Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/X8IN7HFLtUY7Fk4VpfihOYolUF0.cer
File: X8IN7HFLtUY7Fk4VpfihOYolUF0.cer (raw, json)
Hash identifier: KfyEoOB/jYG8gw0CC0qJJNANuJnDex9Xvtooy0HT6Go=
Subject key identifier: 5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D968A8029E0D6EE50E945A6A57BB37
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:29 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 47539
IP: 93.95.27.0/24
IP: 2a13:d440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:68:a8:02:9e:0d:6e:e5:0e:94:5a:6a:57:bb:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:29 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5fc20dec714bb5463b164e15a5f8a1398a25505d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9b:fa:fe:a8:b9:32:fc:cd:85:a4:f4:5a:76:
00:5e:6f:5e:a9:f6:7c:c7:58:8e:d9:b5:92:80:3b:
d4:87:9b:bb:4c:4e:08:99:da:3c:86:fd:d3:83:cc:
91:92:02:be:61:61:81:7e:a1:a4:0d:d4:3f:df:e5:
19:5f:a3:15:0b:e0:b3:c4:1b:73:48:60:24:20:7e:
a5:e1:a3:62:88:8e:4c:4c:4c:7d:b8:a3:53:75:31:
35:18:77:ce:86:68:ad:e2:a1:6c:d4:a4:b0:5f:7d:
34:67:0d:56:e1:12:93:10:a1:61:ce:4d:56:2c:3e:
5c:de:5f:de:f9:2a:6f:14:7e:d1:49:40:cf:3e:41:
ee:a0:85:53:63:04:ea:ea:0a:82:75:6d:cc:66:aa:
b3:82:65:5a:c7:28:3d:fe:84:03:39:e0:7e:a3:9a:
c0:75:bc:27:3f:7a:42:90:6a:ac:81:b9:ff:01:24:
1b:de:8c:73:4c:97:d1:b2:7c:f8:db:56:77:b9:e2:
a1:21:0d:58:28:92:ac:f1:37:15:8b:d1:2b:ec:15:
ec:54:94:ff:10:66:e4:ea:7d:f7:34:10:ee:97:7e:
21:4d:7c:61:a3:38:59:43:91:8c:ed:99:5f:2f:6e:
0b:5b:46:56:78:4f:1e:8d:0a:ad:4a:e9:fd:d4:8c:
8f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C2:0D:EC:71:4B:B5:46:3B:16:4E:15:A5:F8:A1:39:8A:25:50:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/6797a5-5410-4c0d-b9b7-d99b9f48d0dc/1/X8IN7HFLtUY7Fk4VpfihOYolUF0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.95.27.0/24
IPv6:
2a13:d440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47539
Signature Algorithm: sha256WithRSAEncryption
3f:00:cc:72:c3:2c:9a:01:87:ad:b8:51:67:04:b5:1d:28:f2:
c2:b0:4d:e3:ab:bd:a5:7b:f3:d7:f9:66:9a:db:2d:1b:24:fc:
7c:72:4a:23:49:73:8c:02:58:39:44:de:91:5b:aa:55:28:58:
c1:54:86:ca:d2:71:6a:14:bb:65:5e:9b:19:e6:ed:34:d8:a2:
a0:5b:30:87:13:1a:d1:15:7e:bf:81:79:21:3c:f7:18:43:d7:
65:59:93:b6:e3:e9:b9:80:2f:57:31:98:23:b1:34:a9:87:d2:
98:4f:88:98:39:e1:fd:60:53:f2:a4:43:76:06:1d:1f:66:e9:
d9:c7:63:97:6b:15:2b:9f:26:d3:bc:36:8d:29:75:3e:89:d2:
23:09:29:59:b0:0e:14:58:03:5c:55:04:bb:fb:77:7c:b1:4f:
4e:72:1c:e6:fe:89:1f:cb:42:34:75:ec:03:38:fe:2e:14:ba:
26:cb:5d:41:9d:dd:13:73:73:cd:d9:0d:11:d6:23:c3:a0:ac:
4d:e0:cb:a6:81:16:a0:b3:c7:67:b4:77:ce:da:ae:11:98:ca:
3f:c3:9b:e8:fa:8b:60:7b:6b:00:c1:66:24:fc:87:f1:19:4e:
07:47:12:96:2a:6f:d0:db:20:cd:99:ec:9c:f4:ed:89:fc:c6:
d9:90:2c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:00:32 2025 by rpki-client