Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-eAKvhhKYlt2-NH7zu-Beq9xQVs.cer
File: 1-eAKvhhKYlt2-NH7zu-Beq9xQVs.cer (raw, json)
Hash identifier: RA6yFjEHcIJc6bzAyLycvuWcPjNR8VbZevrHnVDEHrI=
Subject key identifier: F9:E0:0A:BE:18:4A:62:5B:76:F8:D1:FB:CE:EF:81:7A:AF:71:41:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942747B027AB773A7C787FE5A4CA23EB22
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/1-eAKvhhKYlt2-NH7zu-Beq9xQVs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:57 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 89.169.4.0 -- 89.169.11.255
IP: 93.183.68.0/22
IP: 195.178.17.0/24
IP: 2a07:f340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:b0:27:ab:77:3a:7c:78:7f:e5:a4:ca:23:eb:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9e00abe184a625b76f8d1fbceef817aaf71415b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:5a:e4:00:7b:89:c8:4d:ee:4c:40:d6:55:
78:74:f2:62:bb:c2:8d:0c:45:2b:44:a0:c6:f3:c6:
df:a5:0b:ad:22:b3:38:4f:6d:46:de:51:ce:df:5b:
7e:5c:d9:43:80:1b:c1:ee:2f:60:63:b4:3d:f3:58:
eb:1c:10:71:a1:23:55:fd:f6:5d:fb:83:7e:9a:09:
9f:a2:60:3f:e5:3e:7c:aa:04:c8:1c:a1:e3:dd:a4:
22:bd:a0:28:44:e3:7e:74:ff:7b:90:de:60:48:ec:
8e:f4:93:5a:a9:f8:ba:4d:35:fb:5e:74:ad:44:33:
74:59:3a:74:02:31:a0:74:6e:39:67:5d:76:91:10:
f9:95:ef:22:29:33:dc:ca:4f:11:84:93:e6:5b:24:
50:c1:bf:a4:8f:d5:5c:04:39:23:bb:e4:bf:9b:15:
7d:0a:04:ca:94:20:0f:91:5f:96:ea:96:fc:d5:86:
fb:76:79:df:d6:2b:92:78:21:bf:1e:0d:3e:2e:b2:
1d:80:06:d1:1d:04:38:8a:c1:fe:8d:60:65:a5:cd:
cf:24:08:ea:a0:f5:4a:0f:c0:7e:bf:23:a4:62:64:
90:b9:e0:6b:33:aa:c3:b3:8c:5f:96:3e:0a:58:8a:
34:2e:dc:59:f3:b0:d3:94:f4:bc:b3:7e:e9:75:ab:
1e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E0:0A:BE:18:4A:62:5B:76:F8:D1:FB:CE:EF:81:7A:AF:71:41:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8a322f-dc28-422f-b570-58b64d557c0c/1/1-eAKvhhKYlt2-NH7zu-Beq9xQVs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.169.4.0-89.169.11.255
93.183.68.0/22
195.178.17.0/24
IPv6:
2a07:f340::/29
Signature Algorithm: sha256WithRSAEncryption
4f:35:9a:46:b3:87:bc:0b:26:0e:d8:27:93:18:dc:58:b9:bf:
4b:1e:c6:fc:39:8d:74:d6:ae:a6:a7:f2:a3:0c:52:fc:ab:07:
a6:7f:15:a0:dc:df:14:4b:a5:e3:81:76:b6:12:1a:ad:c1:76:
71:f2:3b:78:86:fc:e5:a4:d8:36:0a:7c:6f:41:77:30:d9:3f:
d5:4d:c3:21:42:f1:17:bd:3d:7d:5e:65:18:4d:f2:8e:67:ca:
db:d8:c0:a7:c7:d4:b7:5e:37:ed:01:ef:4f:86:31:a4:73:e0:
10:80:02:79:cd:c1:20:3d:0c:14:46:a8:42:ff:7c:d1:23:d4:
41:0d:d1:d3:7b:a2:a4:ce:0c:3a:1e:65:2d:35:a1:ae:8c:bb:
17:c8:fc:01:ea:11:48:fa:83:20:15:39:5a:b5:dd:b9:e4:49:
81:09:76:e7:69:f4:58:82:1f:dd:c7:02:b6:dd:1e:51:21:2c:
72:cd:73:11:0a:bd:b7:f5:bd:54:d4:f1:1e:81:09:51:9b:10:
70:6d:a9:4d:62:d7:e7:4a:99:39:ce:1f:e7:e5:8a:3b:29:d6:
50:c5:b3:3b:ce:46:e0:f5:09:da:de:0a:e3:45:76:f7:5f:ef:
2c:e9:07:20:3c:fa:4e:e6:96:61:c6:5c:4a:5a:8f:00:34:28:
f1:30:a9:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 21:59:29 2025 by rpki-client