Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a-pT2WLWegFI5je0tGib5NCEqeU.cer
File: a-pT2WLWegFI5je0tGib5NCEqeU.cer (raw, json)
Hash identifier: fm2XfUFJXjumzdi95w+r2WqtYC0V+l/fbmi6oFMhGhA=
Subject key identifier: 6B:EA:53:D9:62:D6:7A:01:48:E6:37:B4:B4:68:9B:E4:D0:84:A9:E5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194206822ADAB2D5697DF5D6C236068736C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/a-pT2WLWegFI5je0tGib5NCEqeU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:48:03 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201060
IP: 185.36.103.0/24
IP: 2a10:7c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:22:ad:ab:2d:56:97:df:5d:6c:23:60:68:73:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:48:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6bea53d962d67a0148e637b4b4689be4d084a9e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c9:31:b9:a5:cc:11:fa:06:c1:9d:80:58:cb:
2c:91:b1:b1:83:fe:b2:a4:ec:f7:67:b6:81:b5:14:
02:7f:76:f3:93:61:6e:bc:92:e7:28:43:10:58:4a:
e2:2c:8b:28:e0:d9:67:bb:9a:16:a8:f3:0b:6c:1b:
5b:11:c7:61:4d:0f:e1:d9:ef:ad:e4:ec:d5:e8:4e:
97:ea:71:2a:51:67:88:ed:51:9d:79:a7:48:41:17:
38:3c:ce:ec:29:65:1e:51:22:5a:66:8f:8f:8b:38:
39:e3:5e:86:23:81:0b:c5:78:73:ca:27:91:b3:f9:
60:5d:94:da:a0:a0:b7:b9:96:7d:98:0e:c5:51:d3:
0b:43:22:01:b1:1f:17:e9:09:00:0c:16:d1:42:0b:
88:8f:0c:29:39:e6:f9:7b:96:87:9d:f1:27:8a:44:
47:a3:a7:f4:91:c4:7b:b9:c8:c6:de:69:73:3d:bb:
93:20:41:93:cb:c1:4e:9d:84:7a:e8:e9:5a:07:7e:
96:1e:01:25:e3:02:6b:6d:37:95:a0:65:83:54:74:
ed:1e:3b:6c:3d:ac:8c:cf:1a:18:2e:25:e3:f0:e1:
08:54:f0:47:05:11:df:79:11:c4:dc:1e:9c:11:f4:
7f:89:8b:29:65:8d:94:fc:d0:ea:3a:ef:99:ca:ac:
ae:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EA:53:D9:62:D6:7A:01:48:E6:37:B4:B4:68:9B:E4:D0:84:A9:E5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9c8571-c9d7-4550-8841-e20b7e679622/1/a-pT2WLWegFI5je0tGib5NCEqeU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.103.0/24
IPv6:
2a10:7c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201060
Signature Algorithm: sha256WithRSAEncryption
4c:f9:46:55:be:38:a6:a3:a9:98:62:11:8b:56:2e:ba:1c:f5:
1f:d9:0f:e3:67:e4:3c:fc:26:c8:63:2b:19:85:b6:7b:19:85:
67:99:39:9e:1a:38:65:20:47:5a:e0:93:3d:f3:36:4c:27:47:
ba:04:90:d9:b9:86:7c:11:e3:60:51:63:05:e3:8b:d7:14:0d:
b6:83:af:45:1c:34:1e:5e:c1:c0:c1:d6:40:93:ce:b4:e8:38:
fb:82:f2:73:33:5c:8b:05:f7:cc:b7:0c:6c:a8:5c:9b:65:2c:
ff:62:07:f5:5c:38:93:5e:fd:af:7f:78:a8:7b:3e:f8:8d:c0:
62:7e:73:40:20:bf:a2:af:60:3f:b2:64:70:a4:8c:5a:46:32:
15:a0:60:1e:11:85:df:87:ad:77:24:ec:95:74:28:90:23:2d:
78:cb:50:55:e9:7b:67:23:1e:d2:6e:b7:99:40:c3:fa:a7:0e:
9a:2c:78:8c:3f:4e:28:3f:88:73:41:5a:71:af:b9:6e:6e:d2:
26:eb:76:d8:00:0c:3c:29:93:71:d3:d2:0b:4b:ab:ca:37:48:
35:64:aa:7e:84:1a:48:36:1a:a7:40:35:ae:6a:e9:ec:d4:ce:
84:a3:47:51:a7:8e:20:7d:f8:15:09:18:ac:6f:ee:a6:75:e0:
10:1a:e9:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:49:32 2025 by rpki-client