Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3rBGtuMJ6ahmUiwqQMZv_EL7uEM.cer
File: 3rBGtuMJ6ahmUiwqQMZv_EL7uEM.cer (raw, json)
Hash identifier: LXqEWp4BREL/3Gta+FWeqfyi4sf5OYgicHf8D7HHP74=
Subject key identifier: DE:B0:46:B6:E3:09:E9:A8:66:52:2C:2A:40:C6:6F:FC:42:FB:B8:43
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228DDCCCF6C91893AF207B40DD1121E1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/3rBGtuMJ6ahmUiwqQMZv_EL7uEM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:30 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 24713
IP: 80.248.160.0/20
IP: 81.22.160.0/20
IP: 185.134.88.0/22
IP: 2a03:d640::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:dc:cc:f6:c9:18:93:af:20:7b:40:dd:11:21:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=deb046b6e309e9a866522c2a40c66ffc42fbb843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6f:ea:d5:20:02:ad:73:20:81:a8:cb:0c:b4:
f5:0c:a2:9b:b2:4a:a5:91:b6:ec:5e:26:5d:9d:92:
73:bc:f3:13:d0:75:56:f4:1f:64:9d:f7:66:af:f0:
41:0f:67:be:a6:b4:14:06:45:96:de:60:4e:ac:ac:
6e:96:cb:43:61:a4:5e:0a:df:53:f6:a1:6f:de:9c:
02:cd:0d:17:47:d5:38:67:81:da:9c:aa:67:87:cd:
35:76:26:f1:e8:3a:55:c1:c4:7d:75:2e:df:35:55:
5c:2f:9e:cf:c0:f7:ab:80:c1:7f:1a:74:8c:7e:c8:
52:21:17:77:65:5b:29:fc:e0:44:2e:be:60:34:6d:
08:0a:7d:37:6e:ca:6c:d6:dd:3c:ae:20:ac:8f:c0:
8f:de:9c:0f:1f:08:05:54:49:12:6c:17:03:de:30:
78:73:af:90:e3:a4:da:3b:1e:2c:1a:c2:9c:fb:78:
44:84:48:6c:10:5f:fe:dd:59:97:8a:19:09:67:be:
10:34:75:8c:8f:c4:93:d9:f6:4c:34:e3:65:96:13:
de:fd:1f:08:6e:23:72:8a:a0:f5:f6:f3:d9:6d:0d:
c8:d8:c9:57:cb:01:b2:c4:79:b5:88:06:01:0f:e3:
88:d9:ef:95:83:2a:6e:ff:81:a0:0f:36:d2:00:41:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B0:46:B6:E3:09:E9:A8:66:52:2C:2A:40:C6:6F:FC:42:FB:B8:43
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/d24bc2-42f3-46d9-bdd9-1c9492245cab/1/3rBGtuMJ6ahmUiwqQMZv_EL7uEM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.248.160.0/20
81.22.160.0/20
185.134.88.0/22
IPv6:
2a03:d640::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24713
Signature Algorithm: sha256WithRSAEncryption
7d:f9:9d:18:83:97:2f:75:4e:7a:64:a0:8e:d0:78:3e:55:bc:
e4:c5:0f:55:6b:c8:80:65:34:34:16:18:ef:06:1b:bf:47:15:
90:0f:2f:d9:0f:25:e3:0d:62:56:74:e8:84:17:22:10:37:f2:
32:0d:93:26:0e:08:5e:91:c2:f9:7a:15:0c:5e:fe:ba:ae:c6:
eb:d4:68:ce:7a:23:fd:4b:f0:8e:ce:fa:53:8e:2e:e6:f3:3a:
ca:3e:58:d4:cf:d9:6c:31:63:cc:ea:82:47:ae:0d:10:a3:d9:
80:55:55:b2:d3:6d:2c:63:b2:de:5d:68:30:8e:93:62:e6:bc:
8c:e5:bd:0e:ed:22:b7:c7:9c:00:19:44:92:d8:ee:5e:31:71:
7e:11:bb:c3:cd:32:33:16:02:a3:47:24:1e:a4:ab:38:6e:ba:
b1:a7:69:29:2d:3c:ec:82:2a:e6:28:e8:25:a0:1b:87:aa:e3:
04:37:bc:e6:73:d3:36:8e:8e:0c:55:ea:fb:b7:3c:92:27:e6:
ed:9b:3e:ce:01:5a:44:94:c5:51:4e:c0:91:06:69:d4:3d:5c:
fe:6d:35:d2:8a:69:5e:ed:80:ee:cb:ff:24:00:59:cc:47:13:
77:55:d0:55:3e:c8:70:2e:f3:f3:bd:e7:bd:be:d0:33:29:1c:
59:58:40:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 23:11:22 2025 by rpki-client