Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28eECSDRxwn_KZrtNoLCP7Qydn0.cer
File: 28eECSDRxwn_KZrtNoLCP7Qydn0.cer (raw, json)
Hash identifier: URMBTbSxt1EdGH4odUxn6UPjyj9Wb1LL5FVPSxRK9aM=
Subject key identifier: DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FD9B1DC7CFE74CDB589D69EA5AEFC1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/28eECSDRxwn_KZrtNoLCP7Qydn0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:49:24 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 48721
AS: 209588
AS: 211794
IP: 141.98.80.0/22
IP: 194.165.16.0/23
IP: 2a10:9100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 23:34:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:9b:1d:c7:cf:e7:4c:db:58:9d:69:ea:5a:ef:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dbc7840920d1c709ff299aed3682c23fb432767d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1c:bc:4f:09:05:58:fa:bd:37:6d:5d:5a:ed:
1f:6c:9e:de:f9:4e:0f:94:7d:4a:8e:32:aa:c2:aa:
09:40:bb:19:24:e6:8f:75:40:58:cc:33:2f:71:4c:
12:53:a3:1f:1d:32:b8:89:28:f3:66:c5:d7:db:c7:
1e:d5:39:f8:f5:9c:22:df:4a:d3:57:ba:22:8a:6c:
1e:6a:e7:f2:4d:40:3a:50:23:37:38:f3:31:43:83:
44:d6:eb:26:2e:9c:df:a0:69:44:7c:00:87:86:65:
77:c8:4d:17:dc:77:fe:6d:e3:d7:1c:f1:65:c2:20:
4f:77:7e:ae:6c:e3:e3:f0:02:84:a8:b3:f5:22:3e:
af:cb:73:d4:6a:42:55:47:f0:d9:b0:5b:1d:b7:13:
1d:41:8f:73:7e:a3:e0:5a:93:b8:aa:2e:49:bf:f3:
de:26:6b:a0:ea:52:18:1b:88:a7:ab:a2:6f:37:6f:
bb:32:b9:de:85:d7:9e:d5:c6:73:50:19:c0:1b:30:
d4:68:39:60:95:fe:46:cb:8f:92:cc:c1:ca:c5:99:
eb:6e:9c:22:5d:e8:a6:fc:97:8a:da:b2:13:21:9d:
6d:af:32:6d:d3:50:a9:6c:52:85:c2:24:79:31:1a:
fa:59:92:38:0d:11:dd:70:74:fd:10:51:df:c2:d5:
de:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/28eECSDRxwn_KZrtNoLCP7Qydn0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.80.0/22
194.165.16.0/23
IPv6:
2a10:9100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48721
209588
211794
Signature Algorithm: sha256WithRSAEncryption
55:c4:07:66:ee:1c:a3:5e:b8:3b:b3:ff:64:bf:44:f1:97:17:
b1:ec:a3:19:da:7f:4f:11:4b:d8:6c:d5:fa:c0:13:91:da:f4:
ed:87:30:41:9a:f7:86:c1:3b:0d:e8:d4:b7:66:34:b1:9d:1f:
7b:e8:2e:db:bc:57:c2:56:be:90:b8:ab:a1:fc:eb:46:2c:15:
d0:ff:fb:a0:bc:ca:30:8b:55:e9:74:63:a0:5a:31:a9:ad:69:
2e:79:ae:2f:85:aa:8d:20:b1:57:f9:58:81:e8:77:4f:b0:4b:
1b:01:ef:d8:b5:7b:e0:ab:f2:e1:be:1f:a5:e8:6f:76:52:2f:
5d:40:28:73:ee:a1:cf:41:40:a8:fb:4a:a4:0d:aa:63:bd:e7:
0e:05:04:52:d8:46:02:1f:67:68:aa:52:95:98:1a:7f:36:b4:
47:8f:a2:f0:81:db:1f:dd:f6:49:83:fd:bb:93:65:1c:28:f5:
64:0b:e2:c4:30:a4:6f:7b:4c:ac:a3:72:da:f5:94:49:ec:9a:
0c:89:ab:d0:13:51:1d:85:bb:81:5a:aa:a4:dd:65:03:79:8a:
8e:6b:52:40:b8:3f:11:16:9b:bc:70:c3:60:70:0d:09:c2:80:
95:79:81:f7:44:19:ec:8c:e2:43:d8:8e:61:fe:07:62:ed:cb:
7e:dc:91:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:24:45 2025 by rpki-client