Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer
File: aeOtiwIkUhzQrnSSxpS8LU7h_bI.cer (raw, json)
Hash identifier: tUxvsKL1TYEpG/BHQBWbNSCV55jzg0ARqte8xGetpYk=
Subject key identifier: 69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266B4E9767B570E0B78470B94047182E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:49:14 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203104
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:4e:97:67:b5:70:e0:b7:84:70:b9:40:47:18:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:49:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=69e3ad8b0224521cd0ae7492c694bc2d4ee1fdb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e7:97:6b:11:7d:43:8e:a2:7f:5a:93:66:ac:
fc:10:43:3f:da:98:19:03:41:84:e1:72:fd:80:36:
2a:9a:74:a6:24:b6:19:f4:1b:37:2d:65:0a:54:55:
ec:44:ef:20:09:b4:80:98:17:63:c0:99:8b:83:87:
9d:e8:2f:91:0a:ff:d1:31:1d:b4:b7:4e:65:5c:cd:
e9:ca:c4:6b:6f:0f:0d:58:d3:95:3a:28:75:ff:88:
c7:b8:d8:bc:88:c8:d0:61:e4:3f:3c:ab:4e:7c:66:
cb:04:84:a0:be:ee:14:fa:ea:c0:d7:a0:49:80:ff:
c6:98:20:1d:f8:3b:cb:fe:ea:3e:50:52:85:b9:e4:
70:19:24:1a:1c:fe:6b:31:5f:1b:a1:b4:af:a8:ef:
79:7b:0a:8f:14:27:3b:41:39:7d:34:77:57:76:c4:
62:e5:1e:a7:18:7b:20:bd:ed:d8:c2:ff:fb:22:5a:
2f:0a:d6:b3:b6:7f