Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.cer
File: YUyg0Ju9BfS4qKwwoyn2cVEQdYw.cer (raw, json)
Hash identifier: S12QwA8Hin4OSCx68/P/Aq1/KdlFoBnadcww971yFmU=
Subject key identifier: 61:4C:A0:D0:9B:BD:05:F4:B8:A8:AC:30:A3:29:F6:71:51:10:75:8C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA2BAD46BA0B9BBF76AC24EC46E58F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:47:56 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210513
AS: 215801
IP: 62.3.56.0/24
IP: 185.65.255.0/24
IP: 2a12:100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:2b:ad:46:ba:0b:9b:bf:76:ac:24:ec:46:e5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=614ca0d09bbd05f4b8a8ac30a329f6715110758c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5e:14:65:ff:98:20:95:d6:1b:ce:c0:13:15:
35:13:3e:a9:fb:89:f3:1d:96:01:3b:48:25:47:b8:
09:a6:f0:60:3d:61:c7:e4:6a:b6:b4:d8:29:62:6a:
b5:c5:17:cb:24:ed:de:01:03:ca:b5:28:a4:5c:c8:
dd:59:d1:5e:86:0b:b9:1c:d5:85:93:70:c2:71:5e:
bc:9f:52:4d:bf:b9:85:77:98:9e:cc:2f:3f:81:f4:
e4:64:85:c6:44:c1:28:90:2b:02:b1:68:54:dc:48:
ee:3a:e4:9d:83:df:14:9a:82:52:ed:63:b4:7d:ff:
b0:2c:5a:7e:27:51:89:66:0a:53:5a:cd:0c:33:5f:
1a:1c:b1:58:2b:ac:8b:0b:42:d6:fa:32:15:9a:03:
0d:8c:88:3c:ee:60:c6:f3:9c:03:f3:0a:fe:c5:ea:
d8:d9:81:81:8d:10:d1:38:f1:47:ea:50:15:19:c0:
22:43:78:98:5f:d4:e5:88:a4:9f:2b:b1:9f:75:88:
85:d9:12:44:8d:77:bd:e2:b7:a2:b0:4a:e9:17:d2:
07:4c:5e:ef:09:b7:da:25:70:d4:31:75:b5:3b:a3:
30:21:8d:2c:a2:ef:f6:8e:69:f8:21:33:50:17:6b:
4c:5c:6e:12:66:53:27:f2:75:7d:03:ee:b6:da:fa:
9b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4C:A0:D0:9B:BD:05:F4:B8:A8:AC:30:A3:29:F6:71:51:10:75:8C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4786c2-11a1-48a4-ba80-7944976599d8/1/YUyg0Ju9BfS4qKwwoyn2cVEQdYw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.3.56.0/24
185.65.255.0/24
IPv6:
2a12:100::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210513
215801
Signature Algorithm: sha256WithRSAEncryption
73:0d:8b:f6:a0:08:28:28:63:b7:a4:85:9c:6f:c5:0a:2b:3f:
07:9d:b9:0e:26:c5:62:c9:6c:e2:1d:9f:8c:99:66:02:73:57:
ec:0b:3d:39:76:b3:2c:97:eb:53:0d:a2:ac:6f:e4:2f:1e:b0:
06:68:7d:75:c7:8b:48:f5:64:6c:2a:bb:ec:51:08:f4:aa:c2:
89:69:8f:35:34:ae:e5:35:43:83:b2:3a:f0:c8:ec:c5:2b:47:
b3:04:ef:fe:62:e7:bc:54:f9:52:1c:d2:0f:55:ce:3a:86:e6:
eb:46:48:68:02:4f:44:78:6d:ce:b3:ad:52:e7:2b:2c:b9:75:
37:ba:2d:28:7e:cd:5a:88:a1:72:48:2e:5c:da:c7:c3:22:3d:
37:33:be:1e:2a:f1:55:00:16:0f:31:86:d5:a5:1e:b1:c4:fa:
eb:d2:e3:bc:fc:50:0f:d5:7e:8e:14:4a:6a:2b:f5:15:a3:1c:
2d:19:4b:14:8f:05:13:2f:4c:df:8a:4c:c6:06:b7:a4:b9:29:
db:ff:d6:cb:bb:74:57:a1:40:9b:b6:94:f0:ab:50:d6:e1:24:
13:03:87:db:bc:a8:fb:e0:13:ca:93:0d:c3:44:ec:8d:ce:f3:
d4:e1:91:8a:e8:b5:75:3c:36:f1:38:35:30:f6:67:cf:ac:f8:
f0:82:44:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 00:14:28 2025 by rpki-client