Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p_lKuTUFS4bctdatutLf21ZLUkg.cer
File: p_lKuTUFS4bctdatutLf21ZLUkg.cer (raw, json)
Hash identifier: i+HB2gU7yit4j2LbPrAh3dEUvdimh5A5di7zop/Esb4=
Subject key identifier: A7:F9:4A:B9:35:05:4B:86:DC:B5:D6:AD:BA:D2:DF:DB:56:4B:52:48
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942067F05EF4B82948099B40D96DA7F80C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/p_lKuTUFS4bctdatutLf21ZLUkg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:47:50 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205766
IP: 185.139.156.0/22
IP: 2a0b:20c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f0:5e:f4:b8:29:48:09:9b:40:d9:6d:a7:f8:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:47:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a7f94ab935054b86dcb5d6adbad2dfdb564b5248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:94:37:00:e0:03:b9:09:2f:24:12:2a:3e:82:
31:91:cd:c1:0f:6d:40:41:18:6d:8e:7c:9e:6d:24:
a2:a8:c0:0f:fc:8e:c4:6f:d5:b2:42:13:4c:32:2a:
40:a7:f5:e7:c2:30:98:44:90:0a:2b:ae:bf:14:19:
51:45:43:6f:92:7b:1c:32:82:8a:97:0a:5c:c9:9d:
6a:bb:71:13:e8:4a:f8:6b:12:e7:31:bf:88:67:db:
bd:e0:2e:b6:d6:01:0b:99:80:4f:d6:62:6b:e9:23:
53:4e:92:d8:38:02:02:bc:9e:f6:2e:72:20:e3:b7:
69:fd:fb:c3:b3:48:e5:4a:f1:e9:7a:f1:bf:59:9b:
c7:6e:5c:81:9a:fe:70:e7:8f:07:aa:0b:40:b3:e7:
94:24:ec:53:25:29:cb:d4:74:70:c6:e9:e6:e7:59:
7c:72:7a:80:af:39:e6:e5:84:3a:5a:73:55:49:9f:
ed:00:b5:77:c8:a0:de:5f:99:a5:35:f0:b7:13:8e:
e4:4f:33:7a:5f:da:d5:4f:bf:db:22:d7:6f:1d:7c:
79:87:69:7b:31:95:ab:c0:92:63:e5:a0:0c:75:60:
61:5d:1c:73:4a:eb:bb:bc:17:93:6d:48:2f:9d:9e:
27:9c:8c:70:44:84:16:d1:db:91:3f:e1:7a:1e:d1:
ea:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:F9:4A:B9:35:05:4B:86:DC:B5:D6:AD:BA:D2:DF:DB:56:4B:52:48
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/7e38b2-bec1-4464-a0ca-7d258b620169/1/p_lKuTUFS4bctdatutLf21ZLUkg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.156.0/22
IPv6:
2a0b:20c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205766
Signature Algorithm: sha256WithRSAEncryption
44:c2:db:dd:2c:0a:ff:e5:0e:a9:1b:3c:8a:c4:e8:82:1f:c4:
17:b7:4e:96:9a:9c:ca:1d:d8:53:22:42:57:71:08:3f:6d:73:
5b:fe:55:f2:21:bf:c7:f4:ba:68:c1:9a:b7:72:6a:ac:8d:b9:
00:cb:d0:bf:59:54:4c:64:89:f1:53:f6:17:72:fd:28:68:7f:
27:76:73:d9:fc:0d:2c:f6:3c:09:14:f3:49:6e:91:47:85:cb:
18:f1:a0:11:96:78:2a:0b:4a:77:26:ca:b0:88:6b:fc:1f:08:
3c:ec:c1:9b:5d:ac:21:7c:18:1a:37:aa:f2:a9:5f:ca:0b:87:
dd:b7:f2:b4:54:2a:72:1f:02:96:af:d1:75:4b:eb:d5:ac:1f:
96:7f:ef:ac:05:bd:56:e1:ac:9e:d4:fa:a4:2f:40:65:da:2c:
d3:50:81:3e:78:75:55:33:87:f6:e7:9b:3f:10:ab:84:27:33:
8a:30:cb:5a:79:a2:02:44:9c:fd:e6:9e:f3:dd:6c:53:4a:95:
7a:e3:40:ad:66:9e:15:a6:cb:eb:cb:cf:00:fd:99:bb:6c:16:
51:03:a1:1b:44:3b:a6:98:68:d8:f2:38:d3:9c:5b:13:81:a1:
a5:e9:5c:63:2c:d0:49:a3:78:b0:72:3f:85:24:03:d8:97:41:
19:b5:63:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:29:15 2025 by rpki-client