Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/V7DWfEnsEvT1QXA49twTwvk-p2U.cer
File: V7DWfEnsEvT1QXA49twTwvk-p2U.cer (raw, json)
Hash identifier: KKw04DJnvdAcJ0Yo4sicHZ5s/EHVbCwK65DxoELxmtI=
Subject key identifier: 57:B0:D6:7C:49:EC:12:F4:F5:41:70:38:F6:DC:13:C2:F9:3E:A7:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420681A0A68DBB932AC23A851CEE7846B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/851657-044d-47d3-afc9-c3a8375f90f9/1/V7DWfEnsEvT1QXA49twTwvk-p2U.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/851657-044d-47d3-afc9-c3a8375f90f9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:48:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49494
IP: 193.169.76.0/23
IP: 2001:67c:1ba8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:1a:0a:68:db:b9:32:ac:23:a8:51:ce:e7:84:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=57b0d67c49ec12f4f5417038f6dc13c2f93ea765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2b:41:89:15:e9:69:b0:e5:6f:41:30:19:6e:
aa:9e:ee:b5:ec:99:23:7c:ff:27:37:11:0a:9e:f8:
c4:1a:97:5a:d9:d3:fc:af:6e:c5:ec:c7:cc:71:08:
3b:2c:61:e3:6d:a3:23:57:2b:cc:8f:08:c1:f6:10:
5e:67:71:e6:42:0e:fe:8d:99:cc:24:dd:35:35:ad:
20:3a:8e:3b:9f:35:ac:68:2a:bf:e3:d6:68:cb:b9:
3a:e6:4e:10:4c:24:23:95:71:7d:43:73:22:80:99:
01:76:fa:91:3c:54:62:87:03:ba:7a:14:c8:e8:ee:
4b:bc:75:bd:a1:d1:98:ef:cc:c4:68:9e:f9:a3:9e:
32:be:90:98:f0:6d:84:3e:f9:fa:f3:95:6e:58:e6:
b2:bc:b8:a1:ef:15:3a:d9:ab:5f:3c:c9:26:ab:04:
25:a7:37:00:f3:eb:03:ed:0e:66:ac:0b:ed:44:c7:
03:5b:63:c7:98:c6:09:0b:e3:3d:f2:64:61:1a:d6:
e8:27:a9:6a:ba:66:cb:f0:ea:be:d7:55:75:12:9a:
b9:7c:55:e6:53:81:89:64:85:f5:e6:cd:55:37:7f:
c7:b3:64:0e:10:9e:0c:4d:7e:b7:68:b8:3d:a8:60:
b5:b2:76:d3:34:3a:fe:94:f4:ac:12:df:b8:a7:ca:
ae:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B0:D6:7C:49:EC:12:F4:F5:41:70:38:F6:DC:13:C2:F9:3E:A7:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/851657-044d-47d3-afc9-c3a8375f90f9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/851657-044d-47d3-afc9-c3a8375f90f9/1/V7DWfEnsEvT1QXA49twTwvk-p2U.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.76.0/23
IPv6:
2001:67c:1ba8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49494
Signature Algorithm: sha256WithRSAEncryption
a7:4b:61:e8:ba:db:9a:5c:c0:32:85:9f:84:2a:de:c3:a9:9f:
01:d6:f9:13:55:72:4c:8e:02:e5:23:35:dc:4a:e5:e7:27:21:
af:1c:d7:8e:87:7d:28:9f:40:75:90:ac:0e:26:cf:5a:6b:78:
ac:5a:c1:c6:0c:44:55:29:79:71:27:ad:05:92:36:f9:29:da:
01:c9:ff:76:7a:d8:7d:2d:9c:1e:a2:ff:e7:c2:c2:68:82:ae:
d2:c1:33:66:c8:23:2b:b8:11:8a:87:ce:64:a9:ea:96:76:cb:
4e:47:c6:6d:1f:06:f2:bb:90:3d:4e:2c:19:8b:ce:3d:c5:7c:
df:c7:92:c2:b1:cc:4d:fb:e8:6d:61:5e:73:25:64:be:0d:0e:
1a:a5:b3:c5:c1:65:da:7b:88:7a:4d:11:2e:eb:07:7c:41:06:
e6:22:4d:bc:90:45:2e:f1:c4:f4:47:d6:db:2e:4f:64:78:91:
9f:b0:8d:1f:c1:12:d0:b0:c0:f9:f8:0f:a9:10:70:38:cc:15:
84:a9:ae:b1:c7:c4:1f:bc:ca:06:de:98:02:08:1f:10:b8:65:
7e:1e:05:ff:ee:72:a9:14:36:f2:fd:89:50:fd:7e:de:33:f1:
0b:f4:29:0d:32:44:ca:39:c7:f8:85:b0:7c:0e:f6:88:6f:b9:
88:36:6e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:44:42 2025 by rpki-client