Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7FExTgTslnbytgJI4bm9Au8A4Wg.cer
File: 7FExTgTslnbytgJI4bm9Au8A4Wg.cer (raw, json)
Hash identifier: Eg388AH0bkv84AJCXKloEuqKVOnzcyLSsKxmPVPgFgk=
Subject key identifier: EC:51:31:4E:04:EC:96:76:F2:B6:02:48:E1:B9:BD:02:EF:00:E1:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427476688F653052D9F192D9C03DEFEAA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cd/db5399-6fbb-4ce2-897b-3bbbca310d71/1/7FExTgTslnbytgJI4bm9Au8A4Wg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cd/db5399-6fbb-4ce2-897b-3bbbca310d71/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:38 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 204189
IP: 157.97.184.0/21
IP: 185.111.148.0/22
IP: 2a0d:ce80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:66:88:f6:53:05:2d:9f:19:2d:9c:03:de:fe:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ec51314e04ec9676f2b60248e1b9bd02ef00e168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:17:f8:9b:bf:6e:dd:74:6a:bd:db:75:8a:e9:
f3:2d:8f:49:b4:3b:c7:a3:99:cc:fb:d7:38:89:0e:
45:22:eb:67:0c:01:6e:0a:78:5b:85:a9:dc:11:07:
c1:9a:70:4f:8e:9b:f2:8b:54:ac:0f:61:b2:b9:51:
6e:76:52:12:3c:4c:05:3e:02:2a:4c:9d:28:8b:13:
7d:01:58:87:89:13:b0:76:d6:ea:04:c0:2b:10:2d:
74:b3:e8:1d:ea:ef:ab:14:27:9b:8c:10:ba:08:2a:
d1:d0:93:91:1a:78:da:50:30:7a:2a:cb:8b:c5:11:
2e:77:4e:3e:f7:1f:05:d4:c2:49:ed:b1:1e:cb:84:
2d:ac:9f:8d:f7:28:51:99:9e:ac:19:65:eb:e8:09:
3e:43:e7:0a:fa:ea:f6:61:d8:c8:06:05:37:29:6e:
28:33:ca:55:9f:e2:a6:22:97:95:99:25:88:b8:04:
5c:4c:68:10:e0:07:9d:c9:99:1b:9a:ee:43:c7:b5:
4a:95:98:39:2d:4c:f0:d4:c1:ae:a1:24:ae:02:11:
95:2e:99:67:90:03:0c:ac:22:28:1f:a2:b7:3e:d7:
22:86:31:49:91:5d:df:37:30:9c:6d:c6:7f:86:ad:
0b:ba:fc:12:94:16:00:d6:e4:d6:be:e4:c0:26:8a:
43:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:51:31:4E:04:EC:96:76:F2:B6:02:48:E1:B9:BD:02:EF:00:E1:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db5399-6fbb-4ce2-897b-3bbbca310d71/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/db5399-6fbb-4ce2-897b-3bbbca310d71/1/7FExTgTslnbytgJI4bm9Au8A4Wg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.97.184.0/21
185.111.148.0/22
IPv6:
2a0d:ce80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204189
Signature Algorithm: sha256WithRSAEncryption
33:63:6a:24:9f:3e:e9:4d:b5:96:d3:e5:5b:20:5b:d2:2f:69:
1d:4f:93:16:ca:b7:ee:37:27:0a:ff:f7:9e:9a:b5:b2:8f:13:
1e:91:e5:97:8b:b0:4e:19:be:a0:2f:96:cf:9d:8c:60:54:14:
de:df:2f:4a:6d:6e:84:e5:d0:d9:90:ca:1b:bd:1c:e5:f7:2e:
9c:2e:5b:89:91:40:2f:18:bc:50:bb:fe:7a:f9:da:54:be:3d:
9a:16:29:dd:d5:fa:4c:9e:e4:bb:da:c0:72:35:dc:90:9e:38:
56:0e:5e:0e:5e:ee:fc:70:77:e1:91:21:01:de:89:ce:a8:48:
94:73:18:53:c3:b5:aa:41:93:94:7a:64:bd:63:a0:e7:14:34:
f1:1c:68:df:fb:c0:7c:03:46:f9:c0:3d:24:f8:51:4a:b2:d7:
95:5d:5a:f4:a6:08:be:28:f6:83:6c:fa:6a:9e:df:91:4d:39:
13:56:42:59:2d:bc:56:3a:a0:58:5c:0a:23:4f:f6:2c:1e:36:
80:53:68:93:4d:23:d7:0c:42:5e:fe:57:7e:25:c9:e5:b9:a1:
01:c4:63:09:8c:25:58:a1:0d:34:6d:75:14:e7:fb:e0:91:a0:
6a:4e:22:b0:a9:b6:af:bd:74:3f:7d:0d:21:f0:32:b2:6a:ae:
b7:27:b6:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 03:18:17 2025 by rpki-client