Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2eeOhm6SBNAab1LTn9hP8JALIdQ.cer
File: 2eeOhm6SBNAab1LTn9hP8JALIdQ.cer (raw, json)
Hash identifier: ucmGgCyD3zrOcE3F41UOUsdwwnYR0HwK2vycUkBG2e8=
Subject key identifier: D9:E7:8E:86:6E:92:04:D0:1A:6F:52:D3:9F:D8:4F:F0:90:0B:21:D4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019734924195AE28D4E7F853ECA7686A1C64
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/2eeOhm6SBNAab1LTn9hP8JALIdQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 03 Jun 2025 06:54:49 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 56816
IP: 91.228.16.0/23
IP: 91.228.20.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:34:92:41:95:ae:28:d4:e7:f8:53:ec:a7:68:6a:1c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 3 06:54:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d9e78e866e9204d01a6f52d39fd84ff0900b21d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:66:4a:5e:18:81:a8:5e:28:13:9a:8a:2f:6c:
99:d5:ff:d3:e8:5b:76:95:77:fc:5f:6b:48:9d:78:
16:d7:d6:93:f3:b0:42:19:cb:18:24:d6:17:86:e7:
55:96:5b:8e:a7:eb:7e:32:e9:03:79:9e:97:72:5c:
62:f7:b6:25:95:b7:8a:15:ed:bd:a3:a2:c0:b9:ba:
a4:27:80:42:fa:cf:52:35:b4:42:42:72:8a:d3:44:
57:43:c0:0d:1e:61:a2:b0:e8:4a:60:7c:83:11:37:
b0:62:b6:3f:71:45:fc:fa:61:95:d3:70:09:6e:a6:
53:f2:5e:5e:ca:81:fc:55:88:a8:61:27:ab:ea:a9:
c0:39:91:e7:f2:08:7d:de:d3:e6:3f:28:a0:23:3c:
91:a8:3d:a8:67:0f:15:13:31:5d:97:cf:0a:8d:a8:
39:ef:7f:2b:a2:61:d7:61:d3:a6:e8:2b:bb:a7:3d:
5f:d0:7f:f7:97:7b:ca:72:15:c0:a5:f1:f4:66:b6:
ad:4d:5f:6b:26:b5:2e:8d:8a:50:96:a2:95:8b:fe:
ec:b6:77:09:67:2d:a9:b9:8d:c7:59:db:7f:16:aa:
14:8e:fb:8c:ab:bf:e1:e4:4d:4d:22:54:49:bb:8d:
ca:20:ce:1a:85:57:b8:1a:cd:43:86:ca:de:ef:8a:
3c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E7:8E:86:6E:92:04:D0:1A:6F:52:D3:9F:D8:4F:F0:90:0B:21:D4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/2eeOhm6SBNAab1LTn9hP8JALIdQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.16.0/23
91.228.20.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56816
Signature Algorithm: sha256WithRSAEncryption
46:32:77:4c:c0:2b:be:eb:e3:9e:8b:42:d1:cb:43:a6:f4:a9:
ce:b7:4c:cb:0b:f8:16:b5:76:ba:28:95:e7:9f:03:2e:bd:d8:
eb:03:25:d3:2c:72:93:54:af:29:b5:e0:d8:b1:ed:3a:31:31:
28:50:c7:9d:ea:7d:50:3c:7c:2f:40:14:78:b1:6a:f5:97:27:
24:7d:02:ee:e8:3b:90:82:58:d4:cc:44:50:1a:33:ff:07:60:
ed:e4:18:e9:f8:6f:44:56:10:36:8d:9d:c0:4b:30:90:6a:a0:
0e:21:97:cb:6f:10:24:70:47:88:b8:f9:d7:a8:ee:1a:f1:45:
9b:0e:31:19:3c:f3:dc:eb:e6:9b:9a:60:00:cd:03:a0:0a:be:
16:fa:04:62:93:41:19:43:85:aa:e7:ee:f2:e6:37:8c:44:8d:
26:f0:0a:ce:67:c6:1c:a2:a1:6f:d1:61:a5:b3:7f:26:41:f3:
e9:f9:30:db:b5:8c:f8:4f:d9:8e:39:21:0a:cd:8d:da:02:1b:
d9:bb:36:59:6b:54:12:13:fd:4e:ab:9e:07:0c:2f:26:0a:5d:
35:fc:d2:93:e3:60:53:55:de:32:df:73:b4:cb:a8:a4:77:69:
61:d5:9e:68:38:85:5a:8a:5f:9f:23:48:ef:c4:b7:0e:94:38:
60:a8:20:3d
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Fri Jun 6 12:38:22 2025 by rpki-client