Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer
File: J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer (raw, json)
Hash identifier: Y64DsKk5vBuruiHOLtR6ueY24oao697IOlFiX9K7+Pw=
Subject key identifier: 27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019422FB5ACD098F72B57BE509A4BF49C560
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 17:48:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 204184
AS: 204616
IP: 185.245.52.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:5a:cd:09:8f:72:b5:7b:e5:09:a4:bf:49:c5:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=27e367d8decf7d626e54780f80e57360d2c078cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e1:5c:1e:6f:9b:dc:57:de:cf:18:57:49:8f:
3f:4b:5e:90:51:86:1b:b5:4c:20:ed:cd:b9:03:7b:
59:3e:2d:49:27:a1:ba:28:96:81:7e:90:a8:12:08:
5e:d5:c7:12:c5:e0:ed:94:ec:20:98:12:1e:a8:c2:
d9:36:34:93:5a:0d:06:21:91:55:bf:cc:bc:ea:4a:
fc:17:f4:8e:f5:12:59:eb:27:f7:08:02:38:5f:d1:
21:51:1d:e1:72:52:00:f0:38:55:54:54:d4:02:ee:
17:cf:82:28:ea:e5:ae:2c:c2:4d:75:70:d5:6a:dc:
3f:2f:74:28:26:fe:bd:3a:13:68:15:55:f4:ed:99:
a5:77:1c:53:e0:c3:32:71:00:c9:9a:fe:41:ca:89:
27:73:0e:3d:e3:63:f6:99:13:25:83:01:c4:48:33:
47:cb:af:57:21:9d:a6:fe:0e:d0:ae:c1:d0:99:0d:
d8:d0:87:03:bd:75:1d:ba:9e:99:c5:79:c4:68:d9:
25:9d:75:f9:1e:04:e4:a5:1f:e4:4c:15:d9:5d:8e:
c1:46:bb:4b:10:41:ef:1d:de:0d:d3:20:dc:52:a9:
6e:9f:f4:32:53:e3:c0:14:b0:6b:62:ce:6c:cd:6b:
2c:9f:99:96:ce:dc:87:7a:e7:60:53:d9:b8:93:43:
28:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.52.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204184
204616
Signature Algorithm: sha256WithRSAEncryption
86:25:9e:83:a7:3b:60:3c:38:8d:81:87:f1:09:ca:ce:eb:96:
16:aa:d0:c8:48:c8:86:6b:1b:8c:cc:ca:75:52:51:1a:03:49:
4b:aa:fa:24:65:da:91:ba:e7:ba:4f:f0:6f:38:7e:fb:2f:3f:
ad:42:bd:e2:31:1f:27:f9:ed:23:3a:7c:ae:94:45:c5:e2:44:
dc:45:13:7f:ef:d7:9f:2e:00:ae:01:61:b3:c0:5b:05:5b:94:
00:68:be:b1:98:ea:83:88:5c:eb:98:40:4c:96:bb:a1:00:5c:
02:53:2b:d5:3f:c5:af:4d:83:23:12:4d:ea:38:91:e5:75:0d:
51:cd:b5:e0:9b:34:d5:63:80:d0:98:e6:14:41:77:3a:7d:c2:
35:18:df:bf:55:e2:7e:67:83:1b:c3:1d:dd:a2:be:c5:49:e5:
22:5b:17:66:78:49:b3:3d:80:f6:9a:40:40:14:63:4f:c1:76:
73:f9:d5:e3:ff:ce:66:c7:1a:2d:a6:04:97:a6:c4:26:40:0e:
75:2d:66:9e:94:b1:08:c6:9d:cd:d6:95:f2:70:7d:8a:cf:6b:
76:84:b1:a5:d2:9b:fc:ae:69:25:c8:ff:0f:dc:d5:63:0c:06:
c5:01:7b:f7:b3:41:ed:1b:12:15:73:d0:00:95:92:9c:1b:b0:
2b:17:b6:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:03:14 2025 by rpki-client