Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
File: YmqokTLSpoTY0qGj9-QPIjRjbzg.cer (raw, json)
Hash identifier: ZUooCm5MPwV64HZCKCdnli5CjxhN/mjsWUSx8POeYBI=
Subject key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D757AE21E9353E9F9C40A1F8E2F6D0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:48:22 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 51793
IP: 91.221.78.0/23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:57:ae:21:e9:35:3e:9f:9c:40:a1:f8:e2:f6:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:94:16:a5:1e:37:55:bf:0e:b2:b7:b1:a1:7b:
e5:e5:11:9e:e2:99:24:8f:50:d9:7f:06:da:3f:55:
4a:99:2d:e9:47:3e:7b:3f:74:30:fa:7c:97:ac:c3:
88:31:cf:d8:05:99:07:8d:1d:85:3e:f8:8e:b4:49:
6f:f3:f3:3f:f8:85:4a:41:9a:44:69:7b:85:cf:f8:
41:67:3a:9f:08:4d:d6:1d:c3:3d:45:ca:08:40:3e:
a0:75:cc:6c:39:ba:56:9d:27:b3:2d:0a:19:dd:e7:
9a:6d:b3:00:60:5e:00:e8:2e:38:4b:e8:2d:05:2d:
4c:45:4b:d6:a0:3a:b0:d2:f2:fd:3c:55:36:7f:a2:
5f:88:99:a9:b8:f8:5d:1c:c1:a0:06:05:27:e5:31:
66:ad:71:e0:51:26:27:17:28:e4:2e:d6:0d:d9:01:
c1:02:dd:ee:a4:79:c0:d5:c7:b1:6a:aa:5b:c2:db:
00:b2:48:42:85:7c:3e:84:bb:9b:6f:9e:32:39:0a:
67:af:37:e0:4c:24:1a:02:00:fb:bd:c2:4e:62:ee:
94:af:94:c0:fb:0b:19:31:11:95:82:e5:69:d2:6c:
1b:6f:23:9f:2e:b4:b9:98:52:64:c0:76:5e:37:e4:
2d:05:87:72:6e:50:6f:7e:1a:a8:27:b2:fa:85:d3:
fc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.78.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51793
Signature Algorithm: sha256WithRSAEncryption
af:1c:22:6a:9e:11:38:d2:1e:20:47:9b:fd:f6:48:97:8a:10:
ea:56:32:64:31:15:7d:6b:2d:92:2d:db:92:9b:de:8f:d4:9b:
7e:3e:fe:c5:bd:d5:03:f2:f2:30:37:a2:0a:ec:ce:b3:e8:99:
4c:23:3d:51:d5:d1:ab:fd:9c:2a:e1:24:f5:21:a1:7d:95:16:
5e:38:9f:61:69:7e:a9:db:a4:47:e6:80:9b:76:61:6c:10:87:
69:77:6c:cb:b2:13:d2:23:81:f8:09:2b:ed:12:6f:56:35:3d:
d2:30:07:fa:30:d5:d7:cd:13:4a:8e:9c:82:51:b1:76:57:e8:
55:93:4c:fd:46:c8:59:f1:d6:1b:05:99:21:08:3e:6d:d9:31:
fe:b0:b0:9b:e0:c4:c8:49:6e:05:be:22:57:bd:1e:29:e2:2e:
d9:39:c9:9a:be:ce:f1:fd:ea:54:35:38:66:d7:d1:e7:77:e9:
02:a6:fe:9a:9b:50:bc:c4:87:40:b8:61:12:5f:c5:55:7f:56:
0b:79:1f:71:3c:c6:a1:ed:dd:5a:32:54:2d:50:93:11:4e:c3:
91:ee:bd:20:30:4e:dd:bc:78:f7:3c:17:25:77:a0:36:4e:da:
c9:e8:53:5e:97:96:2d:e2:03:68:96:94:86:50:9d:3f:f0:f1:
70:da:26:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:32:09 2025 by rpki-client