Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DiKD5uavmRQidDcR96cjE3aA5p4.cer
File: DiKD5uavmRQidDcR96cjE3aA5p4.cer (raw, json)
Hash identifier: gasXR25WH/yfHDXHjQ4f2Ike0Vgf9OL6x6eTHSUJT+k=
Subject key identifier: 0E:22:83:E6:E6:AF:99:14:22:74:37:11:F7:A7:23:13:76:80:E6:9E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942444C7F307FA7674965010039A78303C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/DiKD5uavmRQidDcR96cjE3aA5p4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:47:54 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 204641
IP: 45.80.148.0/22
IP: 185.244.128.0/22
IP: 2a0d:2f80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:c7:f3:07:fa:76:74:96:50:10:03:9a:78:30:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e2283e6e6af991422743711f7a723137680e69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:c5:ac:d6:af:51:2b:3f:af:60:9c:14:6f:
93:68:7e:78:08:3e:90:0a:1b:ad:eb:25:a4:c8:75:
84:35:8d:1b:d6:c2:56:d9:7d:25:d3:68:0e:c9:04:
e5:34:e7:12:bf:49:c2:54:fa:62:5e:20:33:c7:93:
71:c3:4a:58:07:be:af:46:31:03:4b:22:e2:9c:07:
36:bb:9c:6e:68:f3:72:63:60:bc:76:0c:9f:f6:dd:
49:90:93:f4:c2:fa:0b:79:8c:ae:ec:0e:3e:76:6c:
93:fd:92:fe:49:ef:92:13:28:b2:62:06:72:fc:aa:
e8:4b:e2:d5:b4:e8:50:28:e1:dd:94:1b:b9:13:f4:
03:b3:63:a5:52:88:5c:d0:db:b7:1b:ba:79:83:0d:
38:8b:6b:31:db:fc:2b:15:6e:79:1e:9f:f1:f7:88:
a8:48:88:30:fa:05:de:6c:a3:96:2a:a0:eb:95:7e:
47:2e:55:67:af:2d:ef:0d:45:2f:96:f9:a9:a4:b2:
9c:a2:56:d2:3c:d1:7e:c2:10:bb:d4:5e:22:5c:16:
49:c5:fc:cc:45:61:42:75:d9:20:1f:50:db:16:e3:
5a:23:0e:30:fb:fa:8e:a6:9a:77:21:f8:ce:57:b5:
97:ed:e0:65:50:89:ee:71:4e:1b:29:dc:c1:d9:94:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:22:83:E6:E6:AF:99:14:22:74:37:11:F7:A7:23:13:76:80:E6:9E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/DiKD5uavmRQidDcR96cjE3aA5p4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.148.0/22
185.244.128.0/22
IPv6:
2a0d:2f80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204641
Signature Algorithm: sha256WithRSAEncryption
57:37:0f:ba:50:bf:60:e9:c9:90:5c:a7:4a:2e:e3:a3:5b:94:
9f:c3:be:14:3c:31:5e:3b:79:36:75:20:22:46:7d:ea:9b:ce:
5a:b9:e3:d3:e3:8b:2c:77:8d:7f:70:5c:41:c5:59:97:09:21:
8b:54:05:18:12:4d:da:85:49:b0:6a:c5:32:a1:34:d9:be:f3:
1b:47:c4:a7:76:27:2e:fb:4a:3a:f3:a0:73:4b:d5:9d:24:2d:
84:27:b7:a4:c5:55:16:bc:7a:12:1d:44:cc:a6:09:a5:ca:90:
20:69:9d:f0:5d:da:46:7c:27:fb:eb:dd:60:44:a1:57:59:31:
8c:b2:d4:13:cf:70:70:33:7c:13:5f:36:ac:2c:42:4e:28:d7:
e1:0f:96:11:a5:4b:44:5b:48:18:26:80:0c:86:e4:4a:26:11:
e2:cd:65:45:3e:3f:81:64:36:74:00:ea:5e:31:c7:17:2e:cf:
87:23:b5:6a:93:fe:8d:eb:b4:09:d1:73:c0:95:d4:e0:ee:d6:
c8:eb:2a:a8:15:2a:e9:65:42:91:5d:a1:21:ec:32:1d:0b:96:
55:fc:53:ae:50:d5:7c:8c:af:c1:a3:ed:7b:71:5d:ce:c0:aa:
76:73:70:51:f5:a6:1d:cd:25:e9:6f:53:dc:26:07:fc:67:9a:
cd:aa:9a:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 22:10:08 2025 by rpki-client