Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ha9GpAwkbWVA2ZLDIbHMNiPWWZU.cer
File: Ha9GpAwkbWVA2ZLDIbHMNiPWWZU.cer (raw, json)
Hash identifier: V1N2IkAGJ0/sNEpYQ4GJcMO7jW0+zKLUMINf6t0zUXQ=
Subject key identifier: 1D:AF:46:A4:0C:24:6D:65:40:D9:92:C3:21:B1:CC:36:23:D6:59:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194244566B3342612604258E17EF0C449D7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/44c0ef-5da6-4ff2-b5ef-79f048bd2a7a/1/Ha9GpAwkbWVA2ZLDIbHMNiPWWZU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/44c0ef-5da6-4ff2-b5ef-79f048bd2a7a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:35 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 62370
IP: 5.104.224.0/21
IP: 37.148.160.0/21
IP: 77.95.224.0/21
IP: 78.41.200.0/21
IP: 89.207.128.0/21
IP: 128.204.192.0/20
IP: 185.62.56.0/22
IP: 193.33.60.0/23
IP: 193.34.166.0/23
IP: 195.20.204.0/23
IP: 2a00:7b80::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:66:b3:34:26:12:60:42:58:e1:7e:f0:c4:49:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1daf46a40c246d6540d992c321b1cc3623d65995
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bd:65:f8:ef:8c:d8:df:d9:fb:56:b3:30:a3:
69:67:c8:19:0f:bb:c5:e3:b6:1a:12:58:0e:f0:e1:
bd:ea:1b:af:a9:05:52:6c:94:2d:01:5b:b4:db:84:
4b:5a:33:c1:4b:52:7f:ed:f2:e5:63:be:2f:69:ba:
98:d6:0c:e3:68:7e:8a:4d:f0:2d:42:d7:b1:0e:d2:
77:ba:22:07:db:37:b8:27:a4:69:a6:77:61:ad:af:
47:81:15:5e:b3:63:df:81:47:1f:8f:28:c6:3a:4b:
69:99:55:ed:8e:e9:b1:b9:f5:7c:0d:75:7c:c5:70:
65:94:28:3c:21:ba:e9:f6:82:68:81:a6:0e:ff:e8:
08:37:f6:b6:2b:e7:31:0a:26:ec:93:ff:09:0f:6f:
36:79:be:fc:ae:4c:82:77:23:7f:b2:cd:68:07:2a:
cb:d8:b9:ed:02:20:50:ca:7c:ad:70:a3:25:40:ba:
e4:1d:0d:3d:45:12:1a:9d:27:ee:1a:fa:cc:9a:5b:
03:16:3d:f2:cd:3a:fe:02:fe:66:f4:7b:a0:74:54:
3a:a0:33:17:07:3d:80:27:22:d4:a4:5f:18:3e:76:
f7:b0:cc:d6:01:c5:83:e4:a8:f4:cb:db:bf:5f:24:
e9:ce:1a:6d:66:09:0f:c9:66:4d:1e:57:9e:7e:50:
4d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AF:46:A4:0C:24:6D:65:40:D9:92:C3:21:B1:CC:36:23:D6:59:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/44c0ef-5da6-4ff2-b5ef-79f048bd2a7a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/44c0ef-5da6-4ff2-b5ef-79f048bd2a7a/1/Ha9GpAwkbWVA2ZLDIbHMNiPWWZU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.224.0/21
37.148.160.0/21
77.95.224.0/21
78.41.200.0/21
89.207.128.0/21
128.204.192.0/20
185.62.56.0/22
193.33.60.0/23
193.34.166.0/23
195.20.204.0/23
IPv6:
2a00:7b80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62370
Signature Algorithm: sha256WithRSAEncryption
00:29:78:36:a1:ad:92:b2:f0:84:28:af:e3:1b:e5:b0:36:68:
13:47:18:92:84:e5:9b:cc:b0:f6:b2:e6:cb:b9:6e:96:fe:55:
c2:97:31:6d:68:b0:94:29:ed:c8:3a:95:21:78:22:bd:0f:39:
f4:bd:de:c5:1a:f2:ed:9e:f6:72:ba:10:34:f5:d6:b7:f9:6c:
30:22:12:80:08:d3:04:ca:19:a9:db:2a:62:cd:cb:1f:5a:7a:
e3:ea:56:af:25:0d:1d:43:2f:7c:d2:b4:78:8e:5d:ac:48:1f:
b1:cc:01:ef:5e:07:ef:68:c8:12:db:69:b7:30:1e:cf:13:b5:
a2:ea:39:39:7d:59:b7:d8:09:56:65:24:92:eb:a2:0c:1c:a4:
c4:7d:dd:04:3f:d6:54:15:6b:53:d2:63:0e:d6:30:3b:28:d8:
97:29:71:46:79:06:c7:da:f0:a4:69:e8:0c:88:e7:13:58:44:
9e:95:bf:07:b2:d7:3d:ec:2b:d2:2a:07:1c:08:51:d5:22:b0:
ea:82:41:0c:31:18:d3:2d:36:fe:a7:3f:17:9b:a3:31:33:1c:
8d:29:da:7b:aa:f8:ee:95:93:b4:3d:05:5d:3f:a3:8d:ed:43:
a4:ca:79:db:6b:21:7a:85:54:a8:fc:80:e3:e7:ca:2a:91:b6:
ec:8f:ec:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:27:47 2025 by rpki-client