Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CzWsvzBVlmjqGOo_ELKX7mTI5JM.cer
File: CzWsvzBVlmjqGOo_ELKX7mTI5JM.cer (raw, json)
Hash identifier: hssu10M4WmEoESfVd7g8ppGy1L8oDTGhGE548fAMIts=
Subject key identifier: 0B:35:AC:BF:30:55:96:68:EA:18:EA:3F:10:B2:97:EE:64:C8:E4:93
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942144106B93902DE2E83C597DA8AC33F8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/CzWsvzBVlmjqGOo_ELKX7mTI5JM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:48:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 212886
IP: 193.107.76.0/22
IP: 2a09:99c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 01:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:10:6b:93:90:2d:e2:e8:3c:59:7d:a8:ac:33:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0b35acbf30559668ea18ea3f10b297ee64c8e493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a1:3b:9b:18:3d:59:f0:c0:4b:b0:b8:88:0e:
d8:ed:4b:fe:f4:cd:cf:f0:b4:22:10:2b:da:0a:dd:
0d:f6:86:6e:05:65:c1:88:4b:d3:e0:4a:aa:78:22:
29:c7:81:f4:06:71:63:fb:75:99:04:35:43:0a:c6:
e8:40:65:9f:2b:db:80:20:3d:cb:58:0a:ef:69:74:
2e:aa:f3:70:d5:4c:be:0e:5a:71:2a:0a:47:63:38:
c2:cd:9d:7a:1c:8b:a9:68:8c:06:b7:38:c1:c2:5b:
43:ac:c2:10:a6:44:6e:4d:dd:0d:e6:b5:22:e4:e7:
22:65:48:9e:39:69:93:39:fd:1d:87:40:79:40:8d:
cc:a5:33:f9:0d:8a:31:1f:0c:dd:e7:32:30:67:f3:
b2:ea:84:9e:8b:af:b8:5d:5d:87:24:87:0b:4e:b4:
a7:da:08:8d:f1:1c:21:77:d2:42:ea:d1:55:b3:17:
0e:c6:da:e4:39:d3:fb:98:63:40:7a:2f:23:a8:b2:
33:e8:35:84:f9:b7:43:63:8b:2c:2a:a6:36:6c:9a:
11:05:1a:79:bc:7e:2e:4e:55:a1:5a:cb:3b:7c:3d:
d2:55:0f:93:84:d0:fd:f6:5d:93:53:fd:72:20:1f:
43:14:d8:93:27:b1:89:ac:20:08:e1:f2:fc:7f:27:
d9:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:35:AC:BF:30:55:96:68:EA:18:EA:3F:10:B2:97:EE:64:C8:E4:93
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/72fb45-30c7-4a53-a2db-b4c9e2b0d156/1/CzWsvzBVlmjqGOo_ELKX7mTI5JM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.76.0/22
IPv6:
2a09:99c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212886
Signature Algorithm: sha256WithRSAEncryption
9b:21:9a:39:84:c5:4b:9f:b6:ee:7c:a9:5f:40:19:b5:9a:55:
fd:12:da:97:ab:d0:a3:bb:99:da:41:aa:31:30:cc:55:d8:ac:
81:87:e1:9b:c2:d0:e2:d1:c6:b3:0d:2a:3e:be:ae:3b:f2:f4:
07:30:67:9e:69:59:83:f3:9a:35:3c:88:ed:e5:f3:da:0a:47:
af:f7:c3:ca:ca:ea:db:7b:ef:a8:d2:d0:04:66:3f:66:60:85:
25:b6:4b:d9:2f:4b:c2:ae:1b:52:74:d9:4b:e1:a7:da:49:69:
ec:5c:1e:45:b2:c3:c5:01:cb:2f:6d:7b:a5:d7:de:30:93:8d:
35:cf:60:36:20:a8:ce:15:84:e0:ed:68:62:00:ac:a0:3e:80:
90:9f:07:89:f1:22:e2:01:55:9f:43:bc:0e:e2:53:e2:ad:70:
10:ab:41:59:26:a6:a0:2a:ad:db:a0:72:cb:23:93:1c:fa:5d:
30:2f:f0:7a:bf:d6:35:e4:c0:a8:a0:e2:5c:a8:3a:18:b6:27:
7c:cc:47:ed:f1:fa:49:41:aa:89:0a:af:6c:28:c0:cb:8b:84:
a3:2b:cb:69:05:1c:70:5f:45:07:75:2e:da:b1:96:f3:ff:e7:
31:de:84:fc:be:73:0a:8e:a9:b7:16:96:a1:43:6a:ae:d5:6c:
b7:40:96:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:35:45 2025 by rpki-client