Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-V055baJCkbIzlyQN-bSY2XoV7w.cer
File: 1-V055baJCkbIzlyQN-bSY2XoV7w.cer (raw, json)
Hash identifier: otH5Qwk9JUJLDfHvxfPdPCU+5Dbx9bljgKA7/EkxQQA=
Subject key identifier: F9:5D:39:E5:B6:89:0A:46:C8:CE:5C:90:37:E6:D2:63:65:E8:57:BC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B18593517B81136EE2E94E95A1D705
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/c3206a-9c16-4527-8b89-6e8dcbaeaf7f/1/1-V055baJCkbIzlyQN-bSY2XoV7w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/c3206a-9c16-4527-8b89-6e8dcbaeaf7f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:47:49 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 213027
IP: 91.203.106.0/24
IP: 2001:678:f70::/48
IP: 2001:678:f74::/48
IP: 2a11:a00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:85:93:51:7b:81:13:6e:e2:e9:4e:95:a1:d7:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f95d39e5b6890a46c8ce5c9037e6d26365e857bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cd:84:11:f6:42:67:80:97:3c:db:07:9e:57:
b3:8d:6a:bf:f8:f1:e3:18:b4:ef:83:8b:e6:30:37:
68:ac:dc:89:1a:d3:09:09:90:60:0c:f3:42:1c:14:
b0:c8:f2:8e:0d:20:68:35:de:da:00:a9:84:25:96:
9d:8a:b3:d4:eb:f9:aa:6a:9e:d8:b9:db:d5:0f:c8:
0c:50:39:1b:31:e2:d6:4c:6a:8d:2d:b7:4e:b8:2e:
fa:84:43:7b:bd:6a:2f:fb:46:42:6c:d1:09:87:ad:
8e:c9:f6:e0:cc:d7:aa:6e:47:2c:3d:9b:18:c7:3b:
56:e4:c2:f5:b9:06:dd:85:54:74:2c:61:41:af:f8:
3b:62:4c:ec:55:3c:ba:8e:a1:e9:d8:d1:26:1c:06:
74:9e:31:74:ea:25:8e:74:e9:b4:40:1f:ce:15:c4:
43:64:1d:9b:9f:99:85:ef:27:19:ba:2c:9d:70:2c:
39:f2:2a:e8:25:92:d2:38:4e:cd:11:77:40:c3:4a:
72:10:45:91:88:37:23:8e:a9:08:e6:40:98:c5:5d:
16:cd:f2:83:c6:b5:bd:43:17:a6:7b:d9:fa:ad:65:
da:cc:ea:5f:60:81:da:61:25:f8:5d:9e:41:42:bc:
e6:2c:50:ea:e7:69:63:79:b3:d4:2e:a9:34:d1:cf:
6e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:5D:39:E5:B6:89:0A:46:C8:CE:5C:90:37:E6:D2:63:65:E8:57:BC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c3206a-9c16-4527-8b89-6e8dcbaeaf7f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/c3206a-9c16-4527-8b89-6e8dcbaeaf7f/1/1-V055baJCkbIzlyQN-bSY2XoV7w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.106.0/24
IPv6:
2001:678:f70::/48
2001:678:f74::/48
2a11:a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213027
Signature Algorithm: sha256WithRSAEncryption
08:01:70:14:f4:c0:ca:bf:75:e5:2e:df:13:05:b3:ea:c3:5e:
c9:d9:d2:8f:29:2a:82:65:36:d6:89:cd:77:98:30:cd:42:33:
8d:5e:5f:bf:4c:64:c4:4c:53:87:bf:c4:ad:0d:77:15:e9:60:
e0:88:d5:d8:53:20:3c:fb:d0:e6:de:5f:f2:eb:6b:54:e6:39:
c5:4b:c8:2d:45:82:90:be:3f:b0:69:ff:be:26:8e:9b:0f:5b:
3e:77:7d:e9:39:dd:4f:b4:ab:85:d7:6b:49:8b:2a:e9:5e:83:
5d:7d:56:f7:44:6e:d9:cc:bd:f5:97:f2:72:e0:37:87:84:7c:
87:f1:94:df:dd:eb:04:97:a9:65:78:ab:5a:1f:17:00:07:d0:
71:d6:5b:c7:3a:18:a9:1e:e9:1c:6c:3c:1f:01:be:77:88:8e:
92:f0:1f:7f:ee:f6:7e:ff:5c:37:42:57:8a:04:b1:2b:a9:da:
94:eb:48:79:68:a7:68:ff:78:63:ac:4c:d0:03:4d:02:44:86:
e8:38:b6:f0:f3:a3:69:40:ce:e6:b9:c5:c0:65:f5:6c:ec:5e:
7f:42:0d:c6:34:b3:bd:90:c4:bb:6a:95:d2:94:44:ca:13:69:
63:fc:ff:da:50:aa:9a:c9:f1:87:2a:14:a9:10:76:24:c8:9b:
11:ba:d5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:34:27 2025 by rpki-client