Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VTynsubB4X9fPtvjdeGezjlTORA.cer
File: VTynsubB4X9fPtvjdeGezjlTORA.cer (raw, json)
Hash identifier: XQgO5CkKpaiCWWSzPGd9elGpMXW0Zs/1CRhuW+CveJo=
Subject key identifier: 55:3C:A7:B2:E6:C1:E1:7F:5F:3E:DB:E3:75:E1:9E:CE:39:53:39:10
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427488319E78E9021A2FC6DFCE0BB972D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/VTynsubB4X9fPtvjdeGezjlTORA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:50:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49318
IP: 46.28.248.0/21
IP: 188.93.176.0/21
IP: 194.110.124.0/23
IP: 194.110.130.0/23
IP: 2a00:1d90::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:83:19:e7:8e:90:21:a2:fc:6d:fc:e0:bb:97:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:50:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=553ca7b2e6c1e17f5f3edbe375e19ece39533910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:af:73:27:4e:26:bd:4f:de:22:01:e1:8d:e3:
b7:3f:3c:2c:8b:58:d3:07:c6:c4:b3:5d:3c:53:ca:
34:b8:d0:0f:ab:94:77:50:a8:71:a7:c2:be:06:e4:
37:bc:89:56:59:c0:22:14:a6:67:10:9b:32:2c:55:
fd:de:f2:64:f6:ab:35:a4:93:f0:8e:53:62:a2:ea:
6b:4f:a8:06:e0:57:52:ad:36:9e:a3:92:a5:06:fc:
ec:ac:8d:f9:4d:94:cb:24:2e:00:b8:2d:a6:8a:ca:
06:e5:5f:b2:e1:b7:ea:e5:f7:08:f7:6b:60:80:d3:
5a:5c:13:69:6b:1e:d7:ca:cc:09:dd:8b:a1:4c:fb:
fe:6d:99:af:53:3d:ed:72:27:e5:40:ee:b1:27:f7:
42:09:2b:b4:08:db:8e:1e:36:06:fd:9d:50:a3:9c:
88:90:be:5e:e1:33:46:8d:a8:17:16:5e:07:e8:a9:
a0:a2:05:3d:07:d0:fe:02:04:12:f1:c6:1c:8b:ad:
09:fe:af:31:8e:5d:37:60:13:0a:40:10:d6:e1:84:
80:a4:e7:d7:39:c9:14:e4:b7:94:f5:cc:c9:96:ab:
f5:00:d4:67:c6:e7:5f:03:78:46:70:03:da:c8:75:
ba:27:25:e3:73:a8:c8:ee:dd:a0:8c:c3:31:f0:de:
47:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3C:A7:B2:E6:C1:E1:7F:5F:3E:DB:E3:75:E1:9E:CE:39:53:39:10
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d572c3-350f-479b-a7b3-153e9182af41/1/VTynsubB4X9fPtvjdeGezjlTORA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.28.248.0/21
188.93.176.0/21
194.110.124.0/23
194.110.130.0/23
IPv6:
2a00:1d90::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49318
Signature Algorithm: sha256WithRSAEncryption
17:b3:be:3b:90:90:92:b6:1d:a1:ee:fc:51:97:2b:f5:f9:95:
cb:8a:38:66:ad:2e:5f:ff:d3:0e:8b:3e:58:8d:27:a6:b4:6e:
a8:8d:22:26:88:bb:32:a6:a3:06:34:48:77:f8:dc:aa:b5:aa:
01:a4:94:09:45:65:74:b0:fd:2b:90:54:ef:81:9a:71:ce:2e:
1b:38:e0:c5:a2:39:70:59:9f:94:7f:51:00:48:ad:d9:0c:bc:
86:77:de:9d:bd:54:5b:b2:86:1d:27:e0:be:b4:c9:71:0e:ca:
bd:d0:3a:7c:19:ed:7d:f7:72:c3:c1:23:df:eb:6a:e0:ab:31:
a0:ae:a1:8a:c2:26:10:a6:14:f6:7b:ad:ac:d7:fd:ce:c3:c5:
0a:db:53:e4:a6:5f:4c:1b:8a:cb:5f:47:46:5e:99:80:c0:87:
bf:ce:72:a8:aa:0c:e4:29:73:50:32:0c:b5:2b:54:7e:92:0a:
80:67:12:17:97:e6:61:23:fb:ca:a0:f3:4b:cf:0d:97:81:fb:
07:82:5c:07:52:37:83:73:ab:7b:2f:e5:d1:d3:7d:3e:82:ec:
68:b1:b8:72:49:13:6b:b0:a5:fc:3e:e6:e8:d1:4d:ed:2a:0d:
68:a7:4d:c3:9b:94:8e:e1:34:67:d5:1b:82:ba:96:f1:b6:3a:
60:36:66:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 23:15:08 2025 by rpki-client