Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BysethAMDKVkRDcFjUL0_XIjNoE.cer
File: BysethAMDKVkRDcFjUL0_XIjNoE.cer (raw, json)
Hash identifier: WPIDYyydhWSyx2OlhBe6rlShMYYdYDg/HmW3lGiYljo=
Subject key identifier: 07:2B:1E:B6:10:0C:0C:A5:64:44:37:05:8D:42:F4:FD:72:23:36:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194214454A4C60E35E920B8FB1C26381314
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:48:33 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 16265
AS: 38930
AS: 60626
AS: 202134
AS: 203774
AS: 203928
IP: 31.31.32.0/21
IP: 46.182.120.0/21
IP: 87.255.32.0/19
IP: 89.255.248.0/21
IP: 185.28.68.0/22
IP: 185.100.132.0/22
IP: 2a00:ec8::/32
IP: 2a00:9d20::/32
IP: 2a03:2280::/32
IP: 2a06:1780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:54:a4:c6:0e:35:e9:20:b8:fb:1c:26:38:13:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=072b1eb6100c0ca5644437058d42f4fd72233681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c8:a7:b0:4f:a9:85:a2:c1:3e:bc:ee:94:57:
2c:05:1b:d6:33:c2:59:d5:3f:91:35:97:85:80:eb:
7a:60:fa:e3:81:b5:f7:ba:29:6e:37:7e:54:ba:f6:
8c:ec:fd:31:0f:cb:be:a0:a3:5c:ba:23:a6:53:78:
23:78:29:b8:e3:c8:87:39:87:c1:17:83:04:98:d2:
dd:6c:b2:5e:96:7d:e8:b3:82:bb:bc:f9:18:86:6a:
14:2f:ff:61:f5:2c:49:d7:81:15:55:93:c6:7c:fc:
d8:ca:43:c7:09:59:58:2b:ca:9e:15:d0:7a:c2:c0:
7e:6c:1c:9b:c2:72:7d:ca:d9:da:cd:01:59:d3:16:
2d:4f:d6:09:94:42:ae:14:65:db:e1:fd:b5:5a:de:
93:d6:55:b6:fe:65:5d:1e:68:58:8d:e2:06:75:16:
2c:ed:fe:80:05:b0:c5:fa:3f:d1:4d:15:00:08:68:
e5:81:f3:2b:ea:34:b0:37:48:cb:04:85:a0:3b:b6:
83:2e:bc:00:f3:b5:21:ae:bf:ad:67:40:a5:f3:77:
79:87:24:10:ad:5b:0a:b1:22:3a:ea:64:22:d9:44:
6a:08:44:ba:27:1d:a9:d1:ac:5f:33:0f:3c:64:e8:
08:c2:51:d2:98:5d:80:8c:13:a3:82:74:02:47:0b:
7f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:2B:1E:B6:10:0C:0C:A5:64:44:37:05:8D:42:F4:FD:72:23:36:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f3f273-3424-4651-9a21-0e07e5a66d59/1/BysethAMDKVkRDcFjUL0_XIjNoE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.31.32.0/21
46.182.120.0/21
87.255.32.0/19
89.255.248.0/21
185.28.68.0/22
185.100.132.0/22
IPv6:
2a00:ec8::/32
2a00:9d20::/32
2a03:2280::/32
2a06:1780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16265
38930
60626
202134
203774
203928
Signature Algorithm: sha256WithRSAEncryption
20:d0:93:7e:bd:ba:b3:df:5f:00:f2:56:af:20:77:64:d0:b1:
b2:1f:49:30:7f:0d:02:31:53:7e:4e:82:f6:53:44:34:72:c2:
5b:7b:98:fa:45:69:c4:16:98:97:91:86:bd:66:81:8f:d8:5c:
01:75:76:dd:ec:4c:d1:f9:3b:2f:16:2d:cc:64:c4:43:25:c4:
a1:96:99:e0:6b:0a:7c:64:92:c1:b6:df:be:dd:24:7a:a4:ce:
82:88:ea:44:f9:58:87:34:7b:25:6e:ed:68:f9:a8:2d:bb:87:
e9:83:d8:43:b2:61:20:7f:3b:ab:f4:93:62:a2:d4:96:04:74:
56:d2:65:b0:6b:5b:d2:4e:97:1c:58:b8:de:6b:e8:c4:30:fd:
30:d6:c7:68:90:9c:fc:b4:02:49:ad:6b:75:9f:6f:c1:28:9e:
f7:f1:0f:04:df:25:96:a2:e0:e1:db:7e:46:ce:d5:ec:45:7f:
2b:b0:f7:66:73:6a:f8:2d:24:4c:d1:82:81:7a:22:83:76:f3:
20:e4:29:39:b6:a0:3f:ec:74:77:d6:85:ee:75:93:10:b0:76:
b6:f4:6f:a2:37:3f:87:ce:0e:20:cd:7a:99:4e:b7:6d:ce:0e:
da:0d:3a:1c:c0:a2:29:fe:fd:37:3b:2d:76:76:84:0d:dc:e9:
1c:fa:fc:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 15:43:28 2025 by rpki-client