Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0AumM_HpgkB20WGpg9i46IEmOYI.cer
File: 0AumM_HpgkB20WGpg9i46IEmOYI.cer (raw, json)
Hash identifier: 0Ab6oXjy5X7dRLUP5yJD9M5XuY53ftX4JenKcwn6jNk=
Subject key identifier: D0:0B:A6:33:F1:E9:82:40:76:D1:61:A9:83:D8:B8:E8:81:26:39:82
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194236A23ACD2674518625988B11F51B2B4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/0AumM_HpgkB20WGpg9i46IEmOYI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:49:06 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 8818
IP: 37.18.44.0/22
IP: 37.230.164.0/22
IP: 37.230.214.0 -- 37.230.221.255
IP: 46.243.151.0/24
IP: 88.83.0.0/19
IP: 128.0.70.0/24
IP: 178.170.132.0/22
IP: 178.170.147.0/24
IP: 178.170.160.0/22
IP: 178.170.199.0 -- 178.170.205.255
IP: 178.170.210.0 -- 178.170.216.255
IP: 185.57.160.0/22
IP: 188.72.71.0/24
IP: 194.177.224.0/19
IP: 2a00:1fa8::/32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:23:ac:d2:67:45:18:62:59:88:b1:1f:51:b2:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d00ba633f1e9824076d161a983d8b8e881263982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ab:29:33:c2:0b:90:1f:fa:f0:db:c0:77:f3:
44:0f:b4:e9:c4:1a:0d:5b:2d:02:03:a9:50:5a:98:
ae:71:8d:68:af:0d:d0:30:b1:5a:d1:1a:dd:7b:bc:
55:ad:8b:ee:7e:a0:e0:bc:6e:e7:7b:76:86:b6:91:
5e:ac:ce:46:71:b5:fe:4c:f8:f9:fe:6e:f0:78:50:
b3:bc:3d:74:fc:29:68:df:30:27:9c:9e:7d:2a:d3:
51:9a:02:e5:65:c1:14:67:80:fa:a1:7e:7d:d1:3a:
30:33:89:8c:d8:cb:de:ed:f7:3f:4e:1b:b0:88:82:
e5:27:f4:84:8a:c0:3b:4f:55:f5:36:7e:8d:2d:54:
85:fc:58:7e:f5:89:51:3b:aa:09:af:04:47:11:91:
eb:0c:bc:b1:78:22:7d:dc:13:26:51:83:39:4b:91:
04:d4:74:63:0e:74:35:d8:9c:d2:ef:4c:5f:96:82:
e2:f0:4c:25:fb:8b:4b:a4:8e:41:af:c0:f4:7d:45:
fc:7c:51:12:3f:c5:ee:63:33:1b:de:f9:1b:9c:5c:
e4:be:4f:f1:dc:45:1c:7c:77:d4:d1:5a:78:03:d2:
3c:b4:2b:e4:c0:6d:dd:d8:01:a6:a2:d2:34:d7:a2:
59:bb:30:55:31:cd:b4:1e:e2:88:d6:b3:8f:e8:9b:
50:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:0B:A6:33:F1:E9:82:40:76:D1:61:A9:83:D8:B8:E8:81:26:39:82
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/408667-0b39-4da0-9aa0-3cc11bc9d594/1/0AumM_HpgkB20WGpg9i46IEmOYI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.44.0/22
37.230.164.0/22
37.230.214.0-37.230.221.255
46.243.151.0/24
88.83.0.0/19
128.0.70.0/24
178.170.132.0/22
178.170.147.0/24
178.170.160.0/22
178.170.199.0-178.170.205.255
178.170.210.0-178.170.216.255
185.57.160.0/22
188.72.71.0/24
194.177.224.0/19
IPv6:
2a00:1fa8::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8818
