622cb32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:24:43:51:b6:74:dc:6d:d1:97:0d:4f:50:c7:
46:2c:46:c1:50:52:d1:4e:da:cc:8b:1c:b7:14:ce:
84:55:6a:05:61:9a:76:a9:0c:4d:d3:ff:b6:f1:a2:
75:87:99:50:17:33:e1:27:f4:c8:97:b5:fa:34:f4:
eb:8c:19:5e:83:b1:25:7a:35:6f:7e:13:00:a5:88:
18:a1:b3:cc:14:38:aa:ac:a4:e9:a0:1d:5e:30:85:
67:ef:88:f8:af:d6:bd:bb:3d:63:ba:f2:7a:0d:72:
37:d3:83:43:9f:be:29:ab:12:87:58:a0:90:0d:7f:
aa:0e:24:06:fb:26:b0:73:a2:ac:35:e3:90:9f:63:
44:73:b2:1c:58:79:24:ca:97:6f:f1:43:84:b7:69:
16:55:55:ad:22:40:fe:b2:8d:e0:54:08:0f:81:4f:
5b:18:3e:46:a2:6d:ed:4c:49:60:94:6f:19:25:7b:
14:ba:f5:44:42:d4:5b:14:fa:c5:22:8d:2d:11:63:
98:c4:14:d4:70:94:5f:6c:67:ce:e4:01:fb:3b:46:
f8:62:fa:60:12:cf:e0:08:67:bd:9e:95:84:09:a8:
60:d6:db:e1:dc:df:d8:99:ff:53:05:7d:d9:fc:50:
4d:d6:fe:d3:06:48:fe:b8:75:d4:54:15:37:c4:f0:
3c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:26:0F:28:24:03:B8:3A:84:82:0D:D6:D5:17:04:27:46:22:CB:32
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/485d77-8010-4d96-a116-9a36075b9300/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/485d77-8010-4d96-a116-9a36075b9300/1/siYPKCQDuDqEgg3W1RcEJ0YiyzI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/23
82.215.70.0/23
82.215.76.0/24
82.215.84.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
30728
Signature Algorithm: sha256WithRSAEncryption
6f:bc:16:83:49:71:e9:3c:cd:d2:92:a2:bd:96:12:d6:18:2a:
c3:02:49:7c:45:06:f3:8e:66:83:b5:81:68:f1:90:13:37:27:
5c:e4:64:e2:82:41:b4:8a:26:b2:a6:8d:36:03:42:a5:ee:7b:
ba:c2:1d:43:73:36:b4:50:34:4b:98:f2:1d:76:e1:96:19:68:
e3:1b:5c:58:5d:ea:25:c5:bd:cb:62:a0:07:60:9d:f9:4f:7d:
1b:16:12:18:18:34:a6:02:29:7b:34:01:df:35:2c:89:01:dd:
f2:d9:e4:04:f8:71:4f:78:df:37:15:7a:92:0a:ab:22:64:ff:
f3:11:bd:8d:13:5d:33:1f:02:ae:0a:74:8b:21:e9:fe:5f:94:
ba:e1:43:f2:1d:bc:1e:12:11:b2:9b:f3:42:3e:a1:34:6a:48:
58:91:a6:d2:1d:dd:90:b1:8e:b8:e8:91:21:7e:0c:32:58:88:
2d:49:b3:fe:c4:02:f6:38:66:23:0d:8d:c6:39:c0:0c:44:34:
46:4e:d4:ca:ee:2b:66:45:28:b2:da:a2:a3:e5:9a:71:1a:23:
22:9e:42:6c:2b:b1:b9:31:b8:9c:da:be:75:49:0a:d0:e2:ea:
57:05:9f:aa:86:1a:23:7a:8f:c8:ea:37:f7:fc:84:ab:b7:2d:
f2:7f:9d:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:45:11 2025 by rpki-client