Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zvzkSb6o3q7bGATbolxYTfWHPcQ.cer
File: zvzkSb6o3q7bGATbolxYTfWHPcQ.cer (raw, json)
Hash identifier: VquQ6AP9nIj8WUjujwAmO4xsbPLPbhlQoLbv39KsW3k=
Subject key identifier: CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194206CE8BE38672AEA3830149275A1187E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:53:15 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 2.58.84.0/22
IP: 45.8.172.0/22
IP: 45.13.148.0/22
IP: 45.66.148.0/22
IP: 62.3.18.0/24
IP: 62.122.185.0 -- 62.122.186.255
IP: 83.138.50.0/24
IP: 89.107.9.0/24
IP: 130.193.75.0/24
IP: 146.19.22.0/24
IP: 146.19.53.0/24
IP: 146.19.215.0 -- 146.19.216.255
IP: 176.126.105.0/24
IP: 185.212.113.0/24
IP: 185.251.23.0/24
IP: 193.35.226.0/24
IP: 212.18.115.0 -- 212.18.116.255
IP: 212.24.127.0/24
IP: 213.5.128.0/24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:6c:e8:be:38:67:2a:ea:38:30:14:92:75:a1:18:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:53:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cefce449bea8deaedb1804dba25c584df5873dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:5e:f0:35:ba:81:43:f5:a5:af:cd:eb:cf:
86:ab:b7:fa:c0:38:07:c1:d6:bc:af:46:b1:87:49:
23:69:3f:04:c0:68:8e:dc:06:5f:ba:3a:ee:74:af:
be:e5:5b:6d:c6:8f:a5:2b:3d:94:51:61:6c:08:02:
1f:99:e0:57:f3:3e:b5:38:9a:ce:62:3e:14:ae:2f:
26:64:0a:ca:3d:75:b2:27:46:d3:60:04:40:97:67:
fa:ab:a0:33:fc:ad:a6:71:80:1e:59:d3:ff:f2:54:
11:35:93:99:2a:fd:91:55:6c:87:0c:4f:1e:2a:36:
42:96:a5:8f:4d:1f:f5:c1:a0:1e:d8:0f:77:b3:39:
57:eb:9a:f5:b6:ad:db:6a:1a:27:b7:ca:a7:e5:42:
25:8e:f0:5c:9c:48:56:14:34:5e:ff:81:09:2e:01:
27:2e:47:bb:41:25:57:f4:43:bd:83:05:77:2c:f5:
5b:81:41:8d:0e:bc:9d:0b:e9:b3:ec:10:a9:cb:43:
09:fc:68:de:3d:56:c4:7d:de:0e:50:d0:f5:73:d8:
9a:c4:2a:bc:d2:da:e0:f7:47:89:18:12:61:e2:2b:
f4:a3:40:02:14:1a:4f:89:b5:9d:d1:6e:5b:86:26:
1e:8c:dc:98:40:01:17:4e:a5:07:b2:22:10:10:28:
ea:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FC:E4:49:BE:A8:DE:AE:DB:18:04:DB:A2:5C:58:4D:F5:87:3D:C4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/d1b35f8b-6f48-4bad-b185-5c1daa8acda9/0/CEFCE449BEA8DEAEDB1804DBA25C584DF5873DC4.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.84.0/22
45.8.172.0/22
45.13.148.0/22
45.66.148.0/22
62.3.18.0/24
62.122.185.0-62.122.186.255
83.138.50.0/24
89.107.9.0/24
130.193.75.0/24
146.19.22.0/24
146.19.53.0/24
146.19.215.0-146.19.216.255
176.126.105.0/24
185.212.113.0/24
185.251.23.0/24
193.35.226.0/24
212.18.115.0-212.18.116.255
212.24.127.0/24
213.5.128.0/24
Signature Algorithm: sha256WithRSAEncryption
72:a0:e6:a6:70:3b:76:28:0b:d0:ba:4c:b8:a4:77:bf:68:d9:
