Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w3539QNrxeAH-q3oRnVzboB0eJ0.cer
File: w3539QNrxeAH-q3oRnVzboB0eJ0.cer (raw, json)
Hash identifier: HnEQWrVJ7BelB1EoOLPQe1216i63//RbaJm1kykS2UI=
Subject key identifier: C3:7E:77:F5:03:6B:C5:E0:07:FA:AD:E8:46:75:73:6E:80:74:78:9D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01856E9FF3FF32146574A22F668A0C409C72
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://r.magellan.ipxo.com/repo/7bbaa5d0-a50c-4178-8573-8045048b7bc3-1/0/C37E77F5036BC5E007FAADE84675736E8074789D.mft
caRepository: rsync://r.magellan.ipxo.com/repo/7bbaa5d0-a50c-4178-8573-8045048b7bc3-1/0
Notify URL: https://magellan.ipxo.com/rrdp/notification.xml
Certificate not before: Sun 01 Jan 2023 18:37:34 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 91.233.198.0/24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:9f:f3:ff:32:14:65:74:a2:2f:66:8a:0c:40:9c:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:37:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c37e77f5036bc5e007faade84675736e8074789d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3e:3a:b5:74:58:6b:99:73:69:c9:1e:d3:ab:
27:6a:81:2c:82:aa:9e:a4:ad:31:7b:e4:97:42:dc:
fe:87:e7:81:8a:70:65:a4:0c:c8:ce:52:6c:be:00:
1c:17:7c:e0:4c:b7:0c:fa:6e:d6:43:ce:d8:e6:14:
d9:3d:29:01:05:2b:75:97:18:3d:25:d3:89:f9:02:
82:db:52:28:e1:c9:75:0c:08:b7:2a:cd:2a:05:e7:
5f:54:15:a2:3d:c4:48:a8:b2:b7:74:86:ac:95:ae:
a1:78:a5:19:23:e1:14:ca:cb:04:3c:c3:fd:f5:a6:
7f:2d:8c:39:3e:37:a0:29:fe:75:40:a5:7b:20:5c:
c1:78:4c:30:45:6f:f9:1f:52:a7:02:08:bf:8c:6f:
24:16:37:4c:bf:e6:d1:78:aa:97:39:63:39:8e:73:
8b:f9:15:6e:3f:cc:c6:61:7a:2b:bb:c9:40:0e:c4:
83:de:e2:0c:2a:e2:fe:20:5b:1f:5f:b9:37:41:75:
27:45:73:06:e9:e2:bc:4e:64:73:27:2e:81:a1:48:
58:23:81:b7:cf:36:7c:72:0c:a9:dd:37:dc:4b:3d:
09:2b:e3:4a:c2:e8:9d:e2:cf:f5:f1:5f:95:8c:36:
8e:04:97:cc:6b:2e:85:06:63:30:43:06:25:5b:21:
a9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7E:77:F5:03:6B:C5:E0:07:FA:AD:E8:46:75:73:6E:80:74:78:9D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://r.magellan.ipxo.com/repo/7bbaa5d0-a50c-4178-8573-8045048b7bc3-1/0
RPKI Manifest - URI:rsync://r.magellan.ipxo.com/repo/7bbaa5d0-a50c-4178-8573-8045048b7bc3-1/0/C37E77F5036BC5E007FAADE84675736E8074789D.mft
RPKI Notify - URI:https://magellan.ipxo.com/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.198.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:79:9b:ae:d9:1c:d3:c2:ad:89:e7:43:63:f6:14:53:ee:21:
bd:31:da:da:6f:e9:db:5c:db:87:4f:b3:52:53:b4:b3:dd:d4:
a1:86:33:4c:bd:b1:0e:92:ab:1d:f9:15:b4:14:34:a0:9e:8c:
7d:15:31:61:24:29:42:12:f1:fe:fd:35:38:84:f3:9e:8d:fe:
78:25:c6:be:5d:bb:0c:3b:01:0e:9f:a0:0f:f1:f8:76:4e:1b:
7d:f4:09:4e:76:a5:1c:47:b5:9a:c1:2c:da:30:01:6b:a0:7e:
1d:11:5d:68:1b:b6:36:57:54:a8:30:22:ce:67:5d:7b:7f:7c:
44:a5:d7:aa:b4:df:9f:68:37:ac:54:fc:e8:2b:2b:d7:b5:a2:
2f:96:a4:64:8c:5d:49:68:77:87:d1:ea:2d:34:0f:cf:ca:84:
67:f1:3f:06:57:e5:13:0d:b4:6d:b4:95:84:64:ea:f1:db:db:
c0:93:2d:9f:fa:c6:2b:03:7f:77:73:bf:56:0b:d2:d1:02:60:
f4:99:0b:47:48:8c:83:5b:50:9e:65:1f:48:02:5e:ac:88:0f:
67:94:32:0a:0d:b1:cd:2c:2d:86:c6:4d:57:f4:08:4a:e7:30:
26:23:68:51:c0:ec:25:c9:53:7b:e0:3b:58:6d:7b:eb:8a:d7:
c2:52:74:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:03:47 2024 by rpki-client on console-fra.rpki-client.org