Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-DJywMMtsATwePh0uZ2poLfmOv0.cer
File: 1-DJywMMtsATwePh0uZ2poLfmOv0.cer (raw, json)
Hash identifier: mzdlTbl9XTTs4OPDj10EKEvAcwIhjPzJZclHe8WKh4E=
Subject key identifier: F8:32:72:C0:C3:2D:B0:04:F0:78:F8:74:B9:9D:A9:A0:B7:E6:3A:FD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B51A783DDC31FF2FDDE2A21E7A8C78
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/1-DJywMMtsATwePh0uZ2poLfmOv0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:49:27 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 215091
IP: 77.72.87.0/24
IP: 2a11:dd00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:1a:78:3d:dc:31:ff:2f:dd:e2:a2:1e:7a:8c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:49:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f83272c0c32db004f078f874b99da9a0b7e63afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:85:7e:0b:ef:ea:93:1a:8c:fb:a4:be:9e:8a:
50:cb:d5:74:33:21:0a:38:58:b1:18:2f:35:3f:70:
30:bb:8a:3d:3f:eb:f4:05:57:04:3a:75:6e:15:e0:
01:69:91:94:9d:cc:09:79:fa:32:5b:0a:85:ec:4a:
8b:3b:8e:9a:31:dc:5d:8f:ef:b2:86:12:c6:c8:06:
f5:0e:32:46:d5:34:4c:c4:22:d4:23:67:6c:6e:51:
84:bd:3d:6e:bc:e1:d8:e1:c3:0d:f6:4d:d3:b1:fc:
e2:0f:50:27:86:05:0e:56:5a:e7:9f:29:82:6b:2b:
73:4e:22:c9:37:fa:08:f5:f8:f5:72:b5:cc:8d:07:
79:a6:5c:1c:50:0e:d8:c4:d1:a4:69:c5:78:c0:e5:
5d:f1:f2:70:31:13:9d:78:2a:80:ab:20:22:44:7c:
c7:42:9f:4e:65:d4:30:1a:1b:74:12:1a:45:92:9d:
cb:f7:fa:5c:87:28:99:03:fe:b7:e7:f1:91:91:f9:
e7:ca:a9:ad:fc:40:e2:5a:a8:c5:98:bb:4a:dd:ee:
2c:d7:7f:21:73:ca:62:54:de:c7:84:db:99:ac:55:
68:a6:b2:5a:b6:9b:34:5d:ae:93:05:b6:06:e6:5b:
f5:bd:c9:c6:8b:8f:c6:a8:58:41:ab:d1:bc:de:2c:
dc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:32:72:C0:C3:2D:B0:04:F0:78:F8:74:B9:9D:A9:A0:B7:E6:3A:FD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/94a1e0-c180-4baf-9ea0-f67e7078878e/1/1-DJywMMtsATwePh0uZ2poLfmOv0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.72.87.0/24
IPv6:
2a11:dd00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215091
Signature Algorithm: sha256WithRSAEncryption
23:5e:7d:f9:37:56:4d:36:e2:17:11:b0:a1:b1:ab:d5:a7:a8:
6c:83:71:a2:09:97:92:2b:8b:d4:81:27:79:62:35:17:07:18:
43:cd:56:ca:f1:e7:47:da:f4:b9:78:8e:04:63:87:8c:41:42:
6d:5d:dd:d3:5d:c2:81:b1:33:8e:82:47:39:56:a7:cc:9f:fa:
70:77:0b:45:16:8d:33:da:13:66:c3:37:87:d7:b2:28:79:f8:
07:ed:99:c3:0c:9a:c3:b4:4c:0a:69:d1:e9:e5:a1:9f:7c:49:
af:87:f6:f3:6a:1c:f5:33:1a:0e:db:55:34:c1:80:2f:41:da:
2a:7a:54:ca:37:29:0f:b5:3e:48:7b:02:89:ad:c6:f9:63:a1:
93:06:f2:d6:fb:50:aa:45:29:17:07:2c:62:9c:22:5a:fd:7e:
0c:ef:11:e6:9d:4f:88:2c:7b:09:77:e2:6b:a4:fa:06:66:90:
c7:f3:35:9d:57:54:c7:e2:be:fa:b9:20:34:80:1a:76:52:f7:
60:0f:06:c4:a4:b5:97:cd:cd:a9:6a:4b:47:b3:81:91:33:27:
e0:41:37:ea:60:8d:d6:eb:8a:fe:9d:c7:f9:d7:61:f9:0d:0f:
04:73:b9:6c:26:96:d8:6d:5a:ba:52:92:67:00:6f:22:aa:8a:
b0:c1:96:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 00:06:23 2025 by rpki-client