Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
File: 13j4yccHK3MEiPnjISjdiVveMtM.cer (raw, json)
Hash identifier: SM5OlkD3jpnuYFq/sLaXwl+zDBT3WEI+GawLe/VVmRE=
Subject key identifier: D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B511480AEE7911FB4C66D32A523AD4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:49:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 215825
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:11:48:0a:ee:79:11:fb:4c:66:d3:2a:52:3a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:49:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:be:0d:d2:0a:3f:90:07:9d:30:f2:87:c8:dd:
8e:d9:e5:af:0f:85:58:5d:03:b3:ed:1f:00:b5:6b:
3e:57:3c:ab:0d:e9:bc:84:90:67:07:b1:37:f5:08:
14:9b:54:65:13:22:be:65:98:c5:1c:9d:0d:51:0d:
ff:e1:ad:9e:df:5e:14:16:78:f5:d6:1e:63:21:c7:
45:af:15:7d:4d:fe:1c:b6:e5:03:d2:73:ce:90:2c:
84:1e:1c:5e:9c:c6:14:51:a4:09:49:76:7b:65:5d:
fc:36:5c:eb:80:3d:17:05:b0:3c:b2:fc:8f:65:e3:
26:0a:62:c9:d8:03:66:45:ef:b3:13:f6:55:77:34:
74:6b:4e:cc:77:38:e6:52:c5:ec:aa:80:ce:cc:c3:
95:0b:4e:1e:ad:c6:5a:3c:e7:46:c9:09:df:b2:0f:
a4:22:fc:d2:49:18:52:4e:09:f1:0f:c6:bf:47:06:
69:0e:26:f1:a7:ad:20:aa:a4:41:2b:e7:73:65:a0:
9e:2e:92:c1:61:0b:c2:c5:1e:97:67:ca:b4:24:11:
59:cd:84:e0:c7:1b:f2:f1:ec:84:80:c8:c3:19:8c:
2b:e6:a0:ee:12:f1:ae:01:6d:26:4f:a4:00:09:a8:
34:d2:f4:27:d5:bf:94:3f:a3:c8:18:bc:b6:8f:40:
fe:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215825
Signature Algorithm: sha256WithRSAEncryption
05:69:a0:49:df:a3:a5:c0:60:49:89:68:ba:2f:cd:e8:ac:06:
f9:cd:1d:f6:1d:af:a9:d2:13:2c:83:55:a4:a9:49:fc:68:4e:
da:fb:f8:f4:57:10:4e:6c:23:ca:5d:4a:f5:45:9f:c2:8c:c5:
59:3b:36:be:8d:c0:95:a9:4d:4f:e9:fc:cc:cf:ce:22:f7:df:
ae:7c:7d:73:40:a7:60:a6:f5:f1:6d:1c:6f:ea:11:de:a4:c1:
cb:ed:74:46:a4:b9:17:34:3f:d9:fd:e7:d0:c8:87:79:07:64:
47:05:f0:34:30:aa:c8:c5:f2:68:aa:3c:34:bc:3e:c4:d1:2b:
ae:b6:ec:04:75:b1:9f:e7:41:d0:9e:ab:01:99:4e:86:49:1f:
72:b8:fa:e7:ff:72:0c:c3:3e:00:62:a4:f8:92:9d:ee:93:51:
53:7b:ca:e2:39:d3:71:e5:5e:b5:51:a3:be:d9:0b:c7:6e:6d:
4a:38:e6:37:89:72:99:ee:d2:5b:d9:eb:63:c2:06:a4:a3:ef:
ae:04:31:96:95:8a:00:ba:4a:cb:71:b0:f9:a9:56:2f:90:55:
30:92:6d:fe:75:0a:2e:01:2b:14:35:25:f8:54:64:37:91:7d:
57:bf:74:5d:91:37:e4:2b:40:2b:7c:b4:0f:ed:06:13:bb:1f:
90:52:7c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:15:10 2025 by rpki-client