Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51vOFjy1AqZX8nL3n9Pkh_u9S4g.cer
File: 51vOFjy1AqZX8nL3n9Pkh_u9S4g.cer (raw, json)
Hash identifier: Ze+4gJz8Dm+XkoHKpAfX46STO/i/xU1OGD5kEIbQh/w=
Subject key identifier: E7:5B:CE:16:3C:B5:02:A6:57:F2:72:F7:9F:D3:E4:87:FB:BD:4B:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B382F11445E7775AB2495BD4AD2CA1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/51vOFjy1AqZX8nL3n9Pkh_u9S4g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:48:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206288
IP: 185.35.84.0/22
IP: 2a00:f280::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:82:f1:14:45:e7:77:5a:b2:49:5b:d4:ad:2c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:48:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e75bce163cb502a657f272f79fd3e487fbbd4b88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:30:01:e7:b8:aa:4f:23:c2:30:70:13:3b:5b:
10:64:8b:ed:f6:cf:85:d2:be:1d:8e:7a:46:7c:4f:
cf:35:44:b2:b9:68:14:aa:70:b2:d0:39:b1:c0:01:
59:07:ef:f4:1d:c2:77:99:90:29:31:bf:db:d1:d5:
7c:cd:b2:87:c2:85:55:f8:00:0e:f9:eb:a4:7b:b4:
69:5c:cb:a1:0f:9f:78:43:37:4b:2e:5a:0d:16:ab:
01:8c:1d:76:bc:d7:f7:0e:27:f5:90:93:0f:51:28:
89:b6:b7:63:67:96:3f:3f:dd:05:04:5f:f6:c2:f3:
8a:d3:c9:a5:13:fc:2a:e4:60:8e:2b:a7:1a:c7:8b:
cb:42:b6:d9:cc:5c:ad:2e:8e:07:d6:6a:b2:49:50:
db:cf:cb:fe:6a:d9:55:44:10:e3:f0:83:e2:bb:88:
e6:7e:b5:97:17:c3:d4:9b:72:e2:66:23:1e:16:48:
b2:db:6a:7d:b3:8a:aa:9d:6f:93:ac:0a:e2:be:11:
65:e4:c0:8f:12:d5:05:e0:71:aa:42:a4:de:e8:6a:
33:27:04:ff:c0:d1:bf:7f:2d:c3:aa:c2:15:38:8e:
b9:f5:c4:25:6a:13:63:c9:38:3f:31:11:b5:85:12:
c1:e4:61:cc:0d:ba:42:4f:df:4d:c7:77:8a:aa:18:
d1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5B:CE:16:3C:B5:02:A6:57:F2:72:F7:9F:D3:E4:87:FB:BD:4B:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/c5708b-faf9-42a4-bf48-4b8578715154/1/51vOFjy1AqZX8nL3n9Pkh_u9S4g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.84.0/22
IPv6:
2a00:f280::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206288
Signature Algorithm: sha256WithRSAEncryption
aa:c0:ee:69:f2:9f:db:dc:83:d1:3d:a3:59:8f:76:12:00:fd:
37:f6:7e:70:0f:dd:4f:99:19:51:ac:00:b6:3c:35:31:a6:06:
9f:6e:a2:2d:00:81:ce:ea:37:37:1c:d0:92:93:1b:f2:ce:c8:
4b:35:d7:3c:23:3a:ce:3f:75:8d:f7:3b:c4:03:42:f7:ed:be:
ee:44:9d:da:0a:a4:45:b6:c4:4b:30:ed:83:6b:6d:9d:90:c7:
35:15:f0:b5:c3:4e:ad:57:40:41:d2:e0:0f:83:0e:3b:87:6c:
b2:58:5d:4c:12:bc:cb:c0:70:e9:58:61:41:0c:6d:83:60:c5:
cf:30:93:b1:d2:34:4e:43:54:e4:a4:0e:65:bb:dd:6f:16:cc:
46:3a:5d:59:7c:7d:eb:01:91:dc:d5:de:39:bd:25:55:b9:10:
57:84:05:39:d4:16:d8:af:c1:9b:5f:5f:bc:82:11:3e:10:81:
75:69:72:f4:a6:96:f5:55:87:b3:14:c9:c1:d7:9f:46:05:53:
88:09:e3:ea:e0:7d:a6:57:0a:57:4a:79:62:38:8f:10:d6:50:
4b:36:a7:a5:90:14:67:77:35:c5:27:67:ed:e9:4c:5e:c9:86:
1e:2b:19:33:af:fe:c3:04:89:71:54:04:4a:bd:5f:67:30:2c:
e8:11:b4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:27 2025 by rpki-client