Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DE-ZX0GSIPWHQmfWjMFDcvDN8pM.cer
File: DE-ZX0GSIPWHQmfWjMFDcvDN8pM.cer (raw, json)
Hash identifier: hN1XbqmMA8gJGA4jv55iSCMRT85/ADFWWSeUB2izsfE=
Subject key identifier: 0C:4F:99:5F:41:92:20:F5:87:42:67:D6:8C:C1:43:72:F0:CD:F2:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B233AEA8420DC895B2CAAC3E9C8EFD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3c/7287cb-9051-451a-b34a-264cc427254e/1/DE-ZX0GSIPWHQmfWjMFDcvDN8pM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3c/7287cb-9051-451a-b34a-264cc427254e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:34 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 209905
IP: 45.65.72.0/22
IP: 185.191.72.0/22
IP: 2a10:1700::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:33:ae:a8:42:0d:c8:95:b2:ca:ac:3e:9c:8e:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0c4f995f419220f5874267d68cc14372f0cdf293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9e:52:77:3c:a1:5b:55:39:5c:15:a5:bc:e1:
30:cd:ac:1e:d0:48:f9:52:bc:f1:99:08:df:ba:f2:
d0:dc:ab:9c:5f:f3:2a:79:8c:ea:0b:c0:9f:48:85:
02:16:cd:22:01:b9:a1:45:66:7e:35:20:5e:c4:ef:
2f:34:1d:f4:1f:7c:d6:8a:7f:f9:b0:3b:74:36:78:
7c:2c:38:9e:02:95:8b:c2:ac:5c:79:94:5f:7e:99:
75:ac:1c:6a:b9:08:35:8c:47:b0:5a:21:e3:3f:25:
88:a5:9a:67:10:cc:48:f4:77:cc:12:92:9f:ef:11:
ba:40:8d:48:03:06:d4:1d:68:9d:d0:41:89:53:b3:
2e:b1:9d:b9:a5:8b:5f:de:95:61:49:74:0a:c2:57:
df:d2:f0:94:80:24:b8:78:49:07:27:b3:73:f9:06:
72:1c:24:e7:f7:60:3a:90:b1:b8:ac:ea:e3:4b:94:
8a:fc:a6:02:73:ed:cd:7e:ce:90:21:fa:84:50:98:
9e:a2:95:7d:02:1c:fe:21:52:04:d1:b6:83:1e:5f:
b9:95:e2:16:46:84:b0:79:0f:71:ed:42:0b:df:63:
f5:00:57:a2:8f:3b:c2:3a:8c:69:a7:0b:8a:4b:12:
d0:2e:f2:22:05:eb:f7:a6:55:47:2a:e7:69:0c:42:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:4F:99:5F:41:92:20:F5:87:42:67:D6:8C:C1:43:72:F0:CD:F2:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/7287cb-9051-451a-b34a-264cc427254e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/7287cb-9051-451a-b34a-264cc427254e/1/DE-ZX0GSIPWHQmfWjMFDcvDN8pM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.72.0/22
185.191.72.0/22
IPv6:
2a10:1700::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209905
Signature Algorithm: sha256WithRSAEncryption
7e:58:6d:f6:49:bd:39:47:93:c9:b4:93:b9:a9:25:c0:75:9e:
3c:f2:e8:fc:ec:05:b2:fa:4a:f0:76:77:d8:ff:2d:00:d9:43:
d6:42:d6:72:04:e4:27:3b:32:fe:20:c3:b3:42:4b:f8:e8:5c:
58:f8:14:66:6b:ea:42:e1:35:40:f3:94:cd:79:b1:ec:a5:1b:
d3:0e:ff:e2:10:6a:67:69:00:5f:8f:76:3f:92:50:07:2f:5e:
c5:59:af:b6:43:ff:1f:eb:8f:9c:46:8b:a1:36:e2:d5:62:37:
1e:60:3d:8c:84:6e:50:69:47:69:cf:25:31:90:15:6e:36:26:
09:87:f1:d5:3f:e2:3b:e8:0f:6c:69:47:d4:68:eb:19:a9:9c:
79:39:c5:6a:03:a4:ea:94:59:63:c8:3b:e2:1e:df:15:df:9a:
1c:cb:f7:d0:5e:76:29:48:a5:27:16:f3:e9:7a:e5:6b:da:0d:
00:8d:84:5c:a6:d7:bb:7e:c7:72:23:63:1c:ed:28:f6:3c:52:
11:64:16:bc:f9:a6:ee:96:6b:45:be:ad:e4:1f:df:94:05:3a:
05:8c:e7:22:66:c3:ff:08:02:7f:19:f0:e0:6c:46:d3:f0:c7:
0c:80:05:fd:31:0f:0e:68:ae:62:bf:23:0f:fb:2b:05:97:19:
8a:6d:79:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 22:23:04 2025 by rpki-client