Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13mWjmbtvqNy75W6or9okThWekA.cer
File: 13mWjmbtvqNy75W6or9okThWekA.cer (raw, json)
Hash identifier: ZtlCKg73Vd5GIyYdsQZhksnutU2q8/GNRb8xqCLOQvk=
Subject key identifier: D7:79:96:8E:66:ED:BE:A3:72:EF:95:BA:A2:BF:68:91:38:56:7A:40
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258EF362A1DE4CA73D273E0F4E1006C8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/13mWjmbtvqNy75W6or9okThWekA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:32 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205496
IP: 185.214.228.0/22
IP: 194.15.137.0/24
IP: 2001:67c:2fd8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:f3:62:a1:de:4c:a7:3d:27:3e:0f:4e:10:06:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d779968e66edbea372ef95baa2bf689138567a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:77:d9:2c:81:45:fb:ce:53:c2:ca:da:24:1f:
0d:19:3f:20:f8:5f:d8:5f:2c:ab:8f:5a:73:6f:48:
0b:ae:a2:13:07:23:81:36:36:1f:19:9b:91:f5:17:
f2:2e:50:93:d1:0f:49:00:d4:63:5c:df:bd:bb:c5:
0b:69:4c:dc:ad:4e:59:d6:53:8e:41:63:6b:ef:04:
3f:b7:57:03:7b:3b:60:1e:80:ef:e9:29:a5:ed:d4:
e9:6b:0f:92:ff:23:41:c7:86:38:76:75:5b:8b:cd:
ae:93:51:2c:82:d2:40:b5:43:c9:2a:d0:11:09:2b:
f1:91:fa:3f:8a:79:0e:69:cd:38:c6:38:da:5b:2b:
2c:ae:ba:c0:68:c7:aa:18:ee:44:b9:56:23:2f:d3:
04:56:ea:88:d9:dd:63:24:6a:2d:d6:62:97:d6:09:
fc:e0:8f:23:41:11:a2:d8:a3:03:95:fc:4a:86:4e:
11:3b:c0:e5:27:69:ba:08:4a:01:52:0d:fb:a5:5d:
2c:58:0a:9c:c2:d2:71:00:33:a4:f5:97:d6:ee:dd:
59:36:38:a9:ce:25:d8:16:b1:b8:a9:f7:29:f1:a4:
6d:e9:da:ee:51:1c:7e:5e:e7:d5:c8:ef:bd:c8:83:
51:79:d4:ef:0e:07:14:89:71:c7:b1:5a:d6:6d:39:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:79:96:8E:66:ED:BE:A3:72:EF:95:BA:A2:BF:68:91:38:56:7A:40
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/13mWjmbtvqNy75W6or9okThWekA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.228.0/22
194.15.137.0/24
IPv6:
2001:67c:2fd8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205496
Signature Algorithm: sha256WithRSAEncryption
5a:f7:00:ee:cf:10:2c:32:16:7b:aa:62:52:c8:89:77:3f:31:
99:9a:9e:45:da:36:4d:6d:1b:91:2b:95:cc:a0:79:6c:62:47:
38:e8:ad:98:97:61:2b:99:00:f8:93:b9:05:aa:25:c2:99:ba:
67:59:dc:b4:ad:ff:d4:b1:59:bd:01:6a:75:9a:ef:0e:73:e0:
08:34:4a:f1:89:7b:de:7b:50:e5:1f:af:58:ec:1d:03:55:25:
b6:00:76:65:23:ef:fe:85:29:af:05:f2:4d:27:83:4a:76:59:
9c:15:1e:6d:45:de:2f:e2:81:26:d8:01:09:3e:28:2c:4e:37:
db:47:72:2a:d9:0f:34:d4:d2:51:47:b1:7c:ce:8d:c2:2c:a2:
a8:7b:f1:7b:45:7c:b8:87:c2:ef:d4:01:0d:72:1b:95:cd:66:
42:ec:f2:b2:f0:30:43:0a:b1:26:0d:6f:d3:cf:2c:47:e8:5d:
e8:83:9f:95:34:1a:ac:f5:c2:ce:71:e1:7a:e7:05:89:51:ec:
c2:f5:d8:95:51:f5:a6:d2:4e:22:8b:cb:dd:c9:d4:36:41:01:
d6:ac:a6:0c:3a:6c:91:9f:07:3a:33:81:68:6e:06:c8:cb:78:
dc:dc:5b:5e:df:36:3b:2b:6e:1a:32:6a:27:d9:db:fe:c5:80:
ce:7f:2c:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:11:08 2025 by rpki-client