Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93n18CiJhaveCYJ-A9eHpSFJ5-w.cer
File: 93n18CiJhaveCYJ-A9eHpSFJ5-w.cer (raw, json)
Hash identifier: EJ6FzD3g7/BhlxCwv2y+l0er6BAqntEVAQUdiSPHPeY=
Subject key identifier: F7:79:F5:F0:28:89:85:AB:DE:09:82:7E:03:D7:87:A5:21:49:E7:EC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942368E6A060625BEF8F7E97D517032A04
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/93n18CiJhaveCYJ-A9eHpSFJ5-w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:47:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 29467
AS: 197264
AS: 203789
IP: 5.149.112.0/21
IP: 153.92.48.0/20
IP: 178.251.160.0/21
IP: 185.4.124.0/22
IP: 185.97.244.0/22
IP: 185.123.216.0/22
IP: 2a02:70c0::/32
IP: 2a03:2f00::/32
IP: 2a03:92e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:e6:a0:60:62:5b:ef:8f:7e:97:d5:17:03:2a:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f779f5f0288985abde09827e03d787a52149e7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:31:93:22:70:f3:6e:76:40:95:5a:0b:d9:56:
9b:8b:bd:e5:a9:d4:92:07:61:1a:54:85:3b:d9:23:
80:a6:8d:f1:5a:33:63:9f:f8:68:d0:9c:09:0a:df:
10:6b:55:6e:76:98:99:83:e2:06:d0:b2:70:82:56:
77:1a:91:e6:b6:4e:b4:5a:8f:b9:42:82:c4:40:5e:
98:26:bf:ac:5b:bb:d6:b7:b0:0d:b1:82:c3:fc:9f:
a8:7b:31:93:45:1a:65:9b:24:86:f5:4e:a8:4b:ed:
1e:b9:06:e9:e7:44:b6:9f:aa:23:3f:7a:07:a5:c0:
7f:f0:56:30:21:16:99:99:2d:bd:f0:23:3f:59:3a:
6e:b1:77:fa:5e:5f:68:44:88:58:37:ae:29:39:d6:
eb:1f:9a:45:02:ad:16:fd:eb:92:cc:2a:93:bc:e3:
ca:3a:0a:d6:f1:ab:cd:b6:db:94:bc:03:e4:9c:7a:
69:f3:e5:55:25:27:4b:fd:8f:85:6f:c6:10:dc:90:
1d:3e:39:a2:7e:a6:2e:3f:e1:4a:ad:a9:67:c7:14:
f1:2d:45:17:b0:33:47:63:86:13:d3:60:c9:35:38:
7a:ea:df:d1:fc:22:0a:48:89:c4:a5:a5:c3:ef:9a:
c0:a6:24:49:d5:0d:df:4e:76:f5:cf:ab:6f:43:d2:
80:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:79:F5:F0:28:89:85:AB:DE:09:82:7E:03:D7:87:A5:21:49:E7:EC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/93n18CiJhaveCYJ-A9eHpSFJ5-w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.112.0/21
153.92.48.0/20
178.251.160.0/21
185.4.124.0/22
185.97.244.0/22
185.123.216.0/22
IPv6:
2a02:70c0::/32
2a03:2f00::/32
2a03:92e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29467
197264
203789
Signature Algorithm: sha256WithRSAEncryption
16:dc:c6:36:ee:9c:4e:ea:32:5a:b9:02:e1:f8:24:34:61:e3:
41:94:81:d8:03:f0:12:52:ef:70:9d:0d:46:b8:04:58:1d:1f:
5f:43:f4:07:e2:46:cb:22:7c:0c:4e:a8:40:e9:c9:53:bd:83:
9c:c3:58:50:23:45:0c:5f:58:cd:6e:1e:44:44:eb:5c:c8:28:
c5:ad:e4:a8:72:70:ef:99:4b:5b:d4:4f:f6:42:42:90:88:56:
8d:41:b2:4d:72:96:cb:43:94:59:f3:23:27:ff:48:03:93:f8:
b8:33:29:a8:85:40:d3:4f:63:22:ff:39:17:61:bb:8b:fb:74:
c4:8e:8c:fa:1a:6a:63:df:8a:72:90:18:e7:3e:2f:c9:a7:d3:
f4:82:18:96:aa:2b:93:b3:84:d1:19:57:e0:db:23:90:7b:29:
09:f5:fb:22:43:81:7c:27:6f:70:06:7d:5e:83:c7:85:b3:46:
bd:5a:4a:5c:32:55:09:d2:b3:b9:d4:10:79:f0:77:6a:6d:10:
89:a3:36:96:4a:6f:03:df:f7:0d:27:7a:49:a5:c5:dd:d2:2b:
ff:ae:ea:c5:12:d9:66:1a:c5:d6:40:31:ad:7a:6c:26:ef:e7:
82:f0:dd:d3:69:42:9e:89:46:6f:e7:88:34:56:df:ca:43:9d:
43:72:e6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:56:54 2025 by rpki-client