Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
File: aNogbIPVBeJUs-88dlD5-5NFNDU.cer (raw, json)
Hash identifier: m2mo30zmXkM4Wq/c79w5U6eGImdFLPpqbSuJrlYSqn4=
Subject key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D701FD4515D90AF35367ABCC289B34
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:48:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 185.73.32.0/22
IP: 2a05:3f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 08:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:01:fd:45:15:d9:0a:f3:53:67:ab:cc:28:9b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:48:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68da206c83d505e254b3ef3c7650f9fb93453435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:67:7b:7a:ca:df:de:63:45:7d:59:52:cd:86:
29:43:64:cd:a7:56:d9:6b:71:39:99:5a:d3:a4:01:
b0:5d:b5:7f:b0:5b:d3:92:30:87:cc:72:45:d5:c4:
dc:a0:08:4e:83:a9:fd:13:c4:47:20:0f:97:00:94:
4a:df:62:b7:b3:2c:3c:4f:85:3c:d7:e2:c7:c6:2c:
10:e9:d6:1a:2a:af:30:e5:ec:67:89:f5:12:33:36:
c6:1b:39:58:a1:5f:66:74:94:e8:15:83:c5:92:94:
38:8c:46:13:7a:4f:7d:b5:0c:05:02:09:da:c7:c2:
38:24:7c:53:a4:7f:42:cc:95:b9:36:89:0b:d8:cf:
83:d7:7e:aa:c9:b4:6b:25:12:26:3e:1c:7a:21:24:
a5:7f:a5:f7:99:7d:15:df:d0:85:66:26:ce:ca:f2:
06:59:93:7a:25:48:d6:dd:21:63:ee:e2:3f:1a:00:
1f:ae:c2:74:e5:27:2a:5e:90:f8:63:8b:1c:b0:27:
f7:dd:19:49:2b:f1:5c:4b:bb:ca:1f:cb:e6:1e:51:
87:13:95:a7:80:d8:78:09:fd:df:45:e1:94:6b:76:
80:69:3e:cb:d2:38:d0:e5:0d:7b:16:fb:11:5f:e4:
a3:ea:6e:8c:07:f3:e2:c1:48:0c:a4:a3:e4:af:bf:
f1:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.32.0/22
IPv6:
2a05:3f40::/29
Signature Algorithm: sha256WithRSAEncryption
80:5f:51:e0:36:98:68:93:fb:97:a7:c1:c7:db:2b:0e:7b:a2:
7c:66:f7:aa:73:d4:88:29:e9:04:b2:9c:d8:1f:18:59:60:c6:
9f:be:d1:7d:f6:ec:4b:29:8f:a2:e5:7f:2e:b0:56:f2:1e:cb:
24:7f:4c:34:7c:6f:1e:5e:42:e9:61:c9:f4:9f:9c:7b:f3:9f:
e6:ba:6b:0e:ee:f0:16:33:1c:b3:2d:b2:85:b7:3a:4b:df:46:
24:d6:19:24:7b:65:20:1e:30:f0:53:48:81:a7:8b:1e:b5:ed:
a4:62:57:a6:31:54:92:5d:80:18:b2:62:32:87:76:20:9f:6f:
ea:b8:2d:3a:b2:04:a2:30:82:31:59:d7:d7:d1:f3:0b:5f:d1:
a4:e9:69:70:e1:c8:b5:c2:e6:dc:e4:57:3a:59:c0:34:c0:38:
1b:9a:1e:0f:86:2e:5b:ad:f7:6f:f4:c1:70:26:88:cc:3a:69:
9a:61:d1:35:31:cc:3f:c2:39:f7:c1:16:a6:71:a7:8d:5a:62:
33:e3:09:85:62:2d:90:05:9e:51:d8:e5:f8:17:d2:09:26:b8:
83:39:c8:b8:cd:9f:5e:b6:27:79:ff:12:7f:a4:36:f0:c5:da:
8c:42:38:f4:11:36:2e:db:93:87:dd:9c:54:53:98:8b:60:bd:
1f:a5:a4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 16:20:02 2025 by rpki-client