Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1QTmQeVaSK7gFB4sDSYicQLKptQ.cer
File: 1QTmQeVaSK7gFB4sDSYicQLKptQ.cer (raw, json)
Hash identifier: Vqosd9E8Nz0uBEYop7h+hd0BDZoDphQkAMHJVHAY0nA=
Subject key identifier: D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5DA0F0121734AAA2FB87D085E229A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 5.182.84.0/22
IP: 46.254.92.0/22
IP: 77.232.128.0/19
IP: 80.251.112.0/20
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:da:0f:01:21:73:4a:aa:2f:b8:7d:08:5e:22:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d504e641e55a48aee0141e2c0d26227102caa6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:27:c2:66:17:df:b7:8e:18:1e:d0:24:0a:fe:
95:ad:87:65:57:c8:b3:9c:dc:38:fd:34:82:02:97:
63:70:71:5e:ff:7f:3b:51:ba:b6:01:9f:16:70:f7:
33:74:2d:ee:69:b9:64:ef:b8:d0:4c:7b:1f:6a:db:
48:3c:e1:39:dd:5f:92:92:07:19:85:a2:f2:c0:6f:
4c:fa:7f:2b:d1:9d:a4:d9:30:53:5b:a8:f4:17:c0:
10:a9:da:ef:4c:09:72:64:7e:7b:f6:5b:34:4f:49:
4c:58:80:37:f9:4f:d0:3a:5a:ac:dd:a3:c4:78:78:
03:ee:f0:89:84:b4:d4:f6:d8:f5:4d:17:b6:56:cb:
1a:6b:3a:22:e9:be:05:f7:fd:72:7f:e6:b7:5c:10:
d4:4f:67:1e:2e:0b:44:f1:58:63:c9:ce:5f:ca:d5:
a2:d1:c2:e1:6e:9a:c3:ee:1f:ad:89:92:fa:0a:23:
77:34:f5:29:de:4f:6f:ab:ed:27:01:2c:84:18:10:
61:a5:b1:d9:75:bd:da:de:54:53:40:34:91:b3:2f:
8c:16:c3:bf:76:5d:06:69:b4:63:9b:fe:21:02:02:
80:14:4f:17:58:e3:42:9d:68:8b:8f:4c:61:2e:95:
07:4b:8f:dc:a1:e8:04:a1:e7:fa:97:cb:e9:5e:cf:
44:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:04:E6:41:E5:5A:48:AE:E0:14:1E:2C:0D:26:22:71:02:CA:A6:D4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f01f35-2cca-4e5a-828a-6bffcb7c0f0a/1/1QTmQeVaSK7gFB4sDSYicQLKptQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.84.0/22
46.254.92.0/22
77.232.128.0/19
80.251.112.0/20
Signature Algorithm: sha256WithRSAEncryption
63:67:65:95:2e:7d:c4:b6:cb:c7:63:aa:e0:33:f4:33:99:b4:
5f:ee:6b:bd:5d:e9:4b:4d:6a:cc:15:9e:51:e2:93:ac:65:2c:
81:2c:31:54:c8:c1:e2:14:5f:da:36:d0:7b:03:17:51:c2:d9:
de:08:93:96:3c:b7:8c:46:59:b5:ea:0f:b4:e6:1c:d6:0f:5c:
34:4e:96:a1:b4:2a:83:92:aa:37:fb:1d:cb:a9:78:8e:3a:f3:
75:3b:69:8d:39:75:cb:9f:ed:2e:6f:ea:f9:ea:c4:f6:3b:b5:
24:0b:70:47:1d:0f:bc:36:f6:a6:85:4a:31:9a:35:ce:0a:bd:
4b:94:aa:fa:84:33:d3:ec:fc:3b:e2:b3:eb:ca:cf:d1:3f:0d:
40:02:6f:08:33:76:0d:a9:9c:20:a4:be:bc:d4:47:b1:d2:31:
87:a2:82:7c:5d:a3:ec:0c:7d:b7:f5:11:d1:8d:f7:6d:29:2d:
f9:6f:cd:2e:dd:bc:77:4e:07:99:e9:f1:98:73:a1:3c:22:5d:
c3:44:bc:2a:a6:11:79:f7:1c:c3:2f:ff:0a:1d:33:48:ac:52:
b9:61:8b:42:d9:42:22:50:c1:dd:8b:4b:e4:3c:01:c6:cc:4b:
61:31:8f:bb:50:b3:8b:99:b8:f3:3a:53:1b:13:ba:97:12:7e:
69:9e:31:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 02:07:40 2025 by rpki-client