Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K0mJ_jyso_MEQ8VKkC9pEhENkZU.cer
File: K0mJ_jyso_MEQ8VKkC9pEhENkZU.cer (raw, json)
Hash identifier: HOGeok/KfWgcu1HtJofrtyxOBAa5DhczVugeRVg5sQg=
Subject key identifier: 2B:49:89:FE:3C:AC:A3:F3:04:43:C5:4A:90:2F:69:12:11:0D:91:95
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019422FC18358C06B03654977959293017DB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/K0mJ_jyso_MEQ8VKkC9pEhENkZU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 17:48:54 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205590
AS: 212292
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:18:35:8c:06:b0:36:54:97:79:59:29:30:17:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:48:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2b4989fe3caca3f30443c54a902f6912110d9195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f1:1b:08:61:2d:94:ae:f1:d0:a6:fc:e8:43:
bd:f7:5b:19:ae:2d:99:63:03:69:c8:8f:1f:92:4f:
a8:f7:7d:88:24:3d:3a:27:dc:9f:b9:27:21:ff:bf:
31:30:75:49:06:49:87:89:98:8e:93:3f:8a:16:5b:
64:56:8e:4d:4b:48:9a:cc:60:ec:10:33:a4:d6:a9:
ea:a0:6d:0b:bf:39:b9:43:60:fa:22:c6:6e:27:f8:
6f:5e:0d:1c:44:b2:10:23:59:90:08:ec:c1:d8:3d:
c8:73:f7:3a:fa:d4:c6:46:36:61:b5:ce:b3:6d:c1:
92:5e:4e:f4:c3:71:73:08:6b:49:71:fc:6a:b5:e4:
e9:b8:db:6e:00:8b:39:d1:b2:6b:b2:37:19:96:f7:
ab:da:11:fa:9d:05:67:d6:23:a7:31:f4:e3:27:19:
92:ec:37:a2:90:58:5b:de:dd:4b:fa:46:11:60:9b:
7c:27:77:71:eb:17:56:90:1b:be:a6:0e:bb:cb:1b:
16:7b:8e:b1:a7:5b:75:1a:e1:60:d0:a1:0a:da:0e:
7d:75:37:41:5f:91:e6:3b:34:0b:5b:b7:9e:ab:af:
43:b7:5a:2f:df:01:4e:0c:25:b9:a6:c7:2f:2d:48:
4b:d9:0c:5a:d5:73:ae:32:13:d1:6c:a0:ae:fb:88:
50:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:49:89:FE:3C:AC:A3:F3:04:43:C5:4A:90:2F:69:12:11:0D:91:95
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/K0mJ_jyso_MEQ8VKkC9pEhENkZU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205590
212292
Signature Algorithm: sha256WithRSAEncryption
67:02:c0:0d:af:fd:56:bc:82:e0:07:20:29:fe:07:96:8b:04:
43:97:8f:af:b9:cb:cd:84:09:f1:09:41:d7:0d:85:18:fc:70:
f4:f6:61:b9:9c:3c:57:52:83:7d:c1:0d:4f:14:80:4e:35:1e:
c9:91:28:dd:48:07:da:dc:9f:9d:02:ea:fc:b3:3c:44:16:ae:
fc:dd:cb:98:8b:6a:ab:8a:d9:a2:af:33:e5:f3:79:b4:dd:aa:
31:ba:ed:ab:f2:f9:50:bf:96:87:81:17:60:b8:7e:ca:c0:1c:
ad:1b:83:31:79:f1:63:20:ef:42:b7:68:6b:24:84:2a:7f:65:
7c:94:c9:16:8c:7c:c3:63:a0:72:f0:4d:3d:4a:d3:ff:a8:0d:
55:b4:d1:03:c1:ab:b2:b6:1a:1b:92:bb:e6:e6:65:d2:71:de:
36:17:ca:76:95:cb:b2:07:f5:c0:eb:74:85:b1:bf:d1:63:fd:
51:4b:41:d8:e2:2f:b6:35:22:53:b3:44:4b:cf:f7:f3:54:aa:
1f:e1:61:59:aa:07:3e:1e:e5:e3:40:d4:08:bf:f5:79:a0:82:
d7:75:46:d2:ab:fd:6f:d4:28:9d:75:15:d3:01:5f:21:a7:c0:
5d:38:5c:f6:82:53:b2:f1:cb:fa:26:46:c6:e3:fe:15:54:6a:
01:b2:f4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:52:32 2025 by rpki-client