Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
File: w3i8O9NQ7txPN3wiRVayUNpt3m8.cer (raw, json)
Hash identifier: CL92+hmKt/P5F5Zeda55eSZIuGa2sQYaSZYAUxXgv6k=
Subject key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA40B89465B9124A33B1067467C644
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:48:01 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 5.28.192.0/18
IP: 77.37.0.0/17
IP: 91.108.64.0/18
IP: 93.127.128.0/17
IP: 185.171.76.0/22
IP: 2a01:4d0::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:40:b8:94:65:b9:12:4a:33:b1:06:74:67:c6:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:92:22:7c:cf:9f:b4:99:a7:a7:2c:60:b6:11:
2c:63:c4:e1:e8:7f:7a:62:f7:d9:c5:d4:e4:0a:5d:
c4:29:a4:f6:0b:5c:0d:aa:3a:51:ce:95:87:90:bc:
80:5f:b1:66:d8:07:de:94:d2:f2:24:96:32:39:84:
8a:3a:1c:8a:23:d8:ef:a6:be:ca:23:e8:fd:fb:db:
59:42:cd:68:d6:62:87:0c:ff:77:69:bd:71:1f:2e:
82:61:c7:7c:48:7e:93:80:1c:33:fb:97:b9:54:63:
f5:68:61:e8:c6:b4:1c:a0:54:a3:3c:58:69:d2:f7:
98:95:69:b1:b7:c8:1b:87:fa:bd:de:bc:01:7b:76:
3d:e0:2a:b6:72:98:af:c5:d5:b5:1b:41:b0:48:7f:
09:7e:b8:fa:7e:af:2f:5b:3d:8f:e6:64:93:6e:60:
c6:c9:07:46:6e:f4:48:13:5f:0b:43:e8:a1:fb:14:
17:cc:d0:1d:7d:b9:6c:44:2e:bf:7a:5f:b1:82:3c:
0c:6a:98:58:69:b1:cd:34:18:da:da:de:5b:f4:6f:
c6:6a:90:94:a2:8c:e2:dc:09:a7:a6:40:40:f2:45:
15:e2:1d:69:eb:7f:1a:20:48:a4:91:a9:91:b7:76:
53:1e:5f:62:15:75:f8:5e:0f:63:6e:2d:ff:42:4e:
74:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.28.192.0/18
77.37.0.0/17
91.108.64.0/18
93.127.128.0/17
185.171.76.0/22
IPv6:
2a01:4d0::/32
Signature Algorithm: sha256WithRSAEncryption
37:7d:65:5d:8d:7f:e6:13:ad:38:e4:41:60:93:9c:a6:24:ba:
fd:5b:9d:3b:2c:a1:ec:7e:06:8f:48:2a:73:48:3c:92:e2:64:
71:56:9d:b1:71:9a:72:75:6b:13:39:14:e3:30:aa:d3:ac:c1:
98:8d:54:d6:17:34:42:ab:48:1a:ca:9c:26:de:99:40:82:24:
d8:4c:52:01:bd:b2:e0:5c:62:30:8b:de:f7:57:eb:ad:64:00:
c3:c1:e4:c7:c0:88:bc:37:48:c2:e5:01:39:1d:66:fe:08:81:
5b:32:99:79:8c:69:97:30:88:28:a0:af:d3:b0:4f:b6:77:0f:
92:0c:24:f1:9d:1d:eb:7e:53:5c:09:e0:af:fe:30:2b:9b:69:
90:51:2a:1e:55:72:b8:9c:20:f4:69:07:e8:cb:6e:9e:27:2b:
e8:97:56:da:0e:99:f5:83:76:47:f0:11:77:6b:bd:4d:7a:d3:
c4:c5:48:83:83:0b:b9:4c:f7:de:07:b0:18:77:48:3b:cb:29:
9e:43:7c:a7:19:23:bf:8d:36:fe:10:66:34:e0:a9:b8:ea:b9:
44:36:20:5a:bc:ae:70:78:f7:9d:8b:b2:6a:6e:9c:3a:f7:8f:
b5:fb:bd:82:bb:c3:2b:75:50:cf:ed:f9:bc:06:21:59:1e:18:
93:d0:9d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:37:31 2025 by rpki-client