Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VvAaHpnqXU85lNMzCdCUMS3IVCc.cer
File: VvAaHpnqXU85lNMzCdCUMS3IVCc.cer (raw, json)
Hash identifier: 4tHkk9jRRMplp5sU+f4Y5zCQhbsxM+HDiO1u7aRjFQw=
Subject key identifier: 56:F0:1A:1E:99:EA:5D:4F:39:94:D3:33:09:D0:94:31:2D:C8:54:27
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266B33F3F1E93D215BB47AABAFD93D82
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/63/9b50bf-4fbf-4680-8328-130f7f38f537/1/VvAaHpnqXU85lNMzCdCUMS3IVCc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/63/9b50bf-4fbf-4680-8328-130f7f38f537/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:49:07 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203128
IP: 185.246.48.0/22
IP: 2a0d:7a80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:33:f3:f1:e9:3d:21:5b:b4:7a:ab:af:d9:3d:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56f01a1e99ea5d4f3994d33309d094312dc85427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d7:94:63:c3:6f:4e:17:53:c5:6a:10:45:05:
ba:2b:23:58:26:e9:fa:7d:56:e4:a0:f4:9d:06:3b:
81:b2:ec:5b:09:d7:59:56:a0:d9:3d:c6:97:da:3c:
e5:19:15:81:f6:3c:6b:06:6a:51:ad:9d:56:cb:7a:
68:22:2b:03:6c:f7:9c:5c:f7:f5:b3:79:b5:a0:4a:
41:bc:be:34:21:39:95:32:0d:d9:f5:6a:b1:7b:1c:
48:52:07:36:88:d7:58:6e:8b:70:e5:2e:68:76:79:
f7:3d:c9:c2:fc:26:41:52:06:33:bf:d0:10:94:1f:
2f:25:02:02:94:37:c9:79:b2:da:5e:8a:a1:c3:c1:
11:00:60:0b:ea:ce:e4:74:25:56:d2:3c:8c:be:9a:
bc:eb:51:01:7e:d5:5d:99:49:c8:cb:43:4e:7d:bb:
d0:41:e9:14:09:93:b7:f8:6a:e0:85:94:11:c7:2f:
44:1a:bc:7c:fc:88:39:07:6b:45:58:63:20:c1:a5:
cf:ab:24:9c:39:27:7c:d7:e0:94:75:61:9a:2e:8a:
21:28:6e:31:f1:ba:c5:b0:51:f9:cd:f4:bf:fb:46:
c9:4d:62:66:1a:19:07:6d:06:50:13:aa:44:cd:74:
61:2a:f3:23:cc:8f:a4:b0:a0:49:8e:24:45:70:94:
a7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:F0:1A:1E:99:EA:5D:4F:39:94:D3:33:09:D0:94:31:2D:C8:54:27
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9b50bf-4fbf-4680-8328-130f7f38f537/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/9b50bf-4fbf-4680-8328-130f7f38f537/1/VvAaHpnqXU85lNMzCdCUMS3IVCc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.48.0/22
IPv6:
2a0d:7a80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203128
Signature Algorithm: sha256WithRSAEncryption
93:db:6a:25:5e:3a:50:fa:33:07:72:18:a4:ec:58:3e:51:b5:
59:56:a4:f3:57:ad:df:1e:89:8e:3a:4b:d3:53:2c:27:97:bd:
a1:40:67:4b:94:8a:4a:e3:11:e3:05:3c:ac:7e:3f:e9:f2:15:
d7:4d:0b:93:7a:4d:96:d9:25:57:d1:a5:69:b0:f0:b2:d3:c0:
b8:07:36:e9:b1:56:2a:28:39:1b:fb:b3:1e:d2:a1:8a:fd:99:
6e:67:42:5d:5b:7f:dc:7c:e9:c9:e4:5f:23:6c:6c:6d:b6:a0:
98:18:9b:05:ee:f8:ec:97:fc:4b:9e:5a:1a:44:5d:73:cb:6a:
e6:1c:40:80:22:b5:7f:0d:10:84:e0:a3:9f:5c:b7:57:2b:68:
22:9b:dd:fa:2a:d9:17:8b:41:c1:38:f5:7b:c9:c2:a3:1e:f9:
92:db:41:43:65:4e:72:ec:c2:c2:9f:26:76:2d:75:63:f7:63:
53:90:19:a7:ce:f3:5c:0f:76:f6:1b:f5:b9:36:66:0f:16:85:
36:ed:9b:fe:50:07:54:25:03:15:30:74:0d:48:c3:b8:3e:da:
9c:5c:6e:54:e6:d7:a6:3c:56:78:a1:9b:cc:cd:86:09:33:d6:
56:a3:8e:8c:5e:75:5e:ff:99:11:cc:8b:06:e7:4a:a5:b0:fd:
81:2f:1f:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:02:00 2025 by rpki-client