Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JVf6lW8PU5gNecMs4ebpPv1Ij9c.cer
File: JVf6lW8PU5gNecMs4ebpPv1Ij9c.cer (raw, json)
Hash identifier: 9/rTK2H1jy6vVdyhXqkS1CiF+wgkdPzix/ud5zGwr6M=
Subject key identifier: 25:57:FA:95:6F:0F:53:98:0D:79:C3:2C:E1:E6:E9:3E:FD:48:8F:D7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019422FBADE9C79A801BE2A770E0615F8C3A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/JVf6lW8PU5gNecMs4ebpPv1Ij9c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 17:48:26 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 208118
IP: 152.89.65.0 -- 152.89.67.255
IP: 2a09:2e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:ad:e9:c7:9a:80:1b:e2:a7:70:e0:61:5f:8c:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2557fa956f0f53980d79c32ce1e6e93efd488fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d2:e4:f2:fc:30:e8:31:8e:9a:c0:8f:aa:58:
f7:e0:97:aa:5f:f5:7e:e9:b0:f8:59:59:00:4f:97:
52:ed:d1:a0:95:0d:25:2c:d5:4f:e1:13:f9:46:cc:
a3:9f:ae:81:0c:47:a5:4e:33:ff:e6:e0:2b:70:2d:
09:26:1f:dc:e9:45:29:14:06:33:44:29:94:ee:04:
0e:55:de:10:9f:80:c4:58:d6:e3:17:0d:93:ba:97:
c5:f5:c9:57:28:f6:53:29:47:35:3a:89:c4:06:05:
1b:8a:af:a0:ea:dc:37:15:b5:df:ca:9c:31:61:2c:
6d:10:14:c9:8a:dd:7a:16:9a:58:c8:8f:91:81:1d:
8a:ca:a8:91:a8:e8:94:22:c2:94:23:27:46:88:06:
4d:27:40:bc:1d:e3:17:56:0b:3a:cd:8b:f9:fc:a7:
ac:c4:f7:b0:67:a6:b6:31:e8:4f:4b:21:59:c6:89:
8d:ce:e5:9e:ce:c8:0f:ac:aa:a7:e3:b3:fc:fd:2a:
46:d4:91:75:8a:fd:e7:71:e3:5a:2d:48:cb:83:85:
64:f4:05:bd:3f:f0:99:bc:97:14:25:2c:17:44:72:
14:c1:e3:5c:80:df:42:71:68:4f:42:00:d0:8b:44:
a3:5b:20:97:24:67:78:13:1e:3e:9d:07:cc:b3:5d:
47:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:57:FA:95:6F:0F:53:98:0D:79:C3:2C:E1:E6:E9:3E:FD:48:8F:D7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/JVf6lW8PU5gNecMs4ebpPv1Ij9c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.65.0-152.89.67.255
IPv6:
2a09:2e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208118
Signature Algorithm: sha256WithRSAEncryption
28:af:90:67:80:fc:a6:36:75:78:59:57:f2:e7:68:7e:53:c5:
29:6a:6f:be:3d:f6:d6:4b:b8:56:bb:12:f2:03:b2:28:87:de:
bc:f3:2c:45:f6:39:00:50:cb:93:7e:19:74:08:84:17:42:1b:
ac:5b:bf:b2:82:e6:59:97:db:2c:e4:68:b7:67:e3:a1:bf:2a:
bc:df:98:b5:5a:e0:ac:e2:0b:92:42:e0:e9:cf:37:e2:26:ce:
a9:01:ba:ad:86:40:3b:09:6b:59:4d:ee:ad:3c:e1:6c:95:50:
6a:b9:61:f1:b1:55:9f:f7:1a:ea:50:c5:de:3d:c9:fe:ff:5a:
cc:61:a3:7e:6c:c1:40:d3:e7:59:d3:e1:24:27:75:11:a5:62:
15:01:98:03:a1:12:2c:d1:57:8e:f0:b0:f0:f8:1c:38:dc:cb:
af:72:d8:e3:2d:ef:39:9d:23:28:ac:ef:72:b5:d7:1e:f1:93:
27:97:35:d7:2f:c2:39:a6:f8:af:e0:3e:61:c7:49:57:dd:ec:
38:db:0a:6a:46:80:49:fd:56:9d:13:62:89:b3:df:0c:4d:64:
ca:dd:72:10:80:92:9c:fe:cd:e4:f5:89:5e:14:59:b8:87:c4:
b9:2b:20:2d:48:5c:fd:d8:34:55:ff:a2:71:57:1b:82:5b:ef:
f4:63:1c:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:34 2025 by rpki-client