Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.cer
File: 7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.cer (raw, json)
Hash identifier: J1jbD8y/hikZWq041D11e+6upYjPhL8zxOs6z4rBjsM=
Subject key identifier: EF:FC:8A:6F:3C:44:B8:ED:D1:77:FE:51:A5:99:91:58:B8:DC:F8:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5559A29B53608F58BCEB1B7D26327
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:49:42 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 43864
IP: 91.200.112.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:55:9a:29:b5:36:08:f5:8b:ce:b1:b7:d2:63:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=effc8a6f3c44b8edd177fe51a5999158b8dcf819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:22:ff:62:4d:85:bc:4a:32:d2:03:c7:77:51:
92:be:f1:a3:40:a9:e7:38:6f:b9:8b:8a:7e:ec:b3:
5b:10:6e:a7:db:26:82:8c:73:43:e3:ea:0e:ca:a0:
5e:52:0b:a2:f5:e3:65:14:cc:3f:cf:80:83:40:7d:
58:0d:43:d5:d6:c3:da:53:c2:d8:f7:b8:cf:4b:83:
67:5f:c9:bb:bb:9f:ce:ef:8f:3b:54:d3:3b:0a:30:
b7:c0:0a:aa:a9:97:c2:d9:74:47:fe:23:18:d1:d2:
52:c4:9d:bd:2d:a9:d5:39:dc:8b:be:49:81:d3:6a:
3d:0e:ba:c0:fc:54:ac:45:81:e5:88:80:6d:c9:58:
70:d3:10:1e:de:97:21:6a:25:3b:14:29:66:f3:85:
d5:66:a9:36:e3:63:49:23:35:ae:cb:26:65:55:12:
22:c0:9e:f9:d9:c5:68:5a:ef:86:0c:ac:34:f7:5f:
fe:dd:9b:fd:7c:1c:17:dd:e5:d3:4c:b6:d6:e6:aa:
9e:32:2d:b3:ba:13:a4:d3:79:aa:50:37:49:77:b2:
e5:21:45:6e:a6:8c:d6:98:fa:e8:57:d8:27:22:9d:
9c:5b:cd:8d:21:d3:66:50:cf:df:79:fe:97:a9:13:
11:3f:47:dc:0f:33:51:20:06:bb:ad:4b:da:c2:d4:
b3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:FC:8A:6F:3C:44:B8:ED:D1:77:FE:51:A5:99:91:58:B8:DC:F8:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/ad26ba-0314-4ff9-a39d-6dd9387141a8/1/7_yKbzxEuO3Rd_5RpZmRWLjc-Bk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.112.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43864
Signature Algorithm: sha256WithRSAEncryption
7a:f8:ce:50:ac:af:db:46:fc:18:d0:d9:77:c3:38:19:7d:c8:
69:42:04:c5:4a:dc:09:e3:77:d3:7f:ec:30:06:c8:da:68:dd:
13:f3:0b:d5:4e:5f:8a:f5:94:da:e5:7a:7b:d5:b0:e3:4e:d5:
d7:82:fc:f2:d1:ef:f8:e8:44:7b:9a:b8:82:62:31:ad:fa:16:
ae:de:15:6d:19:3e:ea:19:dc:cc:67:8f:d5:04:1f:82:01:8e:
04:21:2f:2f:9c:2f:29:e2:8a:96:47:1b:c3:18:5d:34:7e:48:
f5:4a:a9:3f:3e:59:21:72:d7:6e:74:8f:25:5f:9b:35:e4:42:
2c:20:bf:ee:63:ee:c6:c9:ef:02:a9:17:f8:d3:63:3c:b6:03:
fd:20:7f:9a:07:8f:df:3f:0f:d6:24:de:32:e9:92:dc:89:66:
9d:06:da:d9:db:a7:5f:b8:77:0a:0f:58:97:96:54:cc:b5:ed:
c9:64:31:92:ae:0d:78:e4:c9:bd:8a:4c:92:0e:95:38:5b:39:
4a:7a:d5:e9:6b:f3:d0:cf:73:15:fd:7f:85:fd:d1:37:0d:24:
48:4a:0d:96:dd:3b:92:a4:73:60:a4:40:bc:46:df:2d:5a:e3:
0b:a6:07:4e:73:95:19:dd:1c:d6:28:34:e7:8b:95:55:87:35:
6c:45:5a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 14:22:05 2025 by rpki-client