Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Iv9bz3ObBzL7G823F-xxf28csOI.cer
File: Iv9bz3ObBzL7G823F-xxf28csOI.cer (raw, json)
Hash identifier: 1yQp+HpWmDwqDnFFAax1TTXaYXXTVqdZJN+gCjfPTkM=
Subject key identifier: 22:FF:5B:CF:73:9B:07:32:FB:1B:CD:B7:17:EC:71:7F:6F:1C:B0:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D661542C63ED39A6B7F932154A6DC9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/Iv9bz3ObBzL7G823F-xxf28csOI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:28 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 48260
IP: 185.77.196.0/22
IP: 2a03:1980::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:61:54:2c:63:ed:39:a6:b7:f9:32:15:4a:6d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=22ff5bcf739b0732fb1bcdb717ec717f6f1cb0e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:d7:f7:3c:11:38:91:ec:d7:5a:57:f5:23:dd:
43:e8:5a:14:24:f0:03:32:0d:4a:1c:61:4f:03:56:
b1:90:a1:93:47:5c:ee:b6:42:ff:1a:33:1c:4b:53:
cd:7c:e2:33:b0:74:cc:fc:68:d6:88:e2:66:07:2f:
de:2f:a7:53:46:06:71:16:2c:a8:31:47:06:8e:c1:
ca:92:94:16:fb:61:45:e3:ab:47:ef:42:2e:30:fc:
e1:27:4b:ae:dd:99:ae:fa:eb:cd:66:ef:30:de:e4:
5b:14:d9:e1:42:cc:73:8c:07:77:f2:13:ef:05:1c:
3f:f6:0d:d1:b8:c8:ab:86:08:ea:a5:bd:66:3d:06:
f0:c2:3e:e8:d7:56:b4:75:bd:84:9c:db:b0:1d:be:
e2:86:25:00:e4:94:d2:53:6e:57:54:56:7b:bd:1f:
ae:7d:dd:53:c0:72:28:b5:86:a6:ae:7a:83:08:b9:
03:71:ec:e0:49:ef:b1:6a:97:71:02:f1:bd:f0:63:
56:28:67:ec:4f:a2:61:30:4e:dc:ff:75:93:24:80:
67:3b:d0:e4:e6:eb:80:8e:54:68:b9:64:df:9f:b5:
12:de:1f:ab:49:4c:89:cb:56:fd:9d:d3:6d:52:b9:
a2:fb:dc:97:35:97:10:83:a5:78:ce:4a:a1:f8:7b:
48:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:FF:5B:CF:73:9B:07:32:FB:1B:CD:B7:17:EC:71:7F:6F:1C:B0:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d7bf0f-691a-4cec-b5ce-7603e5dd5707/1/Iv9bz3ObBzL7G823F-xxf28csOI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.196.0/22
IPv6:
2a03:1980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48260
Signature Algorithm: sha256WithRSAEncryption
b0:90:d5:2b:62:0a:be:05:2e:e2:57:f9:aa:8a:50:93:fa:b5:
f2:ea:0d:4b:8c:24:c8:3f:d4:ce:2b:2b:8a:15:9a:c4:4c:dd:
f1:d7:07:fc:1c:e1:32:e0:05:1a:75:83:2d:9d:36:de:70:30:
70:f0:40:74:85:2f:ab:e5:e7:d4:94:d1:f2:d3:29:88:65:15:
26:29:66:bb:ec:a0:b5:4f:55:20:91:cf:e4:16:e2:f0:43:f9:
37:8f:e0:94:eb:58:80:9f:71:32:97:15:85:34:8d:b5:70:10:
81:aa:94:86:6f:34:8b:e8:86:85:d2:44:68:8f:c7:72:4f:30:
57:3c:10:14:37:18:a6:c6:86:7b:c7:0f:86:d0:34:58:3e:f5:
4f:41:4b:48:85:54:93:df:b7:07:84:e0:e8:1a:02:b3:b0:50:
24:36:52:59:99:ab:57:63:fd:bc:58:a4:b8:33:2a:75:33:ae:
43:ff:7c:b6:9f:64:96:5e:51:b9:cd:76:fe:93:2a:de:75:7c:
27:1e:19:a0:f7:26:80:28:d5:8b:d2:f7:c2:e2:25:5f:6d:9a:
77:6a:05:33:04:00:4c:4d:ae:03:c6:26:0c:4d:ec:b1:1c:37:
24:8c:9a:ce:e1:3c:59:a3:82:b6:9e:f6:0e:27:75:29:14:ab:
de:bc:20:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:58:00 2025 by rpki-client