Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/QKJJ6t6yqSj-DC51yRgki1oaKLk.cer
File: QKJJ6t6yqSj-DC51yRgki1oaKLk.cer (raw, json)
Hash identifier: lZtUR1jIPrvG7k19EK56g4WsW5r3BEeBld7ZqlHERSs=
Subject key identifier: 40:A2:49:EA:DE:B2:A9:28:FE:0C:2E:75:C9:18:24:8B:5A:1A:28:B9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA07868C01B5AE6F0FD030F1761E9B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/38/ae5488-119d-40aa-ae40-8330e7e32e19/1/QKJJ6t6yqSj-DC51yRgki1oaKLk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/38/ae5488-119d-40aa-ae40-8330e7e32e19/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:47:47 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 29259
IP: 83.170.0.0/18
IP: 84.11.0.0/16
IP: 195.158.212.0/22
IP: 2001:1b10::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:07:86:8c:01:b5:ae:6f:0f:d0:30:f1:76:1e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=40a249eadeb2a928fe0c2e75c918248b5a1a28b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:53:2b:b8:36:bc:cd:2d:ca:f3:fd:c1:52:59:
89:b2:95:b9:fe:57:e7:4f:63:54:cd:f2:21:21:e4:
2c:c1:a0:0a:c5:5d:25:f5:32:c7:cc:23:a4:df:e1:
2e:2e:83:8a:dc:2f:82:f2:2c:0e:38:ba:df:e0:f8:
f7:6a:55:42:a8:ab:71:97:c5:58:7a:67:da:f0:7f:
f3:9a:fd:4c:51:7f:96:11:95:cf:e3:5e:37:27:51:
ca:ac:f2:4a:a4:ef:1a:41:ff:bb:7b:55:7a:d2:4a:
66:10:c9:41:06:6a:48:c0:18:71:2f:ad:c2:8a:33:
60:13:cf:0a:05:f9:16:46:17:8d:3c:93:3e:d9:44:
62:ad:74:1d:f6:8e:64:e5:17:86:c8:fb:80:fb:d8:
9f:dd:a6:e1:ec:39:af:2a:2b:b1:6d:19:60:85:a5:
23:cb:8d:5f:0a:1d:37:00:5f:1e:00:c5:c9:c3:15:
76:59:a4:4d:1b:75:53:6b:0a:28:f8:38:10:9b:8f:
19:8f:82:40:92:4e:1d:f8:e8:07:01:91:6b:c1:43:
d0:48:8e:4f:de:3b:c2:05:82:a0:44:4a:d8:d7:dd:
3d:83:63:d0:34:da:14:50:44:90:b1:6c:9e:8d:d5:
83:af:5f:8d:bb:d3:85:e0:e4:c5:94:1e:83:84:1f:
94:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A2:49:EA:DE:B2:A9:28:FE:0C:2E:75:C9:18:24:8B:5A:1A:28:B9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/ae5488-119d-40aa-ae40-8330e7e32e19/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/ae5488-119d-40aa-ae40-8330e7e32e19/1/QKJJ6t6yqSj-DC51yRgki1oaKLk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.170.0.0/18
84.11.0.0/16
195.158.212.0/22
IPv6:
2001:1b10::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29259
Signature Algorithm: sha256WithRSAEncryption
2b:36:10:5b:fb:7a:3e:b3:ec:54:bd:a2:fc:2b:f4:e1:3b:22:
c4:4b:fd:b1:e4:5d:04:8a:be:70:a4:40:0e:25:00:f3:09:60:
03:d0:35:26:4d:c9:eb:d3:e9:f0:84:13:9a:41:c0:e7:73:49:
05:e8:68:e6:b0:1a:4b:18:e9:15:10:89:15:8b:ee:b8:ee:55:
d3:94:ea:2a:4c:a7:63:58:ea:b5:43:6d:89:3e:c6:d9:ba:20:
3d:36:1e:2f:e2:2f:a7:1d:9b:ca:d7:4b:13:15:f1:57:60:a7:
51:60:db:df:10:65:35:1a:fd:ed:90:ff:e4:74:aa:2b:4d:3e:
d2:37:fd:dc:16:47:79:02:ba:b0:23:9f:9d:a9:a6:27:14:2d:
22:b1:41:ab:a1:62:6f:7b:a8:2f:3b:87:6f:2b:7f:5d:00:1d:
94:86:79:a5:dc:76:c0:e1:3e:7c:5e:36:e6:e6:d3:18:e7:9d:
ae:99:19:a5:d7:65:67:50:05:db:33:84:12:8e:48:aa:15:f8:
76:48:ca:f5:49:82:bb:60:d9:ad:69:98:04:65:c7:03:a7:20:
0e:a9:de:fd:4e:16:07:5c:87:4f:5d:43:55:c6:f9:33:35:da:
7b:06:40:51:ae:51:2c:1c:1a:d3:f7:f4:1a:12:7b:c5:fd:bc:
f4:bd:3e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 07:51:41 2025 by rpki-client