Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
File: ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer (raw, json)
Hash identifier: TJUZveB5GuYI7MRYfaAJugqYZm7rHDvC7hVVlIXeq80=
Subject key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195EC8CBE769461033C706CEE77BD7BA487
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 31 Mar 2025 14:13:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 30938
AS: 139610
IP: 5.39.248.0/21
IP: 5.144.176.0/21
IP: 5.178.96.0/20
IP: 31.192.240.0/21
IP: 45.12.216.0/22
IP: 103.136.68.0/22
IP: 185.5.36.0/22
IP: 2a00:4d40::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ec:8c:be:76:94:61:03:3c:70:6c:ee:77:bd:7b:a4:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 31 14:13:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=131881732a3e245a959bc679e0458c39f893e46b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:cc:fb:65:d6:b6:d2:4d:5e:4f:07:f7:af:e9:
0a:db:58:fa:72:2a:14:09:7c:5c:cd:87:96:dc:c9:
9f:61:cc:dd:f5:82:27:0c:c9:18:2a:d8:65:15:72:
ba:13:85:91:29:1a:4a:e6:c4:17:90:bf:ff:57:2d:
4e:19:7f:27:62:8d:d8:99:06:1d:12:7b:47:f7:fe:
32:bf:36:82:4b:51:9b:0b:2b:39:67:b7:b9:df:30:
ed:e0:9b:85:63:09:9c:22:86:a2:7e:f8:57:c0:eb:
6c:52:c5:3d:58:5b:b8:89:1f:80:5b:eb:d6:36:82:
67:d0:96:be:31:e1:52:ac:23:58:89:f7:8b:5c:cc:
65:82:ae:fb:c5:5e:63:38:f4:38:fd:83:61:d2:67:
e6:a0:7d:c0:88:22:fc:6c:90:37:0e:4f:66:a5:cb:
8a:1b:64:ea:57:05:c7:68:13:c0:41:07:b8:5c:76:
e3:5d:b4:0f:7e:94:5f:3e:ad:98:dc:5f:34:59:7c:
5d:c0:21:f4:fa:2d:a2:1a:da:71:a4:96:71:c5:e4:
0d:21:c8:85:98:4b:f8:de:8b:9e:db:9c:1d:41:c0:
a9:c2:f8:2f:8d:40:65:45:5b:f8:ed:45:c2:89:1a:
b8:17:10:d0:c3:28:d3:14:fb:7c:98:dd:5f:fa:23:
2e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.248.0/21
5.144.176.0/21
5.178.96.0/20
31.192.240.0/21
45.12.216.0/22
103.136.68.0/22
185.5.36.0/22
IPv6:
2a00:4d40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
30938
139610
Signature Algorithm: sha256WithRSAEncryption
8b:f2:a1:46:2c:35:d6:d0:3b:b5:ac:57:59:2a:40:5e:90:ce:
fa:2a:a1:74:b1:37:39:8b:9d:aa:d6:80:9c:f7:44:02:0b:cd:
d3:17:de:43:38:7c:b5:c5:2c:2b:01:1e:25:bf:b1:f6:a6:38:
67:3b:0b:f4:b7:45:de:ab:0e:86:30:10:9d:93:c7:2a:9d:bd:
5d:1e:cf:e4:03:3c:7d:b4:61:7a:43:8c:9f:81:b4:4c:31:bd:
72:27:8b:01:5a:a4:de:7d:a7:aa:6b:95:30:5a:96:da:41:c5:
81:ea:d7:de:4c:b8:da:ea:e2:35:37:c2:ee:27:98:32:5c:a7:
04:c2:fc:4c:de:e3:ec:40:45:be:bf:5f:72:6f:75:99:b8:4f:
ae:69:4f:04:0f:0b:65:54:88:34:f9:f1:04:5d:68:ff:40:95:
63:f8:a5:ce:e0:83:43:a0:46:8d:dd:7c:b3:a5:e8:74:64:fb:
18:f6:48:af:f4:b8:df:00:4a:66:10:b9:7f:6f:c8:37:aa:6c:
7e:02:34:c5:3e:c9:cf:0d:2a:da:6f:f5:e4:a2:29:c0:7f:fd:
44:73:24:ae:25:94:90:4f:63:d2:66:31:a8:bc:78:ba:f9:75:
07:43:3c:ea:af:5e:5c:fe:22:0f:80:cd:ec:05:ee:cd:ef:af:
9d:19:e2:0b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 22:05:42 2025 by rpki-client