Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-TVqludOotcrZUXIfHnSEtcqe94.cer
File: 1-TVqludOotcrZUXIfHnSEtcqe94.cer (raw, json)
Hash identifier: pb5sOh6sRMydxMxPzeS2CQGH3KrUvf09MHTZJSRTMks=
Subject key identifier: F9:35:6A:96:E7:4E:A2:D7:2B:65:45:C8:7C:79:D2:12:D7:2A:7B:DE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228DD9BFEB5A44A2B59813C0FDD17651
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/1-TVqludOotcrZUXIfHnSEtcqe94.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:29 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 42810
IP: 87.237.168.0/21
IP: 94.126.248.0/21
IP: 2a01:b400::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:d9:bf:eb:5a:44:a2:b5:98:13:c0:fd:d1:76:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f9356a96e74ea2d72b6545c87c79d212d72a7bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:58:39:f7:6b:10:51:55:44:65:a0:e2:f6:db:
5d:c5:39:55:53:62:d1:18:03:89:47:bb:38:33:11:
71:42:59:4f:0e:0e:47:5c:5c:d4:7c:fb:cb:7e:fb:
69:c9:9f:8a:54:cf:13:29:88:da:c8:c3:13:e4:00:
ed:e6:ac:f5:fe:30:38:38:56:d6:fd:02:a6:e7:27:
cf:2d:6d:2c:84:05:e3:c4:fc:5c:d2:c9:8b:4d:63:
93:7e:21:01:d2:15:bc:59:01:ae:5d:00:09:cc:33:
79:5c:8b:6c:3a:08:d6:16:3a:f6:65:54:72:e8:49:
20:36:8c:a3:47:ce:4a:02:3f:d6:d2:87:68:b9:d6:
2d:09:00:69:4b:44:7a:8f:58:ca:6c:9a:8f:b8:80:
98:2a:cb:7e:7a:20:96:fd:3a:16:27:13:9c:48:de:
24:49:75:96:30:d7:30:02:a6:20:bf:dd:a3:66:7c:
c7:a8:71:06:83:e0:39:07:12:23:2e:37:c9:ca:ab:
96:63:01:a9:ea:a6:43:71:d6:fb:40:9d:fa:c0:b9:
2c:b6:d6:95:24:47:fb:74:9c:c9:cb:ed:27:9b:aa:
21:99:f4:ec:9c:c8:ce:14:7e:4c:66:48:41:cf:74:
5d:48:d0:43:ea:6e:96:32:50:8f:50:92:9d:e0:c6:
c2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:35:6A:96:E7:4E:A2:D7:2B:65:45:C8:7C:79:D2:12:D7:2A:7B:DE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/1-TVqludOotcrZUXIfHnSEtcqe94.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.168.0/21
94.126.248.0/21
IPv6:
2a01:b400::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42810
Signature Algorithm: sha256WithRSAEncryption
20:c6:05:4f:41:2f:52:67:7e:9b:35:33:72:67:88:d2:32:8d:
7c:81:45:fe:c8:cd:79:7b:b9:33:f5:fc:82:7b:18:2c:71:78:
d4:f2:f5:6e:2b:c3:7f:50:28:a4:19:63:65:f4:56:bc:f4:70:
9a:11:df:51:62:bf:94:25:93:da:86:35:cd:52:23:07:86:5b:
fd:cd:31:17:00:4e:6c:63:53:8d:a2:2c:82:43:2c:12:a6:f3:
41:68:ae:53:71:44:e9:ea:97:41:fc:8e:19:8e:82:bb:ac:93:
ab:aa:d6:23:fb:f4:9a:74:1f:94:0c:d5:1f:08:dd:a6:f4:03:
f4:f0:b8:2a:be:d5:22:fe:40:c3:9a:e3:68:4c:97:60:ad:1d:
1f:13:9d:31:f1:76:e0:f9:7f:8a:43:8a:77:02:41:ba:7d:db:
11:25:ba:2d:41:d2:d8:98:ae:09:2a:d0:7e:31:47:20:45:b0:
8d:56:bb:77:46:ee:08:c6:e9:8b:ac:09:0c:5f:3b:39:fc:d7:
f2:f4:4d:68:62:ce:69:e3:2a:46:c7:45:d5:ca:20:03:de:06:
6b:ef:b8:70:fd:e2:c0:f3:18:85:6a:c4:ae:97:80:c0:8f:6c:
19:fb:64:06:1e:d1:9d:ac:d1:ee:7a:ef:97:2a:5a:77:86:54:
f3:b1:4f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:30:55 2025 by rpki-client