Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
File: 1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer (raw, json)
Hash identifier: aoKQGvec4Bje7L/jNClyRwyws1e/XGVcYKsxF6qJdh4=
Subject key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D663C21C72546F3DAE54F42BBCDA09
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:28 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 60256
AS: 60423
IP: 5.145.112.0/21
IP: 185.24.252.0/22
IP: 2a04:2f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 14:34:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:63:c2:1c:72:54:6f:3d:ae:54:f4:2b:bc:da:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ed:4a:d3:99:58:f9:84:c9:21:64:e3:47:14:
22:e7:3e:84:a2:df:9d:ad:04:61:25:ab:7a:45:27:
ce:b9:3f:5c:62:e7:b5:18:47:58:59:b0:e7:e3:fa:
1b:c7:43:73:ce:9d:8b:74:84:eb:c1:1b:0f:86:09:
8f:cf:b5:2a:f7:4e:4e:ae:b2:f6:b7:f5:0c:96:cc:
fb:ed:89:80:2c:ca:cb:4a:6a:d3:16:39:d7:28:0e:
76:85:64:6c:ec:3c:5e:21:8b:4f:38:e7:87:22:d9:
cf:25:73:18:66:fc:2b:f5:c3:cf:d8:0a:74:9e:16:
f1:46:6a:f2:7e:c8:4e:55:a8:58:7d:cc:72:6a:2b:
ca:8b:64:a6:f9:2a:99:18:e8:b7:4f:43:1d:c3:64:
5a:7d:a1:58:0a:ee:d2:7d:e7:71:10:85:85:eb:c5:
8f:5d:73:81:a3:e1:db:57:6c:22:f6:3d:09:67:94:
5c:a8:ac:f8:16:e2:81:99:10:76:05:d5:65:04:76:
74:5c:aa:33:c9:cf:86:56:4d:5c:56:9e:c9:ce:b5:
a1:e1:24:91:d0:0f:56:14:ff:7b:2b:9c:25:f0:2e:
9e:c9:91:95:2b:1f:d3:a1:d8:06:5b:8b:56:fe:1b:
3b:79:e9:c3:26:1a:aa:46:46:2f:fc:04:d3:3d:89:
36:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.112.0/21
185.24.252.0/22
IPv6:
2a04:2f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60256
60423
Signature Algorithm: sha256WithRSAEncryption
1b:d3:60:7d:e2:c2:a9:1c:6d:ca:7e:b8:2e:1d:e2:d7:e0:f1:
13:62:bc:7a:c2:9b:7b:32:ea:0d:a7:2d:1a:1b:ad:40:01:69:
0e:92:89:3f:8a:54:67:20:87:99:5f:17:aa:4c:66:9b:be:51:
9f:b3:bd:a9:e2:ce:a1:55:29:9f:7f:ea:79:35:aa:84:b6:2c:
9d:64:6b:b2:c9:73:ba:91:b5:c1:46:36:03:bb:c8:ae:82:37:
e1:ec:34:4a:b9:d1:37:af:c8:4b:09:e1:55:05:6c:d4:8c:1c:
53:0a:f3:32:49:b7:13:c2:32:db:dc:aa:3e:ec:3f:6e:62:e7:
1d:b5:93:28:0a:e6:be:8e:69:8c:f7:dd:6f:1d:5c:c6:cb:d0:
8b:12:42:0e:46:8b:c2:8f:f6:ef:52:1f:1b:b4:5c:ef:06:54:
42:32:b7:dd:87:4b:da:2a:14:c9:35:b9:cf:ed:2c:fd:38:5d:
9d:8f:76:f8:fd:c7:9d:03:e3:fe:90:3a:65:a6:c6:8a:aa:cd:
42:4a:63:b1:bb:86:ea:b4:da:4f:f9:cf:6a:98:b6:cd:ee:ce:
45:46:9d:51:fc:2e:bc:dc:9c:a0:43:f3:e8:ba:ef:69:a6:ce:
a3:30:2f:aa:18:a7:ef:aa:81:33:45:ea:c3:b8:a6:47:1e:2f:
79:53:00:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 23:34:48 2025 by rpki-client