Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
File: iabNn0vrewwE0x_-XGdKh6dznSE.cer (raw, json)
Hash identifier: +z4yz/9ScG1+amwIrzdnWbEE2pJJqY/QP+wU4OenOwU=
Subject key identifier: 89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942143ADE43370E0AC49FFA63FE1847C28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:47:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 12642
AS: 13000
AS: 39412
AS: 47129
AS: 49001
AS: 49190
IP: 62.182.224.0/21
IP: 87.101.64.0/20
IP: 87.239.192.0/21
IP: 89.200.224.0/21
IP: 91.195.134.0/23
IP: 91.195.158.0/23
IP: 91.195.190.0/23
IP: 91.200.24.0/22
IP: 91.214.24.0/22
IP: 95.131.32.0/21
IP: 185.194.220.0/22
IP: 188.137.0.0/17
IP: 193.3.166.0/24
IP: 193.34.112.0/22
IP: 193.93.92.0/22
IP: 193.150.36.0/23
IP: 195.3.200.0/22
IP: 195.66.73.0/24
IP: 195.88.128.0/23
IP: 2a02:c40::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:ad:e4:33:70:e0:ac:49:ff:a6:3f:e1:84:7c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:57:71:7e:af:de:70:f5:e8:68:f3:ac:04:
a1:ea:38:79:e6:12:88:b5:ec:9c:b1:5b:4b:dd:8e:
5c:cd:ed:74:39:69:c9:30:b2:35:15:ad:a3:e9:23:
53:e8:7d:b9:f2:48:72:84:bc:0d:92:73:52:0d:82:
62:e6:25:24:ac:18:0b:fd:09:f4:06:0f:1e:69:dc:
a3:c4:e3:40:55:03:ce:5b:6b:95:93:1d:4f:01:75:
14:14:3e:57:58:c3:2d:db:b2:51:d4:48:92:32:7d:
0b:a9:b5:2b:ae:5c:b2:46:f0:a7:27:10:6a:ee:ae:
4e:39:23:eb:b6:56:01:9c:f9:08:da:04:7c:48:6e:
8f:75:92:95:f7:21:27:30:eb:e0:38:3d:7d:b0:5b:
d0:2c:93:a5:d1:73:1c:73:f1:96:0b:f7:d5:62:2a:
68:85:84:5f:11:20:50:36:8e:e8:4a:4c:39:82:6d:
01:6b:0e:d5:4c:a7:05:b4:fb:f7:c0:0a:2a:a5:80:
9b:0f:cb:78:8e:e3:25:10:14:60:88:e5:4f:ac:cd:
84:9d:c6:28:5b:68:ac:66:09:9c:dd:e8:9a:d3:45:
67:c8:35:19:9a:a4:b9:d0:3d:13:d4:ff:5b:e0:99:
4f:ff:ca:20:9c:ac:6b:bb:21:38:d8:6e:a9:ef:a8:
85:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.182.224.0/21
87.101.64.0/20
87.239.192.0/21
89.200.224.0/21
91.195.134.0/23
91.195.158.0/23
91.195.190.0/23
91.200.24.0/22
91.214.24.0/22
95.131.32.0/21
185.194.220.0/22
188.137.0.0/17
193.3.166.0/24
193.34.112.0/22
193.93.92.0/22
193.150.36.0/23
195.3.200.0/22
195.66.73.0/24
195.88.128.0/23
IPv6:
2a02:c40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
12642
13000
39412
47129
49001
49190
Signature Algorithm: sha256WithRSAEncryption
5d:33:41:94:61:e5:40:c2:df:80:71:98:c8:e0:69:01:2f:c9:
35:54:fa:36:0e:7e:73:ec:2c:ad:04:b7:ad:69:55:02:fa:24:
07:aa:62:64:de:0a:f8:57:94:31:b3:8d:db:bd:d7:c6:8f:41:
77:a3:43:1e:1c:ff:39:16:b0:d1:60:4b:0a:8d:9c:05:fb:8e:
b5:d2:cd:70:b4:b5:33:7d:fd:ce:ca:1e:2d:e0:92:a9:21:7b:
41:f9:d5:f3:c4:ea:b4:1e:30:b9:84:15:36:8a:a8:bf:a1:db:
60:47:27:4d:87:12:38:7f:08:da:95:59:56:3c:2f:4d:a0:48:
c4:31:e1:1e:c6:43:08:f4:c1:2f:95:a2:26:02:a4:09:11:7a:
bb:f7:ca:4f:f1:72:13:cc:68:71:de:27:3c:37:a4:f8:03:0a:
2d:0e:a2:1a:05:e2:3b:0f:3f:56:3b:76:24:0b:23:8c:16:05:
80:39:26:22:fe:ba:62:db:c0:8d:be:b7:8c:b0:42:8d:24:aa:
f4:fe:23:84:66:3d:4b:d7:50:e3:e5:b3:94:ea:73:6e:4e:46:
82:fd:f4:ec:50:05:4c:12:72:26:a8:92:b1:09:92:7e:32:68:
5e:b8:d6:da:97:f0:7a:df:83:33:3e:4d:d8:c2:d8:9c:24:b0:
1d:c9:48:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:39:21 2025 by rpki-client