Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer
File: tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer (raw, json)
Hash identifier: V1op/YFLqq+wXtbX8swYvrFr1bYEa+/V5xSf5bPX0uQ=
Subject key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FD38B5FEAA1A5555693E15EB98F744
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:48:59 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41493
AS: 48967
IP: 5.253.108.0/22
IP: 95.130.104.0/21
IP: 195.3.208.0/22
IP: 195.24.250.0/23
IP: 195.93.196.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:38:b5:fe:aa:1a:55:55:69:3e:15:eb:98:f7:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b55800300fa4017f970c95d767d812fd10d0dcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:49:0c:d7:04:57:5c:49:f9:21:29:ac:de:b2:
99:b6:0e:c4:9d:59:81:a7:4c:64:47:c0:4d:c7:dd:
b6:2e:4f:3c:a3:e7:fd:6f:31:92:c1:eb:0d:34:4c:
bc:7e:ab:a5:bd:71:4e:68:7b:9b:8e:ad:27:03:64:
5c:db:3d:0e:df:b2:67:7e:b5:73:31:2c:c2:0e:aa:
9a:ae:ad:04:97:1d:df:ca:3e:6d:16:b7:12:96:d8:
38:a2:69:a1:1c:4b:a8:b0:f0:fc:6e:7c:6e:f0:a1:
02:3f:18:b1:91:57:6a:88:a6:84:07:12:0d:36:07:
e8:1d:b1:08:56:51:01:65:e2:eb:74:25:5e:93:57:
9d:16:34:29:ed:bd:cb:c7:85:ea:1b:92:46:4a:e6:
4b:f2:5c:9f:24:be:01:f5:f8:81:2a:b2:30:84:08:
aa:85:e2:91:0e:b2:14:2e:dd:cb:72:f2:8c:bd:b7:
83:e2:34:0b:21:fe:7b:57:6e:d4:f4:9b:10:e1:81:
23:50:47:2c:b4:ff:43:02:e4:d5:7d:d8:99:cd:44:
36:02:b2:41:ec:ba:58:fd:60:52:a7:db:c0:f4:a4:
40:43:c3:03:f4:5d:ad:7d:f3:d1:0e:c9:ae:41:66:
3d:bf:1a:af:b2:c3:d0:76:b8:89:98:4c:9f:89:16:
f2:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.108.0/22
95.130.104.0/21
195.3.208.0/22
195.24.250.0/23
195.93.196.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41493
48967
Signature Algorithm: sha256WithRSAEncryption
7d:67:42:bb:5b:6e:bf:61:d1:f4:9a:38:c4:d3:84:c8:27:de:
bd:c2:be:11:24:a2:88:04:46:c2:19:a6:03:a1:26:f0:e5:8f:
7d:7f:ad:39:16:6c:ea:57:fd:e0:13:de:cb:b4:0a:a3:93:08:
dc:85:41:47:ba:98:f1:9b:4b:dd:04:4f:68:f1:c2:f3:03:dd:
c6:55:d5:5b:17:1d:93:60:0e:32:64:68:dd:20:e9:0a:c4:f2:
bf:49:86:6d:af:09:bd:24:b4:ac:cd:a3:23:be:fa:f9:20:62:
96:fa:a7:bf:77:a3:e8:ff:54:07:aa:81:14:67:39:48:4a:24:
e6:1c:44:39:29:18:91:48:c0:7e:11:91:60:a5:71:af:93:57:
ae:fc:5e:83:db:e2:8e:ef:80:76:e8:ed:2a:96:d3:7e:f4:39:
83:2a:04:c6:b5:05:5a:61:ba:b2:8b:4e:67:d6:e1:82:48:91:
ba:c1:b6:d2:99:0a:c5:40:b9:52:e1:06:00:99:cc:a6:89:73:
bb:2a:d3:e0:ca:0a:23:13:e3:96:bf:ec:c3:1f:8b:a6:43:a6:
9c:04:4a:fc:bf:39:c0:24:9e:2e:d8:31:20:66:65:a0:94:f8:
ab:52:12:40:eb:63:f5:49:7a:cc:7e:59:f8:48:28:07:98:a6:
86:34:43:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 07:27:30 2025 by rpki-client