Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U7u7qj7iTHrZssYEMuFO2jhJteI.cer
File: U7u7qj7iTHrZssYEMuFO2jhJteI.cer (raw, json)
Hash identifier: IfChSvd23Jrzzo4SEJWtwhjGn0u4wQH39OKiC2xjFQs=
Subject key identifier: 53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F263C6C1BF20FF5F3E3B8A4700D72
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:46 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.92.160.0/22
IP: 185.211.220.0/22
IP: 212.29.18.0/24
IP: 212.29.28.0/24
IP: 212.79.200.0 -- 212.79.223.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 02:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:26:3c:6c:1b:f2:0f:f5:f3:e3:b8:a4:70:0d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53bbbbaa3ee24c7ad9b2c60432e14eda3849b5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b4:37:11:0d:7a:4c:f8:34:8c:7b:30:e6:3c:
bc:d2:2a:e5:62:9e:07:1b:35:2d:28:e6:b3:6e:f3:
ca:a2:cf:ff:18:6c:bc:43:99:6e:f6:5b:e7:61:17:
bb:b4:e3:4f:1f:eb:2c:2b:35:64:8c:64:23:c2:f6:
7a:c2:e6:77:f0:7a:31:09:19:66:db:75:4f:88:16:
ef:91:84:b2:66:9d:86:ae:45:cf:be:91:6e:b9:56:
c9:f4:17:32:e3:5f:d1:16:fd:dd:7f:14:38:ed:21:
c1:eb:9b:bc:22:e6:f5:48:5b:c6:49:d7:8d:12:38:
1c:8d:1d:04:13:c3:e1:10:48:06:10:0d:ac:5c:90:
d6:b3:bc:1e:45:29:0c:ee:04:ad:04:65:a4:4d:a4:
36:e2:d5:11:de:3d:79:f5:64:b6:56:a0:95:17:9e:
1d:c7:f2:95:92:c2:b5:e6:dd:1d:1e:da:16:b9:c2:
cb:af:b3:81:4f:47:66:31:48:e5:a2:38:5e:11:85:
34:a2:13:58:60:7c:40:55:fa:e3:b4:21:9c:04:56:
13:d3:88:11:7a:b3:bd:82:57:fb:3f:2b:7c:b3:bc:
87:01:e0:a6:ea:13:e3:99:3b:33:ea:70:cb:b0:aa:
22:03:21:7d:45:8b:f7:e2:5d:29:63:28:ad:68:c8:
45:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BB:BB:AA:3E:E2:4C:7A:D9:B2:C6:04:32:E1:4E:DA:38:49:B5:E2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/3394c0-4587-444e-9a25-00ecf0c4d0ef/1/U7u7qj7iTHrZssYEMuFO2jhJteI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.160.0/22
185.211.220.0/22
212.29.18.0/24
212.29.28.0/24
212.79.200.0-212.79.223.255
Signature Algorithm: sha256WithRSAEncryption
53:9b:7a:2d:5c:a8:46:18:08:06:a2:b2:0d:22:05:5a:3d:c3:
27:49:96:dd:7f:69:87:e0:81:78:69:64:f8:5e:f0:ef:87:bf:
16:01:e4:8e:8c:52:20:6d:fe:d0:aa:86:b5:64:bb:69:8d:d4:
33:c3:d6:b5:8c:10:99:24:a7:2c:31:93:97:46:27:4a:fc:f7:
48:da:64:07:8f:81:3c:52:7f:16:40:a3:e0:27:a4:bb:f8:d7:
4e:3e:40:65:98:43:e1:87:9b:46:81:32:27:ab:50:0d:63:89:
90:7b:73:d3:e2:cc:f1:7b:00:ac:cd:38:37:93:47:51:41:81:
43:da:7f:14:42:fe:ed:ad:aa:3d:87:9d:db:b6:e5:79:78:c2:
aa:be:3e:48:77:1a:38:8c:71:01:0e:63:fa:a4:67:e9:24:ac:
18:b1:e4:bf:7c:a8:14:ef:b6:3a:83:00:3f:01:1d:c9:17:3f:
35:ea:ac:1f:0b:89:98:8a:30:69:a2:9f:52:99:70:4d:08:3a:
df:6c:fe:c9:0f:65:f4:4b:df:20:53:b1:79:6c:dd:76:75:81:
af:72:bf:3a:33:3b:57:9f:b7:6b:57:05:76:4d:3a:f7:7b:5f:
f0:bc:d4:f4:61:1c:f3:66:c1:dc:46:0c:97:63:d7:25:f6:3e:
15:61:38:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 09:29:40 2025 by rpki-client