Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V0zsR2DtovCf62939yFCvmmbuMM.cer
File: V0zsR2DtovCf62939yFCvmmbuMM.cer (raw, json)
Hash identifier: kd49z0mHyEeHDGSJ8sh3XnL9k2lNMvXQO/CQWabNyDg=
Subject key identifier: 57:4C:EC:47:60:ED:A2:F0:9F:EB:6F:77:F7:21:42:BE:69:9B:B8:C3
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425218405AEF0E3BCAF2090D7A9D119F9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/V0zsR2DtovCf62939yFCvmmbuMM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:01 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 81.90.180.0/22
IP: 194.76.36.0/23
IP: 194.76.46.0/23
IP: 2a0f:2440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:84:05:ae:f0:e3:bc:af:20:90:d7:a9:d1:19:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=574cec4760eda2f09feb6f77f72142be699bb8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:72:92:14:52:75:e1:0a:e2:bd:11:ff:7a:ca:
8e:42:1f:52:41:3a:04:f6:34:71:b1:6e:8c:0a:3c:
42:a6:4a:d3:df:14:14:d2:df:39:3d:c8:b9:0c:95:
bf:82:57:9a:ce:b8:2a:7e:97:1d:06:ad:b9:1a:33:
2a:68:6c:e0:df:3a:5a:91:e3:d0:33:fe:f6:21:b6:
a3:b5:b5:58:ac:f7:a7:d1:f1:e7:39:d8:81:1f:e5:
1c:2c:fc:31:d9:d9:7e:d0:8b:9c:bf:26:88:00:1b:
44:74:c2:4e:0c:22:e3:fb:1a:43:8b:3a:27:c2:2c:
98:b4:87:c4:e3:11:3d:20:4f:1c:16:57:f3:57:95:
cf:cd:00:88:4e:68:4b:89:0e:0a:2f:24:c8:e2:36:
e4:22:f6:36:3e:58:d8:84:76:bc:b4:3f:c4:f9:8d:
74:8b:0d:20:ad:70:9d:9b:94:44:43:75:f5:08:e9:
29:ed:d1:e7:46:ff:94:60:e6:97:97:12:60:14:23:
0c:e9:bb:de:9d:d5:b8:c0:09:a6:0f:b3:b2:ee:4a:
d5:9f:cc:6a:ac:03:2e:98:e3:32:2c:12:16:c7:09:
41:15:54:0b:a0:95:42:d3:c8:22:72:21:97:89:90:
ed:62:ec:05:02:54:51:f3:55:1f:72:ac:1b:d1:cf:
98:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4C:EC:47:60:ED:A2:F0:9F:EB:6F:77:F7:21:42:BE:69:9B:B8:C3
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9571da-efca-41d6-85f3-d6a99934c493/1/V0zsR2DtovCf62939yFCvmmbuMM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.90.180.0/22
194.76.36.0/23
194.76.46.0/23
IPv6:
2a0f:2440::/29
Signature Algorithm: sha256WithRSAEncryption
08:41:0e:25:3b:a9:b9:f8:27:83:06:51:4c:7e:7c:0a:d9:fc:
73:89:40:09:bb:1d:71:90:96:d0:76:df:d5:24:e6:e0:b0:82:
92:bb:99:2f:fe:e3:f2:95:2f:da:f0:fa:9b:37:27:83:3b:45:
56:fa:f4:69:64:72:26:7d:7e:8c:fb:99:1c:01:86:67:4d:ec:
d9:b8:a4:0e:1f:34:e4:f0:3f:4d:f1:8c:58:16:9b:7f:ad:ab:
76:58:32:40:c3:b4:7a:f4:25:fb:98:c5:2b:8a:0d:ee:36:40:
b0:29:b5:fe:1c:49:f7:4c:08:18:4b:d1:b7:93:da:89:c2:9b:
96:90:34:44:43:c6:1e:7d:86:f9:8a:ce:81:58:4d:4f:04:fd:
33:c9:d6:dc:cc:fe:d7:02:d4:c7:b6:30:db:9d:a0:da:fe:1d:
61:a7:c7:f9:a0:56:24:92:6d:28:55:3e:a4:02:aa:f6:2f:4c:
a2:bd:16:52:58:e6:6f:c7:2f:93:36:be:0a:cf:cf:71:6e:34:
c6:09:3e:57:3c:9b:94:13:cd:57:f6:20:81:1c:7c:06:ea:a3:
20:2e:4a:a4:83:67:42:fc:c6:24:53:c4:b2:ec:e8:e8:8f:65:
8f:02:f1:19:77:f6:54:2c:e2:c6:5c:a9:7e:a7:06:4f:de:0c:
38:40:b4:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:54:03 2025 by rpki-client