Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
File: wQmKGQW70zgVM4KPa3_SJxcEMe8.cer (raw, json)
Hash identifier: DnBnpDLkB+wHtDUi3bAvhn9ldV1mJ9w3Xv9fKUWasOc=
Subject key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FE28F5EDC94283611BAB22C5BD2F1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:22 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 57324
AS: 211513
IP: 79.132.195.0 -- 79.132.199.255
IP: 86.111.144.0/22
IP: 109.230.112.0/20
IP: 122.102.116.0/22
IP: 185.113.105.0/24
IP: 185.113.107.0/24
IP: 202.164.192.0/20
IP: 2a03:c340::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e2:8f:5e:dc:94:28:36:11:ba:b2:2c:5b:d2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:84:40:db:54:43:50:cc:f1:60:3d:23:1c:04:
a0:5b:88:68:77:ca:58:73:b9:43:98:5d:84:c7:c0:
e1:68:a7:00:08:75:30:da:ce:45:ca:b8:9e:96:e2:
a3:2b:c7:28:1a:00:3d:c5:c9:20:7f:03:94:85:af:
ae:8e:1d:9a:0e:64:db:bd:ee:e5:f0:d2:30:13:f8:
91:3c:97:5c:06:5f:6d:cb:5f:45:3c:31:2e:b6:16:
0d:3b:be:25:c4:ba:fd:04:d4:cd:96:3c:3e:19:22:
d9:10:a6:1c:07:dc:a0:f7:8d:5e:74:e8:17:0f:96:
6a:43:0d:40:1d:af:7a:4e:be:47:96:11:e8:83:95:
8c:fc:ce:6c:9c:ec:ad:7c:99:ec:41:fe:4c:11:fb:
2a:86:5b:f0:eb:3e:85:f3:54:b3:6c:ed:e4:d1:03:
24:a6:91:a3:25:95:b1:26:f2:e8:1e:ed:e3:83:1f:
64:65:e9:ee:59:b9:46:42:5e:0b:68:70:37:f3:6c:
5f:94:25:e3:33:4e:e5:3d:df:65:c7:62:db:6b:90:
22:61:48:15:26:78:9c:b7:c6:8a:cd:42:47:e5:d1:
37:a2:a2:4d:2a:85:76:65:5c:8b:d2:b3:b2:6b:f8:
07:85:89:2b:e3:1d:b8:34:e7:5f:fc:12:5d:11:3c:
2b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.132.195.0-79.132.199.255
86.111.144.0/22
109.230.112.0/20
122.102.116.0/22
185.113.105.0/24
185.113.107.0/24
202.164.192.0/20
IPv6:
2a03:c340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57324
211513
Signature Algorithm: sha256WithRSAEncryption
20:8b:28:ce:52:f7:10:36:01:d5:3b:2a:1b:95:ea:11:59:41:
64:9e:df:f3:ab:49:98:a7:ef:96:ad:01:e5:ed:31:81:2b:c7:
2f:a6:c2:11:0f:a5:ca:96:48:ec:ea:9d:e9:08:a2:ac:4e:e9:
7a:c8:ac:1d:72:97:1f:90:c1:3b:e0:bd:be:e9:44:38:67:39:
84:79:d4:f6:3d:86:32:64:7d:ca:e5:eb:6f:77:c0:4b:e1:40:
87:c3:ee:df:75:25:db:c0:48:85:0b:13:14:fe:50:e1:8b:70:
88:02:0d:78:1c:36:e1:85:c2:a2:e3:00:ea:d9:02:2e:7d:1e:
ec:21:75:31:ad:a2:29:ff:0f:2b:8c:9c:ad:48:ee:bb:1b:f2:
66:00:33:f8:57:31:01:28:c0:02:5a:c7:38:6a:b8:79:64:ff:
99:0d:0a:3a:58:33:0d:6f:3b:bb:0d:89:82:0e:cd:54:63:54:
ea:48:ad:0c:39:29:aa:64:a5:8d:67:47:ef:9e:49:aa:80:8a:
c9:79:c1:92:81:63:7e:29:4e:61:41:73:37:aa:09:cc:91:8b:
ab:47:77:01:17:0a:ac:76:53:8f:16:67:7c:6e:b7:ee:e7:92:
7a:38:43:fb:98:1c:96:86:ca:70:cb:d1:c3:58:96:ff:0f:2e:
bf:b7:de:17
-----BEGIN CERTIFICATE-----
MIIF1DCCBLygAwIBAgISAZQiH+KPXtyUKDYRurIsW9LxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTM0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTA5OGExOTA1YmJkMzM4MTUzMzgyOGY2YjdmZDIyNzE3MDQzMWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4RA21RDUMzxYD0jHASgW4hod8pY
c7lDmF2Ex8DhaKcACHUw2s5FyrieluKjK8coGgA9xckgfwOUha+ujh2aDmTbve7l
8NIwE/iRPJdcBl9ty19FPDEuthYNO74lxLr9BNTNljw+GSLZEKYcB9yg941edOgX
D5ZqQw1AHa96Tr5HlhHog5WM/M5snOytfJnsQf5MEfsqhlvw6z6F81SzbO3k0QMk
ppGjJZWxJvLoHu3jgx9kZenuWblGQl4LaHA382xflCXjM07lPd9lx2Lba5AiYUgV
Jnict8aKzUJH5dE3oqJNKoV2ZVyL0rOya/gHhYkr4x24NOdf/BJdETwrowIDAQAB
o4IC4DCCAtwwHQYDVR0OBBYEFMEJihkFu9M4FTOCj2t/0icXBDHvMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgyLzJlZWQ3
MS00NjY1LTQ5NDgtYTNjNS1iMmE3MTNkMmVhYjIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIvMmVlZDcx
LTQ2NjUtNDk0OC1hM2M1LWIyYTcxM2QyZWFiMi8xL3dRbUtHUVc3MHpnVk00S1Bh
M19TSnhjRU1lOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGCCsGAQUF
BwEHAQH/BEswSTA4BAIAATAyMAwDBABPhMMDBANPhMADBAJWb5ADBARt5nADBAJ6
ZnQDBAC5cWkDBAC5cWsDBATKpMAwDQQCAAIwBwMFAyoDw0AwHwYIKwYBBQUHAQgB
Af8EEDAOoAwwCgIDAN/sAgMDOjkwDQYJKoZIhvcNAQELBQADggEBACCLKM5S9xA2
AdU7KhuV6hFZQWSe3/OrSZin75atAeXtMYErxy+mwhEPpcqWSOzqnekIoqxO6XrI
rB1ylx+QwTvgvb7pRDhnOYR51PY9hjJkfcrl6293wEvhQIfD7t91JdvASIULExT+
UOGLcIgCDXgcNuGFwqLjAOrZAi59HuwhdTGtoin/DyuMnK1I7rsb8mYAM/hXMQEo
wAJaxzhquHlk/5kNCjpYMw1vO7sNiYIOzVRjVOpIrQw5KapkpY1nR++eSaqAisl5
wZKBY34pTmFBczeqCcyRi6tHdwEXCqx2U48WZ3xut+7nkno4Q/uYHJaGynDL0cNY
lv8PLr+33hc=
-----END CERTIFICATE-----
Generated at Sun Apr 6 13:56:55 2025 by rpki-client