Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ip_Szd9LRN55pb_Iyhmlb1UutOg.cer
File: ip_Szd9LRN55pb_Iyhmlb1UutOg.cer (raw, json)
Hash identifier: buG8XEkj+nE87yZ4vUhFioP40OAhV8dmp/GShTsWmik=
Subject key identifier: 8A:9F:D2:CD:DF:4B:44:DE:79:A5:BF:C8:CA:19:A5:6F:55:2E:B4:E8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFAB461E916F5D74A0E5818F0263892
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/985867-d6c9-4db0-b808-44ef5674fe30/1/ip_Szd9LRN55pb_Iyhmlb1UutOg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/985867-d6c9-4db0-b808-44ef5674fe30/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:48:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 202482
IP: 185.161.28.0/22
IP: 2a0c:f180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:b4:61:e9:16:f5:d7:4a:0e:58:18:f0:26:38:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a9fd2cddf4b44de79a5bfc8ca19a56f552eb4e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:18:84:21:c5:79:08:b3:e6:15:af:38:52:3f:
b3:3e:c9:a0:f7:53:23:e2:94:e3:f4:8e:fe:00:60:
86:fc:79:36:75:03:ef:76:54:fa:38:aa:b0:20:9d:
26:80:79:b6:9d:55:50:3e:87:b2:3d:be:d2:cb:8e:
70:ae:9e:15:58:31:36:a7:ec:61:53:55:5a:3b:3f:
05:d9:62:ce:34:9a:97:2a:fe:ae:00:4c:8b:16:79:
c1:5f:89:59:0f:bc:b7:1e:77:57:80:d7:4e:d4:8d:
8a:99:d5:7f:8a:f9:c5:62:76:2f:29:c7:85:56:a7:
93:39:67:08:df:a7:d8:10:da:01:11:65:88:e1:c6:
2b:75:c9:e3:28:53:39:f1:53:72:c0:4e:e0:d7:ac:
3a:04:b9:a1:6b:1a:1f:51:e9:33:5e:7c:c4:73:3f:
b0:58:c4:b8:ae:58:4b:12:3b:54:16:8a:c5:ad:58:
f8:ad:64:72:2e:ec:29:0f:03:18:85:ef:54:9e:49:
d9:39:d1:3c:3a:ac:13:e6:fc:65:ff:7c:62:54:bf:
61:cd:c2:c6:a0:bb:31:57:8b:03:a1:f5:28:8b:ad:
2b:73:8c:6c:a4:96:e5:a9:14:01:5d:25:f5:74:9a:
eb:50:35:63:6e:ae:13:05:35:e1:c3:46:02:c7:f9:
43:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9F:D2:CD:DF:4B:44:DE:79:A5:BF:C8:CA:19:A5:6F:55:2E:B4:E8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/985867-d6c9-4db0-b808-44ef5674fe30/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/985867-d6c9-4db0-b808-44ef5674fe30/1/ip_Szd9LRN55pb_Iyhmlb1UutOg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.28.0/22
IPv6:
2a0c:f180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202482
Signature Algorithm: sha256WithRSAEncryption
aa:35:e0:d5:a2:33:3f:fd:96:25:55:77:b0:3b:78:d3:da:b0:
e0:75:18:45:1e:ad:25:5a:b7:49:63:b6:40:1b:52:40:8a:dd:
5e:2e:77:0b:5b:99:9b:e1:bb:16:8b:94:c3:ca:9e:3c:0e:bb:
5e:07:fe:5f:f8:6f:74:ef:fc:2f:7a:81:a3:1b:3f:75:1e:f1:
c3:d1:fc:49:18:0c:2f:b1:f2:f4:ec:ce:b7:50:18:81:5a:f4:
ee:7e:48:18:92:c5:2a:ac:ad:73:59:e4:1e:ba:af:4d:16:06:
9a:69:fb:a6:9c:5d:73:a9:b2:d4:b1:a5:8a:12:4f:de:4f:23:
ab:dd:ff:25:de:3f:30:d3:8c:44:07:e8:60:c2:25:ee:63:37:
2d:f5:03:cd:e9:97:4d:49:fb:52:85:43:77:49:93:e4:9f:e5:
71:c6:91:59:94:87:fa:f2:e6:c6:97:a5:14:2f:55:64:fa:fc:
70:2e:92:1e:12:1d:db:35:c8:03:22:09:18:38:0a:e0:d9:51:
45:04:f9:3b:8e:72:14:ce:b1:4a:3f:05:0e:6f:05:67:7e:22:
d6:80:e4:87:21:37:4a:16:f9:8b:67:af:d3:c0:12:42:e7:ad:
7b:f2:8e:32:39:2c:0a:64:cc:e4:45:48:fa:7b:e9:93:98:50:
81:8d:bf:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:46:55 2025 by rpki-client