Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5ARKnRChnmsaztrJ_3eNT0CQaMs.cer
File: 5ARKnRChnmsaztrJ_3eNT0CQaMs.cer (raw, json)
Hash identifier: 6J918p0D12qj6cSsEe/xIFY5TBOVRFViPZevpC8jd6s=
Subject key identifier: E4:04:4A:9D:10:A1:9E:6B:1A:CE:DA:C9:FF:77:8D:4F:40:90:68:CB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942521AC3BFFB53ABD333A38540AB75F7C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/5ARKnRChnmsaztrJ_3eNT0CQaMs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:11 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203011
IP: 80.75.209.0/24
IP: 193.28.176.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:ac:3b:ff:b5:3a:bd:33:3a:38:54:0a:b7:5f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e4044a9d10a19e6b1acedac9ff778d4f409068cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:92:d4:40:c9:ec:ac:2b:a9:7d:59:ef:30:9f:
30:43:51:28:bf:f9:02:62:c5:7b:00:77:20:2e:00:
51:93:32:5c:a5:b4:81:b3:d9:58:6a:35:7c:40:47:
dd:f2:33:db:31:d2:67:6f:03:08:8b:5f:c1:e4:4f:
bb:24:b1:45:c1:74:c9:dd:8d:de:d8:2b:26:f6:81:
aa:af:0b:34:d3:7b:9e:b1:90:90:b3:c8:fe:34:0e:
0a:a8:17:16:c3:32:25:42:bd:25:e8:64:c5:06:5c:
e4:7f:55:ef:e0:2e:b8:e2:95:fa:3d:e7:c5:82:79:
1a:cb:14:77:52:96:3b:0d:7d:40:96:00:67:a8:76:
5a:44:4c:39:59:0d:83:65:67:9d:ce:86:36:77:7a:
ed:66:ca:5b:eb:7b:c2:69:e8:d5:4c:f5:75:e5:bb:
cc:60:db:36:23:d2:a5:d1:61:ef:98:63:49:83:72:
ac:87:b2:0e:86:38:44:66:bc:ca:64:bf:0b:97:f9:
20:a2:0e:39:99:8d:50:2c:a0:cd:a0:39:a0:b5:7a:
7d:b9:33:10:93:06:3a:3a:8f:a7:ed:4c:c4:6a:3a:
9d:bd:bf:c8:93:0e:21:0a:3a:5f:0c:71:f4:dc:5c:
3f:f7:66:d0:eb:0c:03:2f:93:ac:25:44:89:67:7c:
26:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:04:4A:9D:10:A1:9E:6B:1A:CE:DA:C9:FF:77:8D:4F:40:90:68:CB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/5ARKnRChnmsaztrJ_3eNT0CQaMs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.209.0/24
193.28.176.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203011
Signature Algorithm: sha256WithRSAEncryption
6f:7e:7b:31:81:59:45:79:f4:51:81:d3:ad:67:5e:1e:49:c8:
86:dd:5f:66:83:b5:a0:3f:bb:81:91:ec:35:8b:2f:85:5c:fa:
d9:eb:da:ca:63:14:c4:1e:c3:dc:09:75:a5:66:e4:8a:2a:d4:
cf:7c:9d:47:3f:6f:37:df:73:15:7a:60:66:35:46:37:69:1a:
f6:94:99:dc:49:c2:f3:3d:c9:9f:31:42:3b:0b:b6:aa:4f:b9:
10:1e:62:43:1c:cb:3e:d7:07:1a:a1:29:bc:ee:06:06:75:01:
ec:78:65:5f:34:b7:33:78:32:52:11:41:ff:63:0e:7d:35:38:
c6:c9:62:60:6a:73:d6:1b:b8:ba:60:b9:d0:91:f5:42:73:aa:
6d:2b:39:98:91:8d:91:89:f3:f8:b0:c9:d8:e8:ac:84:c4:d3:
ea:ae:fd:27:b7:97:14:07:15:5b:38:97:fa:15:a0:89:e8:80:
aa:ed:0b:97:6a:a7:e5:83:5f:02:59:dd:d7:9f:65:9c:20:24:
96:99:41:e2:63:b7:7e:bb:78:d2:a5:2c:2b:a6:ec:eb:96:e3:
f6:d1:b2:89:c1:a4:bd:49:38:c8:d4:bc:4b:1c:5f:ff:b5:ae:
10:1f:b0:f3:31:ff:05:52:91:bd:e3:d2:a7:0d:a9:fd:88:88:
fb:55:d1:19
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 13 23:03:00 2025 by rpki-client