Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5XKe6JY2ujT-Vr1y51j1gq3nDlI.cer
File: 5XKe6JY2ujT-Vr1y51j1gq3nDlI.cer (raw, json)
Hash identifier: TC4zGrO+zoKKtCpNSFEIgaUVLdr7ppPJ34VqLLB/yZs=
Subject key identifier: E5:72:9E:E8:96:36:BA:34:FE:56:BD:72:E7:58:F5:82:AD:E7:0E:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01944A758A6C3572FE30E4E9123151E32F01
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/5XKe6JY2ujT-Vr1y51j1gq3nDlI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 09 Jan 2025 09:46:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206910
IP: 185.172.84.0/22
IP: 2a0b:b00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:75:8a:6c:35:72:fe:30:e4:e9:12:31:51:e3:2f:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 9 09:46:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5729ee89636ba34fe56bd72e758f582ade70e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:86:85:cc:46:41:b1:b4:eb:d1:73:12:3c:c5:
5f:f9:54:df:48:84:09:47:04:f1:95:df:fa:84:90:
4b:25:26:0e:8c:e5:bd:fc:34:1a:11:c3:d3:0c:a3:
a9:f1:f0:50:a8:8c:4c:e0:30:ff:fe:99:e8:86:3d:
6a:92:aa:e2:ef:a2:22:59:56:c8:cb:70:8c:57:0b:
b4:bf:b5:55:3c:d5:58:fc:be:78:90:bf:27:8a:66:
58:05:69:69:07:b1:60:19:ac:a5:9b:e5:e6:42:b4:
d6:f9:e5:ff:b3:d1:33:b7:a9:9c:11:50:3b:6b:9c:
78:88:a6:c6:78:0d:eb:65:af:7e:39:f8:53:ef:33:
c4:09:7b:0c:0c:cc:8b:7d:6b:cc:64:f9:80:6a:ff:
0d:ba:02:c3:7a:e7:53:84:94:b4:e2:97:02:ed:70:
93:80:05:41:2d:8d:e5:eb:c6:dc:be:98:06:b2:55:
00:1f:d7:01:ed:7a:7a:a4:d8:06:5b:48:8b:e7:84:
ea:b9:3b:22:be:9e:09:c4:01:32:44:4a:ca:b8:8b:
14:d3:e2:92:70:03:b1:4d:31:28:8d:52:25:e7:f1:
b0:65:99:67:3f:6b:7d:d6:82:e3:ff:ed:70:89:f6:
11:6b:7b:71:f2:ae:0d:fe:c1:e2:ab:42:ce:60:2e:
41:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:72:9E:E8:96:36:BA:34:FE:56:BD:72:E7:58:F5:82:AD:E7:0E:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/5XKe6JY2ujT-Vr1y51j1gq3nDlI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.84.0/22
IPv6:
2a0b:b00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206910
Signature Algorithm: sha256WithRSAEncryption
59:21:2e:36:85:0d:ce:ab:5f:31:a2:bf:0f:95:f6:ca:bf:8e:
e2:4d:ea:6e:44:38:95:9d:38:49:26:db:9e:25:a9:db:37:c7:
91:d8:a4:fa:0b:f7:48:45:58:e6:a7:56:4f:f1:b3:16:88:62:
86:4f:72:c9:8b:83:4c:c1:3b:b2:ce:e2:32:3c:3c:6f:ca:29:
8e:25:d0:f5:1f:90:b3:d8:96:46:23:9b:d5:c5:39:81:d0:52:
c3:94:25:f0:1d:e3:9e:cf:17:58:42:c0:91:82:de:85:b5:5b:
42:b3:1f:d6:c2:77:04:f8:a5:6d:93:c0:16:c0:ac:92:e0:cd:
3c:86:0a:61:f9:b7:cc:14:b8:44:2d:c4:99:f0:75:d0:72:51:
f1:0b:22:c4:1a:66:bd:97:e8:f6:a7:61:f8:85:5a:85:70:68:
f0:42:12:42:19:16:1e:20:f6:af:fa:1c:90:d0:9c:fb:a5:cc:
85:2c:10:fa:49:0a:17:03:53:dd:2c:4d:bc:72:31:89:a5:bc:
dc:84:ba:7a:a6:3e:8b:e5:e5:4b:23:26:1c:18:94:47:33:df:
fc:a8:d1:e5:8c:da:2d:e9:dc:6b:13:cd:45:eb:dd:3d:41:5d:
6e:ea:db:18:f9:9f:0a:c8:24:31:c5:d9:ff:b3:9c:a5:f4:2c:
1f:7e:8e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:42:12 2025 by rpki-client