Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xZR-zIaDrQ282VqPMy8MqhNXR5A.cer
File: xZR-zIaDrQ282VqPMy8MqhNXR5A.cer (raw, json)
Hash identifier: JcAjOXTG2h+DvkxT/C07vM1BAa7+DC7HhzUSOsdMhTQ=
Subject key identifier: C5:94:7E:CC:86:83:AD:0D:BC:D9:5A:8F:33:2F:0C:AA:13:57:47:90
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5F5B2A42371AA07D3947F9C70CB9B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.netiface.net/repo/Civilized/0/C5947ECC8683AD0DBCD95A8F332F0CAA13574790.mft
caRepository: rsync://rpki.netiface.net/repo/Civilized/0/
Notify URL: https://rpki.netiface.net/rrdp/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 216360
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:f5:b2:a4:23:71:aa:07:d3:94:7f:9c:70:cb:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c5947ecc8683ad0dbcd95a8f332f0caa13574790
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b1:fd:88:ef:16:b4:e0:fc:7a:e0:44:e1:f9:
8e:6e:e0:b1:9a:ca:6b:3e:e0:75:04:b8:e8:3b:cb:
30:70:35:2c:05:a6:90:81:da:a3:57:c4:bd:b5:66:
e1:bf:56:f7:fc:a7:90:c7:ce:e0:e9:6b:9f:67:87:
0b:62:6b:b2:1b:fd:d2:34:a6:a3:f9:0f:4a:32:23:
9f:c8:ab:63:9a:10:76:9d:c4:51:f6:16:05:ad:cd:
3e:99:a9:9c:9a:d8:c4:ea:bb:bf:7b:b3:25:84:9f:
fe:e8:58:03:c5:8a:c5:bf:49:db:01:3c:2e:67:98:
cc:6f:df:b2:ac:0b:02:a3:42:88:77:62:9d:56:6d:
a7:1b:32:e0:e1:84:ec:5d:a5:56:0e:ea:c5:2d:70:
66:e0:73:a0:03:8d:79:13:3c:e5:98:dc:ec:ac:66:
16:30:a3:73:a9:be:50:7b:90:ec:4e:f7:4a:62:a1:
84:c8:19:d0:bc:d8:1b:35:0c:ad:03:43:43:89:a3:
7b:dc:72:4a:68:ac:05:42:4f:38:de:44:91:64:b1:
26:7f:f9:af:d3:aa:8a:04:2d:2f:f6:cf:dc:b3:06:
ea:98:47:82:60:50:c3:fe:0f:02:1f:54:48:8a:00:
83:a5:ac:72:04:c3:62:44:61:e3:ea:42:05:fc:96:
d1:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:94:7E:CC:86:83:AD:0D:BC:D9:5A:8F:33:2F:0C:AA:13:57:47:90
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.netiface.net/repo/Civilized/0/
RPKI Manifest - URI:rsync://rpki.netiface.net/repo/Civilized/0/C5947ECC8683AD0DBCD95A8F332F0CAA13574790.mft
RPKI Notify - URI:https://rpki.netiface.net/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216360
Signature Algorithm: sha256WithRSAEncryption
25:e9:04:0c:94:18:7d:8d:c4:eb:45:8e:e1:2f:4c:18:02:c4:
e7:31:6f:e5:8a:6e:3a:b9:ae:4e:23:cb:46:32:8e:ca:05:28:
09:5c:a0:e8:06:dd:74:86:64:74:62:e5:fe:8c:07:1c:00:49:
32:6c:2c:05:1e:da:db:bb:3a:00:2f:62:4b:b6:59:11:27:5b:
5a:3d:0d:e4:2d:e9:92:75:a2:3e:2b:6d:bd:18:89:fd:3d:88:
21:e1:81:95:4a:44:ca:83:32:8e:8c:29:f2:62:fe:5b:3c:d9:
6c:4c:7b:39:5c:48:4c:56:38:26:70:1e:bf:2d:ba:3d:ed:fa:
3d:10:7f:ef:f6:0b:9b:87:9b:24:b1:1e:38:55:67:85:0c:70:
5c:74:be:6f:62:ed:45:b7:84:57:2e:53:88:0f:15:07:5a:6e:
e4:cb:64:62:cb:e3:0f:e5:68:7c:88:bd:36:d3:1c:e6:1c:ac:
c7:d4:d0:a7:50:17:56:18:6f:49:42:a7:c6:5a:09:00:72:b8:
69:12:ed:fd:31:eb:f9:38:31:51:2e:53:ca:75:7d:c3:d5:df:
39:67:bc:ba:c1:75:c8:42:b5:cc:e1:93:31:e5:76:87:4d:11:
e5:91:73:7b:01:9e:01:0d:ca:9c:11:ba:93:14:34:38:c6:2e:
a1:07:37:03
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Apr 4 22:59:20 2025 by rpki-client