Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DghrZ9iYllO662i40kq56b0Mryo.cer
File: DghrZ9iYllO662i40kq56b0Mryo.cer (raw, json)
Hash identifier: 78+2yKJFkrDMCeznK2tncPOgfkJigy3m8PFnp5uVkgE=
Subject key identifier: 0E:08:6B:67:D8:98:96:53:BA:EB:68:B8:D2:4A:B9:E9:BD:0C:AF:2A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D9D87FD31E11A78095DE9153A71EC8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/DghrZ9iYllO662i40kq56b0Mryo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:58 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.17.48.0/22
IP: 194.9.128.0 -- 194.9.166.255
IP: 2a04:1440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:d8:7f:d3:1e:11:a7:80:95:de:91:53:a7:1e:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e086b67d8989653baeb68b8d24ab9e9bd0caf2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:b8:3b:71:26:36:bc:aa:6d:16:45:58:7b:78:
af:2b:9a:09:71:ad:29:6f:8b:5b:8a:c7:46:85:8d:
34:99:c3:3e:85:d3:4f:2d:71:6d:f3:f6:43:ce:51:
31:89:bf:33:9c:8a:07:34:57:cf:11:53:d7:2b:41:
d3:0c:fc:03:fa:03:75:17:67:85:05:9f:0d:12:7f:
be:d4:e7:34:b8:02:e7:9c:a6:45:56:87:6e:4c:2a:
95:5f:99:69:71:72:e0:da:c7:57:b8:f5:85:b0:9e:
3d:68:05:74:cb:53:7f:f5:23:ef:28:07:0d:3f:e0:
af:20:0a:9b:10:ec:6c:d8:ad:c8:17:be:d4:09:8f:
0c:a4:df:db:e0:ec:e2:bb:d2:63:79:99:01:c3:04:
db:1d:1d:50:f0:05:19:c8:f0:fa:6d:8e:6a:30:dd:
90:7d:2b:66:3d:29:9d:8b:24:75:cf:8e:c9:5d:f1:
2a:01:66:f1:52:74:7a:c2:22:b1:83:e8:b2:90:e2:
85:0b:6b:bd:65:59:e5:92:92:50:a0:41:ca:8d:b3:
90:d0:55:d3:67:61:96:60:14:56:4f:e8:e5:e0:a9:
27:4b:70:04:6a:d8:41:a3:87:42:d8:cc:68:56:67:
82:98:d3:90:bd:04:b1:6f:e5:33:3c:9c:02:fc:d0:
76:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:08:6B:67:D8:98:96:53:BA:EB:68:B8:D2:4A:B9:E9:BD:0C:AF:2A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/3796fa-c02e-45f9-a1a4-622bb4899887/1/DghrZ9iYllO662i40kq56b0Mryo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.48.0/22
194.9.128.0-194.9.166.255
IPv6:
2a04:1440::/29
Signature Algorithm: sha256WithRSAEncryption
63:96:75:f0:17:42:40:be:3a:bf:a0:2e:6e:94:f8:70:43:a3:
5d:5b:49:07:54:77:27:eb:ec:4b:65:82:22:98:c6:86:1e:fa:
c5:d8:f0:7b:aa:f8:90:ce:16:71:b0:a2:28:b5:00:4f:02:1e:
07:45:9e:30:53:6c:60:9a:04:59:76:5d:fa:15:f3:de:ff:b9:
97:00:f2:1f:42:00:ea:c9:d7:c4:7d:e2:6a:67:7e:8d:71:ce:
47:ae:f6:17:bb:04:4a:0b:84:53:24:b9:c2:e3:f5:be:e3:b3:
43:3e:f6:b1:9d:c9:0f:20:47:63:0c:2d:3e:91:34:d4:d3:e3:
79:8f:58:e3:26:07:fb:b3:92:2b:c0:71:b1:68:5f:8e:a0:3c:
37:68:f4:84:fb:a6:2e:ca:b9:f7:f6:86:a0:ca:c9:9e:9d:bd:
6a:59:79:d7:25:e0:78:77:29:37:28:4c:63:47:cc:5a:73:65:
ee:12:02:b1:7c:b6:2a:19:e9:53:a4:46:79:4b:cd:fa:9b:e3:
fb:15:79:3f:4d:60:e4:82:2c:6e:c6:53:91:0c:2b:ba:cc:19:
a4:29:18:77:92:14:35:3e:dc:bf:21:ec:24:a7:9a:48:e8:66:
f4:a0:67:ef:86:4a:e6:6d:6a:ab:6c:38:c2:d5:03:5e:bc:43:
c5:1b:ef:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 04:53:36 2025 by rpki-client