Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6KMuimrG9uw3hg7nwH6435MUd3k.cer
File: 6KMuimrG9uw3hg7nwH6435MUd3k.cer (raw, json)
Hash identifier: C/Bp4OIndQcl8FmrzHEsWzm3YKgBDwoiUEtDJ33P/a0=
Subject key identifier: E8:A3:2E:8A:6A:C6:F6:EC:37:86:0E:E7:C0:7E:B8:DF:93:14:77:79
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B1F93CC4B37350C76E731BB099C95D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a3/c4bfd4-a0a1-4334-860a-4fa537dbe2e9/1/6KMuimrG9uw3hg7nwH6435MUd3k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a3/c4bfd4-a0a1-4334-860a-4fa537dbe2e9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 91.142.112.0/20
IP: 185.143.148.0/22
IP: 2a00:17b0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:f9:3c:c4:b3:73:50:c7:6e:73:1b:b0:99:c9:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e8a32e8a6ac6f6ec37860ee7c07eb8df93147779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:45:d4:34:82:08:d8:90:3e:30:8b:3a:d7:ac:
ac:c4:af:47:d6:6e:de:2f:ac:2d:02:92:10:e5:ed:
ac:d7:58:74:66:fc:ee:72:e6:ed:fd:5c:e3:e8:c6:
5a:08:1e:d0:ff:37:3c:4e:3d:ad:8f:e3:dd:ef:f2:
37:7c:0b:a9:4a:c0:07:67:fc:85:37:44:57:d1:ed:
0c:ff:b3:12:1a:84:13:f8:5e:ef:5a:f1:e7:92:11:
f1:85:04:9e:f9:41:2a:5d:62:45:e1:72:6e:54:d6:
58:d6:68:79:57:2b:a6:96:75:ed:f9:08:b8:eb:f8:
39:b1:6a:33:2b:1a:42:63:17:e6:2d:b6:f0:db:9d:
5d:ce:3d:1f:e1:27:0e:c6:82:d0:c0:c3:a1:33:5b:
dd:6f:be:a1:18:eb:60:4e:dc:2b:11:d5:ce:e1:24:
e5:4c:67:b6:28:d2:f0:63:ef:dc:2a:48:b5:d7:34:
e9:2a:9d:2d:46:97:93:b8:02:9b:84:21:cd:ac:13:
de:c2:93:10:8e:8f:2d:f3:96:1d:f8:53:cf:71:a3:
ad:dd:76:f5:c8:ef:94:ec:18:e1:56:41:f9:06:92:
74:bc:0f:7f:fd:e5:d1:cc:1f:9b:5a:eb:82:99:d5:
27:67:c0:a7:e4:bc:25:3c:a9:64:44:15:c7:c6:f7:
73:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A3:2E:8A:6A:C6:F6:EC:37:86:0E:E7:C0:7E:B8:DF:93:14:77:79
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/c4bfd4-a0a1-4334-860a-4fa537dbe2e9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/c4bfd4-a0a1-4334-860a-4fa537dbe2e9/1/6KMuimrG9uw3hg7nwH6435MUd3k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.142.112.0/20
185.143.148.0/22
IPv6:
2a00:17b0::/32
Signature Algorithm: sha256WithRSAEncryption
45:8f:0f:2a:6b:12:62:3d:f7:a8:1f:87:fc:46:e2:d9:f8:71:
47:9e:3f:60:37:23:b0:bc:12:7d:2e:d9:32:51:c1:6a:3a:19:
18:61:cb:0d:4f:a0:74:5d:c6:66:4d:34:68:be:32:5f:97:c7:
d9:75:e1:f6:51:21:8a:18:df:ea:af:f3:b1:c5:36:9c:1c:bf:
9f:1f:8f:ab:f2:f7:be:c8:5c:9c:94:57:9f:cb:84:b5:08:42:
82:10:55:83:7b:e4:fe:c0:1b:e9:00:71:03:96:2d:b2:22:84:
c6:43:6e:a0:2e:67:fb:e6:0e:9c:90:c3:89:86:7e:83:c2:0d:
16:2d:8d:f1:a9:16:4a:ba:a5:b2:c8:65:05:95:0b:9b:8a:82:
e5:06:4f:a5:14:10:eb:01:39:f3:90:36:a1:3f:f2:bb:4e:bd:
00:d4:7f:2e:6f:ce:36:82:19:02:78:2e:59:56:de:1b:8c:a0:
6b:03:57:ce:f3:37:f2:d6:55:b4:2f:c6:94:eb:91:85:e1:4d:
ea:ab:9d:47:01:5d:70:04:15:92:ca:aa:01:1f:12:63:3d:6e:
fd:11:44:fc:aa:9c:4d:30:f4:47:06:d2:4f:17:2e:cf:ba:98:
0e:96:e7:30:c4:e7:34:b4:79:26:59:6d:c8:a3:36:82:70:6a:
da:4d:0a:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:29 2025 by rpki-client