Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer (raw, json)
Hash identifier: CyPUrCCPYnO+UOJUJQ0tk4c4ivM3AAOz4t5K8CwXgdU=
Subject key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266BD2F70558653866F387E1309CC1AD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:49:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205747
IP: 91.212.77.0/24
IP: 185.188.196.0/22
IP: 192.175.38.0/23
IP: 193.247.254.0/24
IP: 2a0b:d080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d2:f7:05:58:65:38:66:f3:87:e1:30:9c:c1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d6:8a:d5:a3:44:49:d3:03:e1:71:39:39:59:
0c:e2:6d:6a:82:45:ec:45:ea:93:ed:cf:1c:9f:02:
5f:b5:bc:35:2e:7b:9a:b2:4d:96:6b:82:b7:5f:19:
b9:1d:fb:a0:91:13:d5:33:a6:12:22:29:73:66:53:
77:ff:80:7d:00:ff:e8:31:fc:f8:ca:db:56:fe:fa:
26:81:00:2b:18:eb:5c:7f:bd:ac:87:9c:3c:72:33:
8e:f3:b2:16:f2:e1:ab:68:df:e5:d0:ad:61:2a:1c:
91:97:dd:13:d2:e7:4e:50:25:bc:8d:d1:e7:2e:48:
b6:36:72:2d:60:ab:f9:53:00:ce:25:6b:13:2a:fd:
7e:cf:de:1a:cb:f7:55:99:05:83:92:71:b6:22:c0:
43:09:26:c4:f6:c1:24:4a:fd:61:2f:50:1b:ed:e4:
c1:f8:9d:e5:ca:27:a8:51:ad:ba:1e:28:cd:f3:8e:
3b:f2:c3:f2:cf:9e:c4:1b:4c:47:95:51:de:5d:19:
12:01:4e:f3:a2:78:79:13:98:d2:ac:08:2d:5b:3b:
83:5c:0b:33:13:64:f1:5d:67:24:06:97:c4:e0:82:
09:9c:61:f2:1b:9d:4b:ba:4f:a8:8e:3e:a7:d2:ed:
55:91:13:1e:a4:1d:c0:d6:18:0e:0e:1c:01:9b:a4:
69:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.77.0/24
185.188.196.0/22
192.175.38.0/23
193.247.254.0/24
IPv6:
2a0b:d080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205747
Signature Algorithm: sha256WithRSAEncryption
0c:67:d7:e5:fc:34:22:c6:e7:57:86:7a:db:f6:3b:4d:ca:ce:
32:65:b5:01:90:30:f6:5a:31:f2:4f:7a:98:84:70:2a:f7:71:
ef:6d:e8:4b:6b:b3:11:96:c7:eb:12:d7:09:aa:10:d6:ba:f1:
2b:4e:f5:05:9c:33:50:08:76:d5:e9:66:b0:f3:3c:50:90:6c:
aa:07:16:90:13:1e:6a:41:6e:70:e8:12:ea:64:ee:87:e8:3c:
9a:f6:46:2f:e5:b9:6c:80:d0:3a:60:24:a0:e8:9d:4b:c5:e9:
22:e0:24:54:33:df:e8:9c:eb:aa:51:ac:8c:0e:a7:c9:41:5f:
49:83:d4:b8:1b:3a:58:33:4a:aa:bb:6d:fe:82:97:56:1c:24:
f7:e2:a6:45:5d:4a:8e:16:86:c9:dc:64:ef:e9:1e:ba:b8:26:
66:ff:9c:4d:c3:9e:91:b5:a3:5f:41:37:07:61:b8:a9:93:2a:
17:57:85:6f:ec:bf:28:61:7c:53:7e:c2:25:9e:48:77:77:6d:
b0:a7:78:4b:ae:5a:01:ef:f5:e8:67:68:91:68:1a:46:a5:3c:
7e:e1:8c:01:e0:2c:6b:29:42:2e:b5:f6:d1:28:e4:18:5f:42:
a0:87:22:84:67:71:70:9f:3b:a1:6d:cb:8b:04:af:cd:ea:e0:
6d:d9:f8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 11:32:14 2025 by rpki-client