Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer
File: HY6N9cAxEHEY2mHymrT0GdKdWoo.cer (raw, json)
Hash identifier: cTyzpDxdT+Ns1bNke84ucK7K4sy8AvHK0XLSDWLErL8=
Subject key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01944AC5F4F0A8DE209AA21744F2D281B7B3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 09 Jan 2025 11:14:34 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 3218
AS: 5386
IP: 62.61.0.0/19
IP: 195.170.224.0/19
IP: 2a0c:6d00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4a:c5:f4:f0:a8:de:20:9a:a2:17:44:f2:d2:81:b7:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 9 11:14:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:56:40:a6:60:94:48:24:0c:81:2c:ad:f6:56:
04:71:6f:8e:1e:40:bd:59:d5:5d:90:be:2b:dc:a5:
56:d5:37:55:a0:59:ab:fb:a1:8f:89:cd:56:e6:bc:
c7:f3:17:a1:ff:15:d6:37:51:e8:48:0c:1d:c2:3a:
91:87:fc:2c:c7:8f:92:b7:54:f3:e8:58:25:5a:7a:
c3:a2:04:47:95:52:30:58:e7:8c:b3:78:3f:33:6b:
b0:5f:54:58:40:5b:92:7c:9f:51:7e:e1:ef:c5:79:
48:75:b0:8d:18:90:c6:17:b4:4b:45:47:51:9d:d0:
dc:cd:17:38:22:4c:9c:f6:b9:a4:c5:04:55:73:62:
fb:90:8b:72:59:d9:63:94:26:10:f0:4a:16:e0:dd:
04:c0:ca:e4:31:50:0f:33:04:f0:b5:cb:fb:9e:d6:
cf:c8:99:7f:52:ec:e4:bc:99:ed:59:ec:c3:52:57:
bd:12:78:21:96:07:94:08:0d:13:ee:36:be:0c:1f:
ed:db:ce:60:53:ad:8d:00:c7:05:b1:c1:63:29:68:
f1:55:5f:82:c3:04:25:12:f8:0f:e7:aa:47:f4:55:
df:30:7a:ed:61:d4:0e:3d:f6:ff:47:0f:1c:6e:88:
04:a5:a5:70:0b:c3:f8:cc:05:a2:56:01:61:f1:9c:
1c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.61.0.0/19
195.170.224.0/19
IPv6:
2a0c:6d00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3218
5386
Signature Algorithm: sha256WithRSAEncryption
10:38:ad:76:52:52:3f:6c:bf:a4:f5:2e:37:73:83:cc:c1:c2:
4d:11:ab:6a:52:d0:50:d8:cc:57:ea:79:0b:b6:16:6e:21:cd:
af:e7:f7:e8:fc:1e:75:f7:3e:0c:47:d0:e6:27:98:be:4a:69:
84:ab:30:78:e1:19:02:31:3a:cc:e2:89:d4:6c:d7:1d:60:46:
6c:57:8f:0b:9b:28:43:2d:27:da:2a:7c:68:71:64:d0:1a:85:
71:bd:27:4b:c3:4c:0f:c0:45:8e:ab:0f:91:93:ba:fa:77:f6:
cc:19:8b:fc:32:28:50:84:6f:94:4a:ac:28:81:3b:0f:b9:10:
a2:58:74:bf:dd:f3:19:93:1a:22:8e:93:02:75:87:16:65:6c:
3f:fb:29:97:dc:01:6d:da:78:c1:4b:2a:c7:83:f2:9c:11:3d:
b0:99:20:11:c0:49:18:97:96:a6:50:77:bc:ed:d6:ba:f2:28:
82:9f:ce:7a:6e:38:92:38:6f:3e:a1:55:b9:86:51:a7:96:0b:
0f:67:1d:a1:d2:c0:8d:37:78:44:ac:46:37:7a:9c:8f:ed:27:
85:f9:94:ad:cf:c4:e4:2d:fa:f2:30:24:4c:ca:b7:bb:1e:e9:
38:19:7a:39:02:72:12:bf:81:8a:22:2c:85:de:52:c9:38:c3:
be:bb:cb:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:01:55 2025 by rpki-client