Certificate
$ rpki-client -vvf rpki1.rpki-test.sit.fraunhofer.de/repo/rpki1_fraunhofer/0/AAFBF9DBE860335648F2AEABA124326B85374C47.cer
File: AAFBF9DBE860335648F2AEABA124326B85374C47.cer (raw, json)
Hash identifier: hmeVrq4wQZ/aaYKZ9MwiRiP6YZ+7eaDCgypam3U1Of0=
Subject key identifier: AA:FB:F9:DB:E8:60:33:56:48:F2:AE:AB:A1:24:32:6B:85:37:4C:47
Authority key identifier: DF:5A:31:E5:49:15:EB:10:EB:01:5E:D8:F0:47:6D:8C:3F:64:FF:F1
Certificate issuer: /CN=df5a31e54915eb10eb015ed8f0476d8c3f64fff1
Certificate serial: 2A3D4B781940D816122813CCEB2F755C71AC08DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/31ox5UkV6xDrAV7Y8EdtjD9k__E.cer
Manifest: rsync://rrdp.taaa.eu/repo/rrdp-taaa-eu/0/AAFBF9DBE860335648F2AEABA124326B85374C47.mft
caRepository: rsync://rrdp.taaa.eu/repo/rrdp-taaa-eu/0/
Notify URL: https://rrdp.taaa.eu/rrdp/notification.xml
Certificate not before: Thu 08 Sep 2022 15:15:01 +0000
Certificate not after: Thu 07 Sep 2023 15:20:01 +0000
Subordinate resources: AS: 212795
IP: 2a10:9040::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:3d:4b:78:19:40:d8:16:12:28:13:cc:eb:2f:75:5c:71:ac:08:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df5a31e54915eb10eb015ed8f0476d8c3f64fff1
Validity
Not Before: Sep 8 15:15:01 2022 GMT
Not After : Sep 7 15:20:01 2023 GMT
Subject: CN=AAFBF9DBE860335648F2AEABA124326B85374C47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4f:c5:bc:33:ec:10:2e:39:62:ef:87:1c:ac:
92:54:5b:07:46:51:7a:ac:08:ec:f5:1f:02:de:d8:
85:2e:10:4c:32:49:d9:8a:b9:67:46:b6:82:ac:a5:
04:15:0c:b8:4a:c2:9e:5f:b9:ba:da:da:a3:50:9d:
e7:fb:ca:d0:c9:8f:03:94:f4:12:21:3d:a8:6d:05:
05:99:ac:0d:59:85:ac:fb:0a:d7:00:21:1e:cb:56:
7b:26:58:14:61:0b:ca:1d:59:8f:59:98:1e:1b:6f:
c7:86:70:5b:f2:99:a0:16:5d:93:a7:1e:61:bd:52:
4d:cf:49:d5:93:aa:c1:0f:8e:56:38:f8:40:db:06:
89:03:c4:33:05:8c:89:9d:da:ff:ba:9d:69:63:73:
78:12:e7:36:96:1d:d0:3a:94:f9:18:22:22:56:96:
44:62:f3:66:c3:f8:eb:4b:b5:3e:b5:f6:88:e0:d0:
86:8e:6b:24:65:bb:6e:7b:32:03:f5:01:6d:dc:71:
a2:ec:a5:67:7f:b5:19:9b:d9:d1:ea:aa:23:a0:de:
b1:4e:3b:6a:c5:77:7a:b5:c7:8b:19:e7:a8:16:2a:
10:a6:38:3c:37:a4:68:12:f7:aa:4d:49:02:fc:58:
34:e3:91:aa:93:11:0b:3f:3a:79:d6:9a:c8:0e:36:
45:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
AA:FB:F9:DB:E8:60:33:56:48:F2:AE:AB:A1:24:32:6B:85:37:4C:47
X509v3 Authority Key Identifier:
keyid:DF:5A:31:E5:49:15:EB:10:EB:01:5E:D8:F0:47:6D:8C:3F:64:FF:F1
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki1.rpki-test.sit.fraunhofer.de/repo/rpki1_fraunhofer/0/DF5A31E54915EB10EB015ED8F0476D8C3F64FFF1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31ox5UkV6xDrAV7Y8EdtjD9k__E.cer
Subject Information Access:
CA Repository - URI:rsync://rrdp.taaa.eu/repo/rrdp-taaa-eu/0
RPKI Manifest - URI:rsync://rrdp.taaa.eu/repo/rrdp-taaa-eu/0/AAFBF9DBE860335648F2AEABA124326B85374C47.mft
RPKI Notify - URI:https://rrdp.taaa.eu/rrdp/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9040::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212795
Signature Algorithm: sha256WithRSAEncryption
9a:9b:76:b1:f3:04:d8:8d:28:c3:51:57:ee:0e:8b:56:9e:3c:
93:e7:66:57:66:e5:73:26:66:10:84:2d:ba:10:9c:22:a1:54:
e7:93:65:d1:ec:58:48:94:ce:8f:79:b2:33:33:59:22:69:a3:
86:fe:c4:a7:19:03:e9:ff:60:a6:06:fd:42:55:bc:65:43:b3:
55:43:fa:29:db:b2:20:b2:57:ff:82:26:05:22:f9:f3:d4:87:
93:a2:1d:69:12:ca:12:78:8a:1a:38:6e:8a:59:98:ca:40:47:
bb:ea:e5:c2:a3:79:9c:4d:8e:7d:f0:50:2a:43:34:b1:58:6f:
a2:52:4a:cf:e3:70:eb:50:49:21:b3:e2:18:a4:2c:72:f4:f2:
c8:d8:7a:91:d2:e1:07:76:ae:4a:b8:1d:9e:5d:36:87:f6:e2:
ea:2f:77:01:33:9e:5d:1a:b2:0d:09:bf:47:b3:4a:f3:d7:76:
cf:f9:55:80:b9:1d:b1:22:29:38:f5:72:8b:8d:40:49:a9:21:
e4:84:89:18:38:3f:7c:ab:9b:26:e1:31:12:94:76:db:da:69:
18:a5:12:40:ec:57:3a:1f:bd:93:86:a6:5e:69:64:fc:5d:90:
05:24:e9:6c:0a:54:1b:18:d1:bb:e7:cf:e5:30:31:74:e8:e8:
d6:92:fb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:41:21 2025 by rpki-client