Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6QOzpacoCqn-K_-pBlwrKgGld8w.cer
File: 6QOzpacoCqn-K_-pBlwrKgGld8w.cer (raw, json)
Hash identifier: QmSkq0AKxadTBaycsqsUhPoEdEm9RGRVt+kNV9zjWx8=
Subject key identifier: E9:03:B3:A5:A7:28:0A:A9:FE:2B:FF:A9:06:5C:2B:2A:01:A5:77:CC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5FEEB4C3ED93EA3A5ECA6971C88E2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/6QOzpacoCqn-K_-pBlwrKgGld8w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:02 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201441
IP: 193.168.16.0 -- 193.168.45.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:fe:eb:4c:3e:d9:3e:a3:a5:ec:a6:97:1c:88:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e903b3a5a7280aa9fe2bffa9065c2b2a01a577cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:79:e3:94:d9:8d:29:b8:9f:4a:e5:3a:5a:c7:
b8:6e:78:ee:ba:49:f8:74:db:2a:88:fb:e4:ab:59:
8a:82:9a:dc:b7:db:96:18:d1:b2:05:71:16:1f:2e:
c7:e1:2c:e2:c0:06:dc:33:1c:72:8d:fe:e3:89:93:
b5:bc:9a:27:14:79:8e:b8:c3:3a:91:5a:4a:54:82:
bf:0e:a1:e5:1e:3b:5c:5c:c9:0e:ad:1f:19:48:8c:
27:67:56:1a:bd:d2:b4:ee:ae:6d:d6:87:7b:db:04:
7f:99:29:c4:53:b9:f4:83:01:f1:49:3f:d1:c7:7e:
3c:ef:0e:35:4a:b8:da:12:40:1e:84:33:95:11:c9:
0d:cb:b0:5c:91:ab:9e:47:51:fb:32:bd:f6:ec:31:
b6:9d:32:86:77:f7:a0:fc:ef:34:ff:b7:b0:5e:8e:
cd:1c:77:e0:cc:08:9b:5d:5d:5c:48:04:92:56:a4:
fb:b8:fa:cd:fc:a7:83:0a:a2:9d:1f:64:b7:60:17:
7b:f8:ba:75:4b:40:6a:11:9f:03:b2:56:db:07:54:
18:36:d3:b1:8e:9f:53:7f:65:f0:85:0c:54:16:9f:
5b:32:48:af:c1:2d:34:8b:83:33:19:3f:e3:a8:23:
18:32:7b:d8:04:83:ae:d6:ec:cf:3f:4d:79:5f:7c:
99:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:03:B3:A5:A7:28:0A:A9:FE:2B:FF:A9:06:5C:2B:2A:01:A5:77:CC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58b557-27a9-46aa-9dee-4cec696833ed/1/6QOzpacoCqn-K_-pBlwrKgGld8w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.16.0-193.168.45.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201441
Signature Algorithm: sha256WithRSAEncryption
37:80:ba:73:ad:b7:be:4e:98:32:bd:b3:b0:de:50:d3:c0:3f:
af:8b:44:88:d3:d7:36:f7:67:91:38:2f:c6:ea:c5:87:6e:d6:
b2:e4:b0:41:c9:08:77:83:d7:58:58:33:d0:a0:75:a1:bf:b1:
d7:d2:72:f3:4f:e5:0a:dd:ad:75:d1:31:72:5b:c2:32:ae:d8:
97:21:6e:21:cb:36:58:03:c6:61:1c:9f:fa:c6:5d:d6:bb:86:
c6:2d:ea:21:b3:65:55:98:f5:fd:78:f8:5e:c3:a5:21:a1:9f:
80:cc:39:78:00:7d:bc:25:e6:23:73:22:aa:21:5b:af:de:0b:
1b:c2:92:1f:e2:8d:89:56:53:71:a8:10:86:3a:e5:1c:19:e7:
46:a0:36:f5:b7:4e:81:eb:8f:25:3a:c4:c3:a8:65:57:28:93:
40:1b:81:d3:3b:e7:cc:47:fd:7a:ec:22:80:9e:56:c7:08:f6:
75:6d:e0:ed:52:3a:eb:1e:90:66:b8:05:05:69:ec:92:a3:94:
3a:0b:3c:92:2f:7c:a9:a1:f0:f0:ed:0d:bd:85:4d:10:c8:c3:
64:4b:f2:b6:72:d0:9f:60:6a:21:61:06:a7:ea:b6:3c:3c:44:
2f:3e:9e:f1:9b:08:63:2d:07:f6:61:ec:1a:0f:db:53:93:fe:
78:69:50:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:03:32 2025 by rpki-client