Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PDULqC8_61ruKJOPvxsJweL9GbQ.cer
File: PDULqC8_61ruKJOPvxsJweL9GbQ.cer (raw, json)
Hash identifier: 2tnILkKi1ufbwgojv+ES9bUFng/xrpZbgyTVGB9VDho=
Subject key identifier: 3C:35:0B:A8:2F:3F:EB:5A:EE:28:93:8F:BF:1B:09:C1:E2:FD:19:B4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5A345D0A113DB7707435F8131AC24
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/PDULqC8_61ruKJOPvxsJweL9GbQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:47:39 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 24990
AS: 44729
AS: 59997
IP: 185.3.24.0/22
IP: 195.42.144.0/23
IP: 217.69.16.0/20
IP: 2001:7f8:43::/48
IP: 2a03:6c80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:a3:45:d0:a1:13:db:77:07:43:5f:81:31:ac:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3c350ba82f3feb5aee28938fbf1b09c1e2fd19b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:55:e3:ed:d0:4d:cb:d2:3b:42:ce:55:08:97:
39:74:64:dc:f7:29:4b:08:c0:79:ec:17:6d:06:04:
cf:cd:f9:ed:f3:b8:42:b0:c3:00:50:a7:55:63:55:
86:df:b8:2b:57:b3:51:4c:95:40:5f:27:93:2a:d2:
1c:a7:7c:bf:05:c3:47:b8:cd:33:27:2a:13:48:29:
ee:86:6a:c0:8b:19:e2:a3:7b:09:49:a2:bd:8b:96:
5e:37:8e:29:ac:5b:2a:90:44:89:a6:fb:5c:ad:4e:
1d:95:c8:a6:9d:42:5b:39:45:11:8c:2f:37:f5:62:
1b:f6:7d:d9:a4:2d:72:70:fe:f1:e5:31:54:5e:2a:
ab:22:36:fa:d7:89:f5:c1:ee:0e:0d:b1:ce:02:d7:
7a:e5:9f:7d:e0:8f:c0:ee:d2:dd:c2:24:85:2b:63:
dc:21:42:6e:d9:28:4c:71:7d:ff:f4:65:e6:55:92:
6e:1e:77:05:2d:f3:72:51:1a:b9:0f:ee:3a:11:9e:
d5:5c:9a:a7:8a:9f:12:db:72:6c:62:d6:97:d3:66:
eb:b3:a7:5a:44:fe:38:1d:7a:c9:ab:dd:6b:55:55:
2b:3b:b1:4d:e5:29:46:b1:7a:f3:3e:85:aa:0b:02:
34:07:8e:b4:6e:68:a8:4e:6a:17:04:94:5f:95:82:
e1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:35:0B:A8:2F:3F:EB:5A:EE:28:93:8F:BF:1B:09:C1:E2:FD:19:B4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/64d7a9-cac3-4549-a7aa-61b7902ee204/1/PDULqC8_61ruKJOPvxsJweL9GbQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.24.0/22
195.42.144.0/23
217.69.16.0/20
IPv6:
2001:7f8:43::/48
2a03:6c80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24990
44729
59997
Signature Algorithm: sha256WithRSAEncryption
49:ed:ae:67:19:72:71:f4:19:0c:1f:d1:4a:a4:aa:0d:ff:e7:
06:75:88:d9:0d:0e:75:6e:c4:f8:ae:e4:e5:6c:a0:81:c7:02:
be:90:4f:44:01:09:32:68:be:50:f6:72:1c:f1:b2:85:50:24:
bb:3f:ce:72:01:1b:52:4a:34:8d:36:7f:ea:19:03:b2:93:41:
ed:a6:d4:20:65:34:43:36:25:9b:ca:54:b3:80:05:9b:94:7d:
22:48:85:1a:e0:8c:bc:84:81:c8:43:9d:2f:f4:ff:6d:2e:4d:
b0:20:a7:90:37:56:d5:b6:8d:dc:8d:12:71:44:91:36:02:c9:
12:22:80:57:3f:fe:fb:08:5b:dd:65:45:3f:45:be:34:84:f1:
c3:65:66:5f:47:8e:cd:c0:d9:5d:91:1c:3b:dd:ed:f9:af:9e:
4f:d2:4f:fc:09:74:3e:fa:6b:7c:37:5c:e2:b6:0f:cb:06:dc:
3b:d6:02:81:33:dc:21:ce:74:05:db:fd:eb:21:4e:f7:27:a1:
6b:5f:6a:72:b4:a4:01:6a:b0:e4:a8:85:27:07:74:02:13:4c:
b3:da:84:46:b2:90:ef:ac:9f:9d:5b:12:cb:1c:de:47:3c:55:
72:8b:6a:cc:e9:a0:33:a3:ca:fb:37:c2:74:e1:f5:ee:8e:f3:
52:61:ad:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 05:59:45 2025 by rpki-client