Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VW7RG7bV4tam6roZ2vY3tT92ftU.cer
File: VW7RG7bV4tam6roZ2vY3tT92ftU.cer (raw, json)
Hash identifier: x4S7n8dE6juhTHQ3fxUnWEg8cY2j+HqYEXv/sg+q98M=
Subject key identifier: 55:6E:D1:1B:B6:D5:E2:D6:A6:EA:BA:19:DA:F6:37:B5:3F:76:7E:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01946979C4C09B8FF8655867A483EB7900C9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/VW7RG7bV4tam6roZ2vY3tT92ftU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 15 Jan 2025 10:19:35 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 47346
IP: 94.139.33.0/24
IP: 185.29.132.0/24
IP: 194.140.235.0/24
IP: 2a14:1380::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:69:79:c4:c0:9b:8f:f8:65:58:67:a4:83:eb:79:00:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 15 10:19:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=556ed11bb6d5e2d6a6eaba19daf637b53f767ed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:86:ef:ac:00:a0:a6:6c:af:9b:82:fa:1f:22:
b8:d8:c6:c4:25:5a:90:a7:40:80:4e:1f:54:1b:74:
55:44:3d:ec:f1:88:5d:7c:29:ac:07:00:07:91:f9:
2e:c8:5c:08:47:b7:5d:41:89:99:2a:58:da:d6:42:
b6:f2:b3:f1:fb:eb:cf:73:7b:84:9d:59:e1:bd:93:
1a:a2:df:8c:8e:d1:5a:83:4a:95:f6:00:5a:a3:dc:
5c:ae:98:6e:94:0c:61:ed:c5:51:6a:ac:8c:c7:40:
09:5e:14:d2:92:f2:13:f1:c4:e8:96:1c:94:9a:d3:
d5:e8:3d:15:d6:61:b1:25:90:95:c8:18:f1:1b:e0:
bd:93:d2:ab:f9:08:85:53:b1:65:f5:04:b4:f9:a3:
00:1c:43:08:7d:c5:c0:04:57:91:7e:97:c6:71:51:
61:d2:c6:df:86:5c:22:c7:85:05:0b:fb:7f:ec:57:
7f:a5:bf:72:2f:ac:a6:c3:12:2e:88:8a:c8:79:33:
66:8a:5e:e7:80:a2:ec:1a:53:94:42:a3:51:0d:7f:
a0:76:96:43:3e:e7:39:81:69:1a:fc:00:71:62:fb:
38:d9:47:45:14:35:e5:22:3b:ed:1e:38:f1:f4:33:
1e:17:04:d2:7f:3e:82:26:40:56:ba:2e:2f:9c:05:
a5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:6E:D1:1B:B6:D5:E2:D6:A6:EA:BA:19:DA:F6:37:B5:3F:76:7E:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/22bf9f-c0c8-4750-b1bf-1998665bd793/1/VW7RG7bV4tam6roZ2vY3tT92ftU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.139.33.0/24
185.29.132.0/24
194.140.235.0/24
IPv6:
2a14:1380::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47346
Signature Algorithm: sha256WithRSAEncryption
a5:cf:2c:96:7d:5d:6a:b7:15:ed:d5:b1:30:ba:35:7d:25:0c:
fe:b7:45:5e:06:5d:5c:cd:17:7d:a1:f9:75:26:2c:0e:e4:8d:
4a:59:aa:4a:12:e6:37:73:19:35:86:df:bf:87:87:fc:aa:2e:
a9:7a:2a:74:2e:84:fa:44:89:17:0a:96:ab:0f:0c:02:92:13:
3b:a1:97:cc:43:1e:cb:87:be:a0:da:b3:01:44:3d:18:74:c8:
89:6e:ef:e7:b3:5c:db:d7:2f:55:c6:d3:29:9e:25:25:66:b1:
d1:62:c8:d3:e2:36:e6:95:70:bb:6b:39:1b:3f:a9:99:b7:fa:
b2:4d:12:f4:8e:80:25:c3:04:bd:96:06:7c:1f:7c:fc:61:10:
84:e0:a4:b2:87:b0:9a:93:1b:48:1a:9d:8d:1a:34:4b:36:42:
85:35:3a:4b:f4:07:5d:41:57:fd:e7:ea:6c:75:95:33:fc:3a:
ff:8e:a9:4b:fc:ae:d4:61:2f:66:c1:2f:d0:20:11:81:c4:21:
96:fa:a6:0e:bc:bc:f1:ae:23:e4:46:4f:b0:ea:be:d5:f7:c5:
eb:04:14:49:18:6d:13:b4:13:fb:db:35:c1:2d:c2:a8:1d:2c:
9a:76:58:22:cc:f1:c1:d5:fe:5e:68:10:c1:ce:d4:8a:55:80:
ef:8e:24:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:00:36 2025 by rpki-client