Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer
File: Y3EE2Sfn4e-P67_93ygUVJUBEJQ.cer (raw, json)
Hash identifier: Dqthn9YMqFhfOMMwsqjaHewaSKxceRM5F/QeK7Cg0GU=
Subject key identifier: 63:71:04:D9:27:E7:E1:EF:8F:EB:BF:FD:DF:28:14:54:95:01:10:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942067F5809A269020E27116755E9CE5EA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:47:51 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 198975
IP: 91.240.130.0/24
IP: 91.240.136.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f5:80:9a:26:90:20:e2:71:16:75:5e:9c:e5:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=637104d927e7e1ef8febbffddf28145495011094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3e:19:1c:ef:6e:bb:0c:ae:4d:3d:d6:ee:9a:
88:80:48:f4:b4:c5:9c:c3:4b:1d:7a:c0:b1:3d:d9:
c4:70:9f:7c:38:af:f2:f0:7d:07:fd:ce:35:c0:73:
5e:e7:02:0e:42:38:ea:b4:3c:c8:da:dd:b5:93:c6:
2d:54:a2:c1:1d:90:04:c3:16:21:2c:98:b6:66:cf:
1a:df:e7:41:fc:ab:00:8d:ef:e4:05:f7:9a:7a:7e:
60:66:55:cb:0d:ed:95:9c:18:2f:ea:a9:fa:d7:19:
a1:d3:e6:8b:1e:db:c3:ec:da:b2:da:da:49:7f:9f:
1f:83:4f:83:0c:71:81:6a:d6:b0:1d:be:77:8a:e0:
43:de:d3:52:08:9a:c9:e3:b7:ff:73:db:21:02:26:
ac:23:35:60:f6:74:e1:1e:ad:3b:b4:f3:7f:2c:fa:
9d:97:af:d9:ef:a3:b3:8c:b0:65:e7:64:d8:09:ab:
b9:20:8d:9c:11:e3:1b:e9:11:c6:a1:67:56:8e:e3:
a0:fc:d1:01:7e:ec:7f:c2:f8:6f:0b:2d:fb:4b:6d:
55:87:8a:72:6b:bf:96:88:44:71:98:f6:86:87:80:
b6:bb:a9:9d:51:d8:81:12:3e:ff:e0:ad:f3:c5:35:
5e:9c:46:c6:0f:77:fa:01:6b:0a:30:06:76:b8:21:
23:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:71:04:D9:27:E7:E1:EF:8F:EB:BF:FD:DF:28:14:54:95:01:10:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dd1ddf-73cf-4bb2-8a6e-6e4aec86fe1e/1/Y3EE2Sfn4e-P67_93ygUVJUBEJQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.130.0/24
91.240.136.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198975
Signature Algorithm: sha256WithRSAEncryption
7e:58:3a:97:c3:49:ef:31:06:70:47:70:73:b0:b3:d4:6e:8c:
8e:39:fe:ad:7d:50:f4:c8:90:50:d7:e7:48:36:2c:75:dc:1b:
3e:65:43:1a:a6:81:0c:5f:af:ca:19:86:95:bf:eb:7b:54:1a:
df:b4:30:36:0f:b5:c0:f5:e7:5e:5a:14:4b:4d:59:e6:b9:27:
51:ce:2b:fa:67:cd:7d:e6:95:b3:48:a9:54:a2:1f:06:83:17:
c7:ab:4c:81:73:14:b4:a6:04:77:59:4e:ac:22:7e:ff:91:0f:
06:19:0c:9a:1c:da:0c:64:2d:2a:aa:26:ed:38:f0:a2:14:f2:
c4:42:58:e5:c4:14:02:7f:f7:5c:0a:6b:9e:eb:61:e9:95:28:
f3:05:d1:d1:27:de:a7:ee:bc:e5:bd:e4:83:7e:da:f2:5c:64:
47:3f:f4:1c:80:33:10:3e:d7:f8:4a:15:65:77:04:ef:ed:d4:
48:1e:70:b6:60:ee:8e:e0:06:8c:1c:78:53:50:55:00:51:eb:
7a:e5:f9:63:e8:b6:6d:29:5a:3e:eb:bd:c0:c1:a2:7b:be:af:
c6:16:f2:53:df:aa:e0:d5:a8:96:b3:f7:d6:be:66:c0:30:8e:
d1:d0:ae:b1:e4:48:24:9d:f2:32:cb:c5:36:34:92:7d:dd:44:
2a:e6:02:e9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:00:44 2025 by rpki-client