Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bkBn13v-qZ3yXOXgipIT0RKAFM8.cer
File: bkBn13v-qZ3yXOXgipIT0RKAFM8.cer (raw, json)
Hash identifier: bjjAziHVX7qH6egy1lskHn9+szRYNA+DT/B3oEIH57c=
Subject key identifier: 6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D990F5D56051F4994F6DAA617CD1A9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/bkBn13v-qZ3yXOXgipIT0RKAFM8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49026
AS: 56730
AS: 64448
IP: 91.227.26.0/24
IP: 95.131.80.0/21
IP: 134.0.16.0/21
IP: 185.27.32.0/22
IP: 185.42.196.0/22
IP: 185.53.92.0/22
IP: 185.164.44.0/22
IP: 188.114.112.0/21
IP: 2a02:ef8::/32
IP: 2a03:b980::/32
IP: 2a0a:ac00::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:90:f5:d5:60:51:f4:99:4f:6d:aa:61:7c:d1:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e4067d77bfea99df25ce5e08a9213d1128014cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0e:d5:42:eb:83:b2:47:70:40:9c:58:cc:cb:
8f:6b:39:e7:f1:ce:ee:05:b1:84:27:1b:5d:70:96:
07:00:19:44:b1:0e:fb:92:1e:41:27:4d:64:05:ff:
6e:dc:e9:53:26:da:e6:3f:2d:7b:4d:0e:43:c8:9b:
f9:36:f7:71:b7:e9:6b:67:36:5d:40:35:5e:32:0d:
c1:43:57:b3:4d:89:0b:e8:3b:41:3c:0d:52:25:34:
e2:bb:11:88:55:39:14:a4:e7:5f:cd:2a:40:7a:72:
72:e7:a1:49:e0:66:de:01:31:d2:d6:6e:f3:a9:3c:
56:12:74:6f:a2:f1:71:23:03:92:f5:a8:32:99:2c:
54:23:c2:dc:09:02:c4:c5:64:cf:9d:06:14:88:71:
8e:ff:30:f3:df:3c:5c:3a:d6:76:d3:51:fd:2c:9f:
3f:8b:b2:59:1c:d6:13:1a:55:ac:71:5f:88:6a:56:
1d:1e:40:d5:93:9a:f5:a4:80:b3:7e:6b:a8:54:db:
44:3e:76:b0:09:81:2e:e2:f2:fd:5a:bc:11:b2:e7:
f1:c5:7e:b3:e2:63:d4:b3:87:13:55:8a:f8:aa:c2:
db:d6:b0:b9:e3:97:e6:e1:b8:84:49:9f:2f:5d:bf:
44:30:6a:13:2f:19:96:21:78:00:4b:2e:ed:b0:bd:
30:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:40:67:D7:7B:FE:A9:9D:F2:5C:E5:E0:8A:92:13:D1:12:80:14:CF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/589eca-3f19-4e23-a3fb-3303f71622f9/1/bkBn13v-qZ3yXOXgipIT0RKAFM8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.26.0/24
95.131.80.0/21
134.0.16.0/21
185.27.32.0/22
185.42.196.0/22
185.53.92.0/22
185.164.44.0/22
188.114.112.0/21
IPv6:
2a02:ef8::/32
2a03:b980::/32
2a0a:ac00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49026
56730
64448
Signature Algorithm: sha256WithRSAEncryption
2d:5a:41:25:88:4a:60:c6:e5:b0:9a:d4:a9:68:50:cd:2d:f0:
b2:60:f7:9b:66:e9:8e:39:26:84:b0:b7:72:c2:eb:d5:a2:a9:
22:c6:9a:87:4f:1f:a2:d9:43:ed:2c:4f:a8:30:e2:08:44:4f:
ac:f7:55:b2:7f:9a:87:33:39:90:67:69:6f:22:dd:b4:5e:a8:
1e:3b:ab:d2:ad:af:f5:fa:e0:40:b7:4a:07:ca:0b:e5:ad:64:
1b:9c:a4:21:fb:0e:aa:ba:bf:10:ce:31:c3:64:b5:ce:cc:aa:
fa:dc:d1:19:12:0e:7d:fd:9c:3b:a4:3d:56:94:7c:af:60:3c:
3f:c0:cb:71:f2:5f:61:0e:45:80:27:44:94:2f:81:5e:fb:51:
31:e2:e8:79:5e:0e:83:1f:28:4d:96:80:45:6b:2b:06:ac:b2:
ee:d8:3e:aa:b7:09:b1:5c:ab:af:52:8b:56:f4:f4:e4:bc:8f:
28:d7:5a:78:2c:fa:3f:61:81:ab:90:39:94:a6:3f:c3:f9:d2:
ad:79:3b:5a:fd:e0:06:6f:76:b8:65:f9:6d:cf:0d:8f:2f:5e:
e1:2a:fb:c6:07:44:07:d0:b3:12:f5:ae:88:fa:a9:96:73:02:
92:e1:b4:3e:d2:98:b0:1b:6b:ae:40:bb:be:ef:31:4d:f3:ce:
de:21:30:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:49:27 2025 by rpki-client