0b:cc:f3:05:db:1a:44:53:43:6e:e3:d5:ea:94:92:13:44:c4:
13:99:5a:97:24:fd:af:76:2a:90:43:e1:99:fe:38:14:4a:0a:
6d:9e:90:a9:68:13:63:d4:2e:88:b8:72:d9:6e:71:74:ad:b7:
7e:d2:70:fe:26:8e:5b:94:51:30:ed:0a:b6:f4:58:c6:db:d6:
57:42:d7:46:d3:b5:cb:c8:20:e6:d7:40:ed:2a:75:17:42:d2:
0a:81:91:fb:11:2d:3e:ac:e7:06:55:36:62:c7:da:73:c3:9d:
00:ee:9a:0f:14:26:44:1e:aa:27:46:74:3b:6a:a1:c6:f6:31:
0b:72:aa:76:6d:bf:55:5c:9d:9b:c1:2d:bb:0f:24:33:55:ec:
02:07:83:b1:b1:45:cf:32:d8:47:f6:bb:eb:d6:9c:5b:91:fc:
19:bc:8c:93:e1:26:29:47:2c:85:0f:ed:a8:94:8e:61:e3:e0:
6f:7e:c4:66:8d:da:7a:79:e2:a4:b3:9c:d9:b8:54:63:f8:67:
22:f7:9d:29:5d:f2:d0:52:cd:73:a2:0b:3a:5b:02:f9:80:70:
fc:a7:ea:8f:19:46:19:ba:f0:49:b7:5c:11:f9:0e:67:84:c3:
51:5e:6f:d8
-----BEGIN CERTIFICATE-----
MIIGHTCCBQWgAwIBAgISAZQgbOi+OGcq6jgwFJJ1oRh+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDU1MzE1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWZjZTQ0OWJlYThkZWFlZGIxODA0ZGJhMjVjNTg0ZGY1ODczZGM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DBe8DW6gUP1pa/N68+Gq7f6wDgH
wda8r0axh0kjaT8EwGiO3AZfujrudK++5Vttxo+lKz2UUWFsCAIfmeBX8z61OJrO
Yj4Uri8mZArKPXWyJ0bTYARAl2f6q6Az/K2mcYAeWdP/8lQRNZOZKv2RVWyHDE8e
KjZClqWPTR/1waAe2A93szlX65r1tq3bahont8qn5UIljvBcnEhWFDRe/4EJLgEn
Lke7QSVX9EO9gwV3LPVbgUGNDrydC+mz7BCpy0MJ/GjePVbEfd4OUND1c9iaxCq8
0trg90eJGBJh4iv0o0ACFBpPibWd0W5bhiYejNyYQAEXTqUHsiIQECjqiQIDAQAB
o4IDKTCCAyUwHQYDVR0OBBYEFM785Em+qN6u2xgE26JcWE31hz3EMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy
c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2QxYjM1
ZjhiLTZmNDgtNGJhZC1iMTg1LTVjMWRhYThhY2RhOS8wLzCBiwYIKwYBBQUHMAqG
f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZDFi
MzVmOGItNmY0OC00YmFkLWIxODUtNWMxZGFhOGFjZGE5LzAvQ0VGQ0U0NDlCRUE4
REVBRURCMTgwNERCQTI1QzU4NERGNTg3M0RDNC5tZnQwPAYIKwYBBQUHMA2GMGh0
dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ
BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjCBpwYIKwYBBQUHAQcBAf8EgZcwgZQwgZEEAgAB
MIGKAwQCAjpUAwQCLQisAwQCLQ2UAwQCLUKUAwQAPgMSMAwDBAA+erkDBAA+eroD
BABTijIDBABZawkDBACCwUsDBACSExYDBACSEzUwDAMEAJIT1wMEAJIT2AMEALB+
aQMEALnUcQMEALn7FwMEAMEj4jAMAwQA1BJzAwQA1BJ0AwQA1Bh/AwQA1QWAMA0G
CSqGSIb3DQEBCwUAA4IBAQByoOamcDt2KAvQuky4pHe/aNkLzPMF2xpEU0Nu49Xq
lJITRMQTmVqXJP2vdiqQQ+GZ/jgUSgptnpCpaBNj1C6IuHLZbnF0rbd+0nD+Jo5b
lFEw7Qq29FjG29ZXQtdG07XLyCDm10DtKnUXQtIKgZH7ES0+rOcGVTZix9pzw50A
7poPFCZEHqonRnQ7aqHG9jELcqp2bb9VXJ2bwS27DyQzVewCB4OxsUXPMthH9rvr
1pxbkfwZvIyT4SYpRyyFD+2olI5h4+BvfsRmjdp6eeKks5zZuFRj+Gci950pXfLQ
Us1zogs6WwL5gHD8p+qPGUYZuvBJt1wR+Q5nhMNRXm/Y
-----END CERTIFICATE-----
Generated at Sat Apr 5 13:50:56 2025 by rpki-client