Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oCN2bGLetRKXFVcI7MtCHIsEeAo.cer
File: oCN2bGLetRKXFVcI7MtCHIsEeAo.cer (raw, json)
Hash identifier: +ppu7zDaZjU5qMNde1m8RVQ58BMePAvF0g8VmF2eqKU=
Subject key identifier: A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942444DE81567D0970ECE5C8D56DA20211
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:48:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 207784
IP: 195.144.27.0/24
IP: 195.149.67.0/24
IP: 195.149.73.0/24
IP: 195.149.90.0/24
IP: 2a0f:bb40::/29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:de:81:56:7d:09:70:ec:e5:c8:d5:6d:a2:02:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a023766c62deb51297155708eccb421c8b04780a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:56:20:12:f1:f6:63:fe:c7:e6:66:18:38:
40:73:49:98:c3:a5:70:6f:aa:c3:ce:70:4e:26:ae:
ff:89:29:84:52:cd:67:40:d1:a8:74:77:54:59:81:
64:c6:ce:eb:18:64:d6:ba:26:30:dc:15:57:26:a9:
24:3e:3b:68:0d:f0:ed:3f:d7:f4:dc:c8:11:24:90:
af:36:02:dd:eb:00:9c:09:10:0a:9b:9c:5b:83:2a:
82:b1:c6:d0:70:e6:4a:00:f6:f8:d9:2f:59:4e:51:
27:f1:bf:e2:4f:23:cb:ee:79:ce:c8:f5:e9:3a:e7:
85:55:16:30:4d:69:95:01:b0:9a:c6:fe:53:ee:e1:
40:5d:04:2c:40:60:4e:68:43:2b:3c:0a:96:15:20:
5a:43:58:fb:cc:4f:c7:eb:ef:e9:c5:98:0b:e1:19:
84:fe:fd:d6:bd:d7:68:9b:82:37:01:cb:c9:46:8c:
5e:6d:c9:5f:03:af:3b:04:a2:8c:60:33:2b:df:58:
b7:2e:f8:0c:4d:4f:16:d9:a5:64:15:2c:d7:b2:b2:
c5:fe:39:d3:54:e5:17:60:f3:a0:bc:b9:32:b4:f9:
bb:d2:78:e3:cc:89:cc:4f:05:63:ab:b8:23:7f:da:
d8:15:eb:da:f5:c1:ca:76:df:d6:e3:75:6f:16:9c:
9b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:23:76:6C:62:DE:B5:12:97:15:57:08:EC:CB:42:1C:8B:04:78:0A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/df9096-36c9-439a-a0a0-a3a100ef86de/1/oCN2bGLetRKXFVcI7MtCHIsEeAo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.144.27.0/24
195.149.67.0/24
195.149.73.0/24
195.149.90.0/24
IPv6:
2a0f:bb40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207784
Signature Algorithm: sha256WithRSAEncryption
8d:6b:aa:5d:1d:e7:c4:68:e8:6e:8a:5a:d0:1c:2f:b6:d2:cf:
26:98:9b:f9:1d:64:ee:81:82:41:c5:cc:c0:2d:a0:a6:35:2d:
c0:f7:3c:06:9f:1e:d1:f5:c8:dc:c3:0d:33:fd:5a:af:5e:7c:
0a:22:7c:65:48:7d:23:cf:93:29:7e:78:69:73:ea:8c:02:b8:
80:1e:70:c2:a9:8b:9e:95:4a:cc:0e:41:ea:5c:93:0f:a1:79:
be:c8:23:a7:86:f1:0c:2b:0e:9b:f8:e4:6f:52:51:50:a8:2b:
4d:33:fb:94:2a:75:7a:97:34:f2:21:98:c0:3d:94:64:c2:48:
d6:9b:b8:df:d7:cd:ef:2b:97:b5:53:43:b5:c5:40:e3:53:7e:
c2:2c:73:2d:8f:d1:d7:11:09:78:a8:f4:fd:c6:cb:8e:e2:7e:
f1:b3:65:29:c2:9a:7a:ad:53:58:15:81:1c:2e:98:18:f6:60:
b0:da:6c:92:47:49:d5:15:ef:c3:35:77:f2:a7:1f:e4:8f:9e:
41:48:c2:b3:37:34:91:2d:0e:fd:e6:bc:a7:e9:24:be:98:dd:
22:5c:96:0c:e4:de:e7:a7:f4:3a:1c:27:eb:3b:c4:82:49:4c:
58:14:ea:5f:69:b0:07:46:03:77:4b:2e:d0:f8:dd:12:6c:10:
af:98:0d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:52:08 2025 by rpki-client