Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V0lGcOlW4_sVEZSMWVbipCZ5M4g.cer
File: V0lGcOlW4_sVEZSMWVbipCZ5M4g.cer (raw, json)
Hash identifier: iQq3eZAF8pt9LFe/wV3sGlE1xzif5golUVKB9CQHxE4=
Subject key identifier: 57:49:46:70:E9:56:E3:FB:15:11:94:8C:59:56:E2:A4:26:79:33:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258EE628CC110B07EDE1733F5CDA6B67
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/V0lGcOlW4_sVEZSMWVbipCZ5M4g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:29 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 209336
IP: 193.42.44.0/22
IP: 2a0d:de40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:e6:28:cc:11:0b:07:ed:e1:73:3f:5c:da:6b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57494670e956e3fb1511948c5956e2a426793388
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:41:6d:bd:91:5a:96:1e:2b:6f:95:c9:ef:c2:
7c:22:f3:d2:a3:f5:63:56:6d:61:7c:37:d2:b9:b8:
56:88:f1:b4:14:de:9a:c1:92:f8:8a:7e:1d:68:31:
e0:0e:0d:81:57:38:b0:36:7d:7e:0e:42:bc:28:fe:
0c:0a:b7:b2:1d:77:59:95:52:0b:fe:f3:af:bc:a5:
d0:ed:74:11:b7:85:d2:6e:4b:74:49:19:d9:f6:92:
07:93:c5:37:1c:b3:1b:ff:fd:99:82:cf:33:6e:c5:
a3:24:0b:48:ab:dd:4b:44:62:42:62:ef:ce:e4:47:
2c:5b:24:96:5b:e6:1c:54:16:6a:94:80:fa:22:e8:
7a:45:e7:b6:e5:33:47:e3:22:e5:e6:de:64:cd:a3:
f0:d6:a2:de:af:39:f5:5c:29:79:d8:b6:e5:79:3b:
8f:ed:74:94:2d:e3:32:d6:1b:a6:c3:3b:9b:11:42:
32:1a:46:5b:c7:a3:f9:70:66:14:d2:1b:6d:d2:6f:
f5:39:83:90:43:13:4d:b4:89:fc:e9:86:08:88:0e:
b0:17:0f:71:ce:cb:ca:a1:9f:1a:c3:dc:d9:cb:0b:
57:d0:b7:43:0d:de:56:ff:0c:be:04:40:99:30:d6:
03:05:1f:e0:50:70:9c:e6:68:69:ca:26:d6:e4:6f:
a6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:49:46:70:E9:56:E3:FB:15:11:94:8C:59:56:E2:A4:26:79:33:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/49881e-b0a9-4d5f-b072-a53772b01cb2/1/V0lGcOlW4_sVEZSMWVbipCZ5M4g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.44.0/22
IPv6:
2a0d:de40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209336
Signature Algorithm: sha256WithRSAEncryption
1d:42:c2:43:50:7f:6f:87:99:f5:54:9e:10:9d:b3:1b:c9:24:
0e:45:2f:7e:46:b6:96:7f:b6:24:c6:bb:ed:78:d1:45:1b:ff:
e9:a6:76:10:c9:dc:e0:cf:b2:6b:a0:87:e0:b7:50:d4:ee:44:
ff:7d:40:18:ac:b2:67:2c:a5:35:52:0c:f4:35:c6:80:a2:60:
06:13:c7:10:ec:96:a1:dd:a9:94:56:2a:d3:3f:c1:01:f2:c4:
07:97:64:73:41:be:2f:93:1c:37:dc:c1:77:8a:cc:e6:09:22:
d5:20:e6:4b:87:f5:a0:df:4a:38:54:ad:b6:5a:1e:05:6e:47:
42:bb:e0:45:1c:d9:19:2c:4a:b8:4d:d1:a9:be:8a:44:bd:ab:
1d:0e:af:a3:5e:20:39:c6:2d:b2:d5:8f:16:91:04:f2:40:a4:
8e:ee:65:07:cc:70:aa:94:fe:0b:61:dc:6d:17:ea:cc:38:50:
b2:b7:76:3d:71:16:dd:3f:2c:de:aa:bc:04:0a:86:c8:34:56:
55:b9:dd:14:7f:64:e7:e6:7b:7d:87:f3:ee:58:a7:64:06:b4:
ba:a4:d5:3d:3c:c2:6e:d3:93:92:42:e5:6c:14:c1:90:ba:3b:
8b:73:06:29:36:ea:87:06:69:e6:61:07:14:98:94:0f:7c:10:
75:0a:a8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:05:46 2025 by rpki-client