Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PbbiTPwA0i9O-jmkIdr7e7HaS4M.cer
File: PbbiTPwA0i9O-jmkIdr7e7HaS4M.cer (raw, json)
Hash identifier: pT0MxOWjIHhwU5mbynwQFXp51smBD10kqI01yVaOBtU=
Subject key identifier: 3D:B6:E2:4C:FC:00:D2:2F:4E:FA:39:A4:21:DA:FB:7B:B1:DA:4B:83
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA6ED3B328C507444F0193448BD206
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/98/f7bbc4-562a-4e79-a8ee-9380e5cc0580/1/PbbiTPwA0i9O-jmkIdr7e7HaS4M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/98/f7bbc4-562a-4e79-a8ee-9380e5cc0580/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:48:13 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49067
IP: 185.98.216.0 -- 185.98.218.255
IP: 194.31.11.0/24
IP: 2a14:4100::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:6e:d3:b3:28:c5:07:44:4f:01:93:44:8b:d2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3db6e24cfc00d22f4efa39a421dafb7bb1da4b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f7:30:40:57:26:b4:5e:0e:34:e3:01:a8:02:
75:2b:e6:2a:ea:b5:bf:33:05:0d:da:54:90:58:20:
24:14:61:f9:7a:8c:19:5a:26:99:91:c0:7d:11:0a:
b0:29:2a:68:47:ca:f1:ed:11:7d:f4:5a:27:40:7e:
df:5c:6d:1a:69:ea:5f:b9:9b:ed:4c:9c:d6:e4:9e:
21:50:58:a5:5f:02:7f:ad:80:af:d9:8e:98:a7:3b:
2b:cb:07:06:df:89:e9:ea:9d:3e:a4:22:ea:4d:d5:
69:0b:17:26:ee:8d:29:b2:a1:84:46:f7:d4:7b:7b:
cb:8e:47:4c:cf:e2:bc:79:5f:bd:b9:31:ab:ea:d9:
97:90:a0:b4:43:e0:e7:ea:1f:70:0a:64:a5:bb:99:
3f:40:c8:25:2f:19:a7:71:9c:23:93:54:45:1c:88:
f2:3c:99:d1:06:4a:5f:05:44:f6:f3:f6:c9:50:03:
fa:5d:a9:2a:6b:6d:95:e2:13:8e:e6:7c:b9:87:3c:
7a:d8:0b:a9:e6:23:47:35:a2:a6:24:6e:86:38:b1:
c5:79:ec:f7:ff:df:b6:e5:d5:f8:63:1a:42:ee:69:
91:8d:22:36:1d:5d:13:88:87:f3:78:cc:e4:7a:b9:
c1:05:f0:88:f5:36:56:72:69:c3:a6:28:c6:24:f3:
ae:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:B6:E2:4C:FC:00:D2:2F:4E:FA:39:A4:21:DA:FB:7B:B1:DA:4B:83
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f7bbc4-562a-4e79-a8ee-9380e5cc0580/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f7bbc4-562a-4e79-a8ee-9380e5cc0580/1/PbbiTPwA0i9O-jmkIdr7e7HaS4M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.216.0-185.98.218.255
194.31.11.0/24
IPv6:
2a14:4100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49067
Signature Algorithm: sha256WithRSAEncryption
74:ba:02:5d:98:e1:20:1f:8c:b8:f7:6a:de:bc:dd:c1:7a:de:
46:e9:8e:85:c3:23:ad:51:17:0a:14:a2:16:db:f5:29:a4:2d:
25:7f:42:73:3b:51:32:0f:94:82:4f:f9:a9:6e:79:5b:a2:7a:
68:f7:23:c6:b1:be:31:75:46:bf:81:b4:68:e9:83:bb:e5:61:
0d:be:17:af:52:d1:c8:9c:26:f6:c1:a5:d0:3c:be:0c:69:0b:
f6:10:54:94:0b:ae:a9:80:7b:e2:63:17:e4:76:94:8d:7d:57:
bd:0f:80:b7:dc:e3:c6:33:3b:ba:fb:75:2a:55:65:2d:8e:31:
fd:a9:eb:a7:65:58:a1:dc:0f:36:e6:af:d4:23:92:be:d8:d4:
c4:53:37:32:8f:3e:32:fc:5a:7b:cf:16:2c:f2:e4:4b:4c:35:
7f:e9:3e:f8:ce:63:dc:1a:33:ea:05:4c:e2:f3:ee:dc:a0:86:
cc:cf:97:2e:72:72:2c:58:39:30:53:e2:c8:56:cf:78:b1:5c:
c1:b4:97:38:a7:55:75:98:7b:da:4f:d0:14:f5:c4:c6:8e:b6:
e0:02:a0:ae:74:63:b2:16:0c:bc:36:5c:07:57:1b:5f:ed:59:
14:99:64:ba:9c:db:28:e8:be:c8:55:cb:ab:d9:45:a3:31:2d:
95:56:80:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:18:43 2025 by rpki-client