Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LRjYfouf6XS-3wl_iJSDmIYaxH4.cer
File: LRjYfouf6XS-3wl_iJSDmIYaxH4.cer (raw, json)
Hash identifier: w4V43gmsTyfEJYHCa7nB25GH6O9J4Iyxs0Fa+VtM/OA=
Subject key identifier: 2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F2E080F44E3B07515164574EF368C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 211196
IP: 109.121.127.0/24
IP: 185.53.112.0/22
IP: 185.198.68.0/24
IP: 2a0b:6f80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:2e:08:0f:44:e3:b0:75:15:16:45:74:ef:36:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d18d87e8b9fe974bedf097f88948398861ac47e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:01:ce:12:63:ba:b3:25:aa:36:17:2a:3d:0c:
3c:30:2a:68:0a:92:c9:57:b2:4d:b0:6d:53:22:8a:
79:a2:98:4b:e0:b9:df:ad:06:ac:c8:0b:3b:35:64:
b1:ac:9a:26:cb:5d:24:2b:c4:28:b3:5e:46:49:3b:
1e:98:67:e2:ed:c7:cb:4d:ee:a6:63:ca:2a:0d:c1:
06:f0:4e:72:45:9c:ee:b6:dd:a8:35:00:20:35:ba:
1b:b1:31:61:b5:af:5b:1d:c1:0e:a4:1d:e6:19:2f:
45:64:eb:77:60:9e:97:5c:de:2f:25:a9:65:ff:da:
ae:4d:f7:29:b9:8c:25:0a:3e:fe:04:2d:0b:36:4b:
de:c0:1a:77:1f:b7:0e:d7:66:63:8c:cc:82:f0:82:
91:c3:20:46:c8:a8:ab:58:87:97:b9:4b:f2:11:fd:
e4:a5:eb:c0:56:13:c8:19:5a:4d:c3:80:c9:d2:52:
df:6e:bb:31:ca:9e:39:a9:d2:02:85:1a:5a:3f:cb:
f7:b0:df:c0:66:76:8c:e3:e4:ff:44:32:e7:86:95:
0b:74:16:56:06:4b:be:02:16:83:65:1b:0a:5d:e0:
bb:46:58:5c:73:7a:1b:0f:4b:8a:4e:93:2c:cc:8e:
a6:73:e3:ca:22:d6:55:ba:c7:89:44:f7:1d:a8:80:
62:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:18:D8:7E:8B:9F:E9:74:BE:DF:09:7F:88:94:83:98:86:1A:C4:7E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ec85f5-7f65-49f2-98b9-cf0907133241/1/LRjYfouf6XS-3wl_iJSDmIYaxH4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.127.0/24
185.53.112.0/22
185.198.68.0/24
IPv6:
2a0b:6f80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211196
Signature Algorithm: sha256WithRSAEncryption
02:bd:81:4a:3f:4b:d0:5d:d0:b2:7b:44:ba:1a:63:3a:18:2b:
ff:bf:f0:87:dd:ad:98:9c:67:8d:64:6e:ff:d0:cd:18:34:9d:
82:b9:e2:d5:da:85:02:28:e0:44:7f:a3:20:28:db:89:6a:42:
0c:35:aa:b5:2b:66:46:75:f3:c6:e9:12:6f:af:bb:14:69:95:
b0:16:af:4f:e9:3d:61:7e:8c:72:dc:fd:0d:61:7a:0c:38:2b:
f7:38:18:7c:9f:02:80:ae:9d:bc:92:b8:b4:08:19:b9:fd:b4:
7d:4c:7f:8f:c5:7f:e1:e3:c0:7f:23:ed:ee:2d:99:9d:2b:4a:
53:84:d3:15:47:98:de:e4:3b:6e:5b:67:95:70:d8:f7:dc:9d:
7a:ef:b8:f2:f6:66:c5:24:31:ed:82:19:e7:42:0b:ae:57:77:
b5:03:7b:9c:2f:4c:6c:46:e5:3e:5b:0f:c5:55:94:8c:d6:35:
f1:bc:8c:8f:6f:96:49:dd:54:e2:01:5a:92:8c:e1:6a:cc:88:
56:78:8a:dd:1c:c6:73:e1:08:65:dd:a4:9b:6b:c8:cb:f3:b2:
42:89:a4:74:64:f5:33:22:55:69:db:c5:c0:f2:0c:57:aa:55:
35:3c:7e:fc:bb:52:b6:f3:7d:a2:f4:75:82:99:d3:47:20:d8:
4d:61:62:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:33:59 2025 by rpki-client