Signature Algorithm: sha256WithRSAEncryption
95:8f:8a:ab:8a:00:78:7f:6b:07:6f:f7:02:81:ba:56:79:b9:
3f:44:08:7d:91:c2:66:d4:38:3b:d1:e8:65:68:97:d6:29:d6:
99:3e:3e:cc:79:16:ab:bd:12:90:6d:0c:be:95:32:82:16:79:
25:94:ae:33:f7:b5:fb:d2:2b:a9:3d:c9:7b:3d:6d:2b:5f:71:
6c:9a:ce:c4:f0:86:a4:7a:ba:f0:90:68:71:9d:48:d6:f4:58:
95:21:f4:2a:75:48:ea:ce:4d:8f:ff:3a:1e:aa:70:6a:54:79:
cc:81:9a:a8:10:bd:10:88:b9:28:fe:b5:1a:63:44:8e:10:03:
ae:c7:1d:a9:85:92:96:0c:b4:5f:c4:bb:3a:5c:dc:09:7d:26:
66:76:ca:a1:e8:c0:9d:f5:c4:41:db:07:a5:ff:cd:32:02:31:
e2:af:c1:81:40:63:3e:30:b6:8e:b3:c2:07:1c:8b:90:d5:9b:
da:55:88:d0:92:36:9e:74:83:0b:73:05:dd:f2:dc:45:a0:66:
d2:a9:a7:8c:84:1e:5d:03:e6:bd:c0:46:5a:d1:fa:83:d3:ef:
e6:df:a0:25:e8:36:a0:ca:5d:4f:92:9b:bb:c1:b6:b3:c8:de:
19:2d:ca:5f:87:42:9e:07:4b:ed:16:3d:1b:03:3a:31:6d:1a:
77:31:1e:79
-----BEGIN CERTIFICATE-----
MIIGCzCCBPOgAwIBAgISAZQjaiOs0mdFGGJZiLEfUbK0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTk0OTA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDBiYTYzM2YxZTk4MjQwNzZkMTYxYTk4M2Q4YjhlODgxMjYzOTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6spM8ILkB/68NvAd/NED7TpxBoN
Wy0CA6lQWpiucY1orw3QMLFa0Rrde7xVrYvufqDgvG7ne3aGtpFerM5GcbX+TPj5
/m7weFCzvD10/Clo3zAnnJ59KtNRmgLlZcEUZ4D6oX590TowM4mM2Mve7fc/Thuw
iILlJ/SEisA7T1X1Nn6NLVSF/Fh+9YlRO6oJrwRHEZHrDLyxeCJ93BMmUYM5S5EE
1HRjDnQ12JzS70xfloLi8Ewl+4tLpI5Br8D0fUX8fFESP8XuYzMb3vkbnFzkvk/x
3EUcfHfU0Vp4A9I8tCvkwG3d2AGmotI016JZuzBVMc20HuKI1rOP6JtQpQIDAQAB
o4IDFzCCAxMwHQYDVR0OBBYEFNALpjPx6YJAdtFhqYPYuOiBJjmCMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhhLzQwODY2
Ny0wYjM5LTRkYTAtOWFhMC0zY2MxMWJjOWQ1OTQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEvNDA4NjY3
LTBiMzktNGRhMC05YWEwLTNjYzExYmM5ZDU5NC8xLzBBdW1NX0hwZ2tCMjBXR3Bn
OWk0NklFbU9ZSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGWBggrBgEF
BQcBBwEB/wSBhjCBgzByBAIAATBsAwQCJRIsAwQCJeakMAwDBAEl5tYDBAEl5twD
BAAu85cDBAVYUwADBACAAEYDBAKyqoQDBACyqpMDBAKyqqAwDAMEALKqxwMEAbKq
zDAMAwQBsqrSAwQAsqrYAwQCuTmgAwQAvEhHAwQFwrHgMA0EAgACMAcDBQAqAB+o
MBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAiJyMA0GCSqGSIb3DQEBCwUAA4IBAQCV
j4qrigB4f2sHb/cCgbpWebk/RAh9kcJm1Dg70ehlaJfWKdaZPj7MeRarvRKQbQy+
lTKCFnkllK4z97X70iupPcl7PW0rX3Fsms7E8IakerrwkGhxnUjW9FiVIfQqdUjq
zk2P/zoeqnBqVHnMgZqoEL0QiLko/rUaY0SOEAOuxx2phZKWDLRfxLs6XNwJfSZm
dsqh6MCd9cRB2wel/80yAjHir8GBQGM+MLaOs8IHHIuQ1ZvaVYjQkjaedIMLcwXd
8txFoGbSqaeMhB5dA+a9wEZa0fqD0+/m36Al6Dagyl1Pkpu7wbazyN4ZLcpfh0Ke
B0vtFj0bAzoxbRp3MR55
-----END CERTIFICATE-----
Generated at Thu Apr 24 16:06:53 2025 by rpki-client