Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
File: 8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer (raw, json)
Hash identifier: 2Sv1XdcHoGGw8OVuudrDuStbXMOe5xeohKRe7vqpEdI=
Subject key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA64EBC3805167E8D55C41BE6EA2EC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:48:11 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 197343
AS: 204650
AS: 210609
IP: 5.56.128.0/22
IP: 5.57.32.0/21
IP: 37.32.40.0/21
IP: 178.239.144.0/20
IP: 185.26.32.0/22
IP: 185.124.172.0/22
IP: 185.212.48.0/22
IP: 185.215.228.0/22
IP: 185.243.48.0/22
IP: 2a00:7040::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:64:eb:c3:80:51:67:e8:d5:5c:41:be:6e:a2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7b:b6:9b:b2:5e:74:c6:94:73:cf:2e:b7:64:
54:ea:fa:81:bc:e4:5a:b6:e7:cf:9c:d3:5a:a5:60:
54:7f:b3:a8:5a:60:eb:aa:c6:ef:7f:96:03:28:ef:
42:83:08:2b:ea:7d:41:db:0d:08:57:1d:10:ee:bf:
fc:cd:85:8a:2e:23:11:e8:03:44:47:34:72:4b:8e:
5e:ec:8f:79:2e:b3:b3:62:31:ed:8e:32:ae:0d:46:
40:68:5f:a7:49:35:90:ae:e5:f9:28:d2:e5:0c:95:
60:9a:4e:14:5e:d4:6e:42:40:e9:69:aa:65:4f:61:
8f:5f:82:74:5d:f5:f8:76:89:2c:ff:b9:4c:75:3d:
b9:d5:75:dd:d1:14:8f:aa:f4:eb:50:83:3c:32:f1:
cf:ba:f1:22:99:c5:89:a2:d3:b3:2f:69:ff:c6:72:
f6:11:14:02:99:d1:11:31:b0:7e:de:f9:22:55:fe:
f9:c6:32:60:b3:3a:68:01:4d:2e:2d:5a:51:5f:33:
da:f7:08:8e:7e:a8:84:b9:2a:98:0d:82:13:57:01:
85:89:c3:7d:31:51:b7:1b:1d:9c:a9:65:4a:bc:2d:
f2:0e:b3:54:a5:1e:99:99:3e:4c:0c:0d:47:6b:dc:
bd:26:2b:59:25:3d:24:43:db:b5:c2:3e:8b:ba:40:
ce:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.56.128.0/22
5.57.32.0/21
37.32.40.0/21
178.239.144.0/20
185.26.32.0/22
185.124.172.0/22
185.212.48.0/22
185.215.228.0/22
185.243.48.0/22
IPv6:
2a00:7040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
197343
204650
210609
Signature Algorithm: sha256WithRSAEncryption
8f:01:d3:40:60:63:5b:11:c4:4c:82:04:4e:7e:79:7c:17:ae:
16:47:b7:59:e4:52:c7:43:04:a4:fd:14:e9:b8:4b:f0:4e:ab:
37:df:5c:e0:c9:3b:e0:8f:46:5b:1f:bb:5c:9d:1a:7d:5c:92:
90:03:82:e5:cb:3c:b1:3b:54:9d:d4:05:af:82:db:18:cd:26:
be:48:f6:3f:9c:3e:c8:a2:a9:04:1c:68:c1:7d:a5:ca:fa:23:
93:fa:c3:7e:9c:b6:9c:cd:ec:b8:03:29:fd:00:18:f4:29:83:
51:66:7f:6f:6a:fc:60:36:f3:c8:88:d2:3a:a7:30:e5:ba:1a:
14:82:7b:23:3c:0c:d3:c7:80:32:27:1a:5e:73:ba:d1:bd:6c:
f6:7f:49:5f:e3:cf:a9:c7:1d:fa:ed:12:c7:c5:12:97:73:ee:
90:1c:07:01:d3:08:2c:11:64:a7:f2:b8:fe:52:14:36:af:9f:
be:9c:4d:40:6c:15:04:78:c1:80:2e:4d:aa:d7:da:f3:da:40:
ab:09:91:c9:1f:d0:7c:1d:5f:cd:3f:db:38:4c:ce:41:10:35:
b2:2b:89:19:96:da:28:da:ba:40:2d:56:8e:61:5c:d9:4e:8f:
24:ec:e5:81:4b:73:42:2c:d7:6a:65:27:74:27:e3:cc:9e:8f:
bb:54:47:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:56:35 2025 by rpki-client