Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_OoI6EId8vJFx8szPudqFKiILUo.cer
File: _OoI6EId8vJFx8szPudqFKiILUo.cer (raw, json)
Hash identifier: BQ1dRYEZXe2DBQjT5vvnAAqOIQwxmb4IjrPqBuO57XI=
Subject key identifier: FC:EA:08:E8:42:1D:F2:F2:45:C7:CB:33:3E:E7:6A:14:A8:88:2D:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266C0E0041991B9DA7649251DECD2E55
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/_OoI6EId8vJFx8szPudqFKiILUo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:50:03 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 208662
IP: 45.86.104.0/22
IP: 2a0f:95c0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:0e:00:41:99:1b:9d:a7:64:92:51:de:cd:2e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:50:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fcea08e8421df2f245c7cb333ee76a14a8882d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:27:3e:2a:14:c2:e4:24:e3:1c:41:f7:48:24:
84:ab:3f:de:bd:86:ce:b9:66:30:48:eb:64:9c:3d:
50:2d:3a:d5:37:4b:fc:5a:bb:64:5b:74:36:df:f3:
2c:66:33:60:77:a1:48:09:ea:90:c9:7b:de:86:0b:
56:71:00:2a:9e:8f:3e:55:b1:0a:46:c2:fb:5f:d4:
aa:04:89:0a:70:e9:30:02:7f:ba:bf:8a:02:51:e6:
1a:db:c1:1c:1d:e8:4b:90:25:2a:24:ae:83:31:55:
b9:0d:08:f5:38:d4:d9:28:a3:28:a6:91:45:db:b1:
48:34:34:fa:70:50:81:3c:8d:b2:93:0c:6a:24:de:
7e:d2:f1:af:08:3d:fa:2b:f2:32:a7:ff:66:8c:29:
ee:4d:a6:f4:6b:33:43:dd:71:24:31:33:13:12:32:
84:d2:3d:a7:ec:9e:54:57:6f:6f:dd:16:8e:1e:f4:
02:dd:93:60:21:fb:dc:b9:2f:2e:e1:7a:71:ad:3e:
c4:6a:30:05:af:ba:d7:3f:b9:48:7e:2b:c2:23:db:
81:46:05:e5:3b:bd:f0:63:23:e6:4f:a0:c0:bd:d4:
42:5f:c7:f5:58:ed:e0:d6:1d:80:41:8c:fe:1c:00:
13:c7:03:2a:5d:4b:ab:0e:2d:e5:46:14:2e:77:05:
ca:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:EA:08:E8:42:1D:F2:F2:45:C7:CB:33:3E:E7:6A:14:A8:88:2D:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/ea7e61-98b3-4120-83ce-c077e1702bc7/1/_OoI6EId8vJFx8szPudqFKiILUo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.104.0/22
IPv6:
2a0f:95c0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208662
Signature Algorithm: sha256WithRSAEncryption
96:62:30:e9:12:d7:4f:64:dc:1e:d9:33:64:4c:ab:45:32:35:
63:4f:62:50:05:7b:1a:09:54:28:b0:7c:e9:26:81:1a:31:7d:
ca:49:91:fc:1a:8d:e3:b3:64:69:e6:a0:27:e0:f8:39:88:88:
43:cb:d4:78:95:aa:da:dc:0b:33:15:32:1d:de:a1:f4:ab:09:
24:1f:fe:73:84:e6:4c:1f:a7:95:23:fc:24:a3:f9:51:11:e9:
45:68:48:cc:80:e1:40:dd:5b:55:af:e3:d4:c7:68:50:b6:5b:
1b:73:4c:69:14:32:a9:3b:d0:b7:c4:6c:e2:c8:59:6d:39:ce:
de:5f:a9:45:72:74:ef:d4:ec:27:6b:f6:34:6f:4e:b1:a8:eb:
46:3e:4a:ff:22:61:3b:9d:68:81:1d:c1:93:59:32:b6:7e:01:
0e:34:a8:9b:28:38:e7:3f:ce:8f:98:4a:57:11:9f:ee:ff:f6:
40:60:97:34:07:48:60:c9:54:69:e4:a3:b7:96:73:30:2f:a9:
47:cc:6a:f3:ce:1e:8e:cc:e1:a3:f6:e6:0e:4a:d8:56:a8:2a:
df:0f:95:7b:7f:bc:5c:ed:bf:ae:e2:63:37:5d:dd:4f:97:39:
98:5c:94:40:0b:d8:f1:e5:0a:0e:42:0c:dd:4c:62:90:2f:1d:
83:ae:2b:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:18:34 2025 by rpki-client