Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/z33FpPcC09ydVuo1ue4gLsVJZH4.cer
File: z33FpPcC09ydVuo1ue4gLsVJZH4.cer (raw, json)
Hash identifier: lymfQ015SJ7a8dye7CuoUpgzDU72ygehaFCGErum0y0=
Subject key identifier: CF:7D:C5:A4:F7:02:D3:DC:9D:56:EA:35:B9:EE:20:2E:C5:49:64:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194206FAA190EEA1C49DE0E4880051223F0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.pudu.be/repo/pudu/1/CF7DC5A4F702D3DC9D56EA35B9EE202EC549647E.mft
caRepository: rsync://rpki.pudu.be/repo/pudu/1/
Notify URL: https://rpki.pudu.be/rrdp/notification.xml
Certificate not before: Wed 01 Jan 2025 05:56:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 56762
IP: 2001:67c:81c::/48
IP: 2001:67c:b88::/48
IP: 2001:67c:b8c::/48
IP: 2001:67c:b90::/48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:6f:aa:19:0e:ea:1c:49:de:0e:48:80:05:12:23:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:56:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf7dc5a4f702d3dc9d56ea35b9ee202ec549647e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b7:1d:16:b8:f2:a6:11:c1:f0:a1:64:8a:5b:
c5:96:d6:bb:69:97:37:97:16:92:4a:15:7f:0f:31:
bd:8e:e6:cc:d9:45:cd:9a:69:72:7b:4c:01:f3:de:
a3:80:c1:01:25:1d:f0:38:2a:4a:10:3d:35:e6:82:
0a:69:eb:c6:cb:8d:d9:b5:d9:1b:d9:53:4a:04:cd:
e1:8d:16:d9:be:07:50:bc:49:fb:3f:e6:06:c0:5b:
0c:e6:4e:80:4a:2f:c3:12:c0:8e:10:f5:06:06:59:
d3:73:1c:18:ee:27:72:59:ff:0e:67:37:3c:a7:ff:
2a:c4:9e:64:19:2a:43:b0:06:9d:ac:01:e4:26:07:
0b:b6:c1:9c:d2:e9:b6:2e:59:b5:41:79:74:1d:05:
72:f5:86:74:2d:80:e5:76:ec:b9:cc:da:ed:61:21:
f5:25:14:ac:df:25:18:5f:69:27:25:1c:30:0b:90:
59:ae:95:32:85:56:83:29:30:4c:76:1f:87:41:ed:
f4:36:27:20:a4:ad:8c:e8:eb:71:c5:99:7a:d5:df:
c2:4a:2c:99:8e:a4:71:8b:8b:cd:0a:c0:60:59:3c:
c9:88:79:6e:90:44:f1:fa:d9:79:a0:46:6f:aa:a5:
02:da:cc:e0:20:92:26:bd:e8:f1:25:53:82:61:47:
05:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:7D:C5:A4:F7:02:D3:DC:9D:56:EA:35:B9:EE:20:2E:C5:49:64:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.pudu.be/repo/pudu/1/
RPKI Manifest - URI:rsync://rpki.pudu.be/repo/pudu/1/CF7DC5A4F702D3DC9D56EA35B9EE202EC549647E.mft
RPKI Notify - URI:https://rpki.pudu.be/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:81c::/48
2001:67c:b88::/48
2001:67c:b8c::/48
2001:67c:b90::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56762
Signature Algorithm: sha256WithRSAEncryption
28:ea:4e:37:e1:2a:27:b1:cc:89:be:16:68:1c:f1:94:9d:13:
cb:ca:e9:b1:4f:15:95:a1:37:47:5f:80:a8:15:20:3d:60:c5:
08:fb:ff:13:37:99:a0:ad:77:b0:bc:51:fb:df:b8:5b:2e:89:
ef:ed:53:0d:f3:b0:2a:28:69:ee:d8:89:cf:b0:59:b3:fb:c8:
4d:57:23:14:d5:3a:a9:06:c6:d9:e7:0b:93:d5:79:c9:cd:b2:
af:db:84:28:7f:22:5a:c8:fb:49:da:b8:ab:77:62:19:43:63:
d3:ef:47:97:1d:02:7d:93:cb:87:d3:16:36:6e:56:f5:86:80:
61:c3:39:7e:10:0b:4f:9f:d5:34:e0:c6:2a:8c:4d:8b:63:70:
7a:22:ee:4d:91:79:1d:63:df:e6:b0:96:69:d2:9d:d1:88:35:
27:00:62:98:65:53:80:8b:c1:37:18:31:46:44:84:7e:ac:02:
05:cd:b7:66:00:bd:41:bf:72:8f:d5:0e:4a:cd:98:71:41:99:
6d:ec:e1:04:53:81:96:94:14:05:79:ea:4c:67:6f:5f:4b:7a:
2c:d6:9e:08:a0:72:76:36:ab:bf:93:93:7a:9f:e0:50:d7:41:
ef:fd:5f:89:e7:fd:e1:34:4c:a8:94:5b:a0:de:44:c2:3c:26:
a9:66:e8:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 11:19:27 2025 by rpki-client