Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
File: 7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer (raw, json)
Hash identifier: KepNLv9zg6G/v/mYfbce1Cn+PMLKRAkLiB6vzqR13oM=
Subject key identifier: EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195F0BBEF1C55519C51CA70B09F49E99317
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 01 Apr 2025 09:43:23 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 21057
AS: 25259
AS: 51007
IP: 31.187.68.0/24
IP: 80.84.128.0/19
IP: 178.249.8.0/21
IP: 185.100.180.0/22
IP: 2a03:a420::/32
IP: 2a03:de40::/32
IP: 2a06:1880::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:bb:ef:1c:55:51:9c:51:ca:70:b0:9f:49:e9:93:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 1 09:43:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:08:91:7f:9f:70:32:f6:44:8c:d3:8c:4c:
d2:1b:86:04:b2:52:d4:46:d0:6c:9d:3e:5d:62:e8:
d6:49:c4:61:e3:b2:52:34:c6:db:f6:c1:63:c9:f7:
34:b5:0a:47:59:bb:0d:1b:24:60:ea:14:6e:84:1e:
08:37:4e:d5:9a:ab:b1:f9:82:5f:a9:eb:aa:46:16:
66:93:3b:96:36:17:4b:e2:7e:07:e4:b6:3c:64:c1:
c8:3f:75:cc:0b:81:96:e9:21:1a:67:26:4c:dd:83:
c3:6b:d3:f1:0b:fd:df:fe:7a:09:3b:34:33:28:50:
6b:af:1b:31:e3:bb:4d:16:8f:de:98:82:43:36:c3:
50:3a:28:62:4e:8c:e2:cb:64:b5:83:ca:cc:45:b2:
07:b8:2c:84:1b:45:44:e1:61:d3:f4:d2:be:16:c8:
48:06:34:4d:e2:6d:28:e7:59:14:c5:ec:a0:ba:e3:
fb:0a:f0:7d:13:2a:65:2c:8e:f8:e1:b5:a1:4c:9e:
ce:78:21:d8:48:c7:e6:07:a7:8e:69:b7:5a:33:e6:
01:1d:67:d9:63:40:68:d0:f0:09:0d:28:1e:4d:f6:
a3:cc:99:cd:cb:2b:06:2a:80:dc:3c:cb:ea:49:ff:
b6:09:d6:2c:15:85:53:09:b8:4b:40:3f:50:fa:1a:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.68.0/24
80.84.128.0/19
178.249.8.0/21
185.100.180.0/22
IPv6:
2a03:a420::/32
2a03:de40::/32
2a06:1880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21057
25259
51007
Signature Algorithm: sha256WithRSAEncryption
78:97:4c:ab:3b:a7:fa:f0:c5:09:a7:b1:7a:02:9f:63:fc:53:
06:56:b6:8f:82:65:8b:03:4f:9a:5c:bd:b2:7c:31:4c:30:80:
cf:c4:06:61:9e:a5:ee:7d:1b:e7:28:7d:13:68:fe:13:38:15:
6a:3a:e8:39:a7:c8:27:c1:33:64:eb:3b:22:30:97:48:c9:60:
bf:30:87:ae:61:44:e1:d3:25:b9:05:62:32:58:7c:1a:31:ef:
fe:9c:9c:35:05:03:e1:69:1b:51:99:6d:88:f1:22:9c:7b:38:
b1:09:54:9d:56:78:94:e2:79:4e:91:7b:e1:7e:6c:1e:f9:b2:
9f:be:57:6c:47:46:e3:3a:c5:a4:31:bf:5c:f4:7a:e8:38:fc:
f8:a4:17:05:46:3a:d5:5a:ec:6c:44:15:5e:b9:35:72:43:68:
eb:b1:ee:68:46:89:af:aa:28:5e:49:34:ac:43:fa:a2:77:05:
71:41:b3:c5:9c:80:c0:f4:c8:44:b9:47:9a:be:29:52:95:68:
a9:7f:7b:20:49:a4:81:c6:65:5f:d8:bf:a0:8c:1a:30:4c:c5:
bb:97:25:3a:39:f8:5d:46:72:54:c2:3d:5c:d7:b6:9c:64:26:
f9:16:5a:f9:83:e2:e8:c6:2f:44:9a:60:b8:3b:ce:ba:e9:dd:
5c:67:29:1b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Apr 6 02:56:13 2025 by rpki-client