Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.cer
File: Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.cer (raw, json)
Hash identifier: OwjwL4b5KmPbNHw9BgZQtue963R8LV9Vi1p6JFLdstE=
Subject key identifier: 56:1C:7C:CC:52:37:67:87:37:40:92:EA:FA:C2:62:3E:05:71:A8:1E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FCB8BE817796493FD87EB1E8313188
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:48:26 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 25385
AS: 211332
IP: 91.233.183.0/24
IP: 2a09:f140::/29
IP: 2a0d:c140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 23:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:b8:be:81:77:96:49:3f:d8:7e:b1:e8:31:31:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:48:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=561c7ccc52376787374092eafac2623e0571a81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:29:05:d3:05:4d:b9:b4:87:5f:38:e3:b0:40:
06:82:dd:e6:c8:16:d4:ee:d3:04:25:97:e7:40:e4:
43:fd:6f:c3:f7:bc:5a:1e:17:a6:75:aa:fc:7b:f3:
05:b9:ea:ed:f7:73:ab:50:f5:f1:0b:37:54:42:21:
9e:f3:bc:a7:66:ce:b3:64:7c:c3:ed:e5:85:c6:36:
a3:fd:80:c8:d7:07:f0:c7:55:c8:fa:2d:cf:17:b4:
89:56:5a:07:26:87:e0:ba:3d:43:f3:11:91:73:f4:
87:48:ad:61:e7:b9:19:65:f6:3b:e4:50:3d:43:cd:
29:2b:b9:11:69:0b:f4:d6:f1:44:35:4e:fc:0c:12:
a2:03:f8:7c:f0:d7:ed:23:3a:1a:d9:16:59:a0:e5:
4a:13:35:0f:65:e4:cf:5c:9f:e7:d5:10:18:c3:b6:
a7:3c:d0:d8:b2:51:05:04:ea:76:46:72:b9:a2:44:
05:2a:e4:fc:64:ad:34:89:63:73:ab:9b:33:1f:04:
cb:bd:f9:a5:0c:01:91:0d:14:5b:77:fa:48:4c:91:
ca:85:6c:51:f4:4c:cc:35:94:77:04:4d:d3:44:99:
51:be:3b:bf:d6:99:c9:24:46:7f:0e:20:04:26:50:
94:03:e5:19:d6:23:80:87:4b:22:d6:6d:2a:c4:a4:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:1C:7C:CC:52:37:67:87:37:40:92:EA:FA:C2:62:3E:05:71:A8:1E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/dca257-d163-4ed9-94ad-c170091283eb/1/Vhx8zFI3Z4c3QJLq-sJiPgVxqB4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.183.0/24
IPv6:
2a09:f140::/29
2a0d:c140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25385
211332
Signature Algorithm: sha256WithRSAEncryption
84:5c:e7:d0:ac:14:a3:43:c9:7f:46:ee:3e:83:b2:98:07:cf:
09:62:c4:2f:05:88:a8:56:9a:61:f9:97:d0:1f:c1:af:4b:08:
7d:2a:24:da:01:f2:e8:d0:d7:67:9e:90:e1:7f:5b:a9:c9:19:
39:5c:f1:3f:b6:91:68:71:0f:3d:67:b0:06:cf:40:aa:d5:97:
bb:c6:49:30:81:b6:c8:5b:11:5b:75:33:e6:72:3d:a9:3b:b9:
69:cd:0f:7a:67:94:56:2a:0a:f9:0e:c7:db:58:3d:e3:b5:e4:
f5:8e:d6:e0:0d:68:94:18:43:64:f1:15:71:c1:76:cd:f3:f1:
11:8f:09:8d:d1:f3:a0:72:c1:a3:39:ba:91:bf:2f:b1:94:e4:
01:d2:16:08:a9:21:37:f0:39:a5:38:17:e2:02:c6:27:85:c4:
14:bd:05:de:9f:ec:61:3d:53:34:2e:18:61:ed:41:c5:2a:b5:
99:ff:40:aa:e7:29:10:d4:34:2b:b2:bc:ca:64:2f:41:45:1f:
d1:b6:19:29:6f:7e:70:5d:3a:6f:39:f2:1c:6a:98:db:9e:24:
70:aa:0f:08:32:b8:f5:cc:44:fc:43:9f:79:36:1b:23:82:40:
a0:57:17:da:f1:4e:b5:1c:bc:1d:a5:9c:e1:75:15:65:ef:ca:
30:f0:a3:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 08:05:29 2025 by rpki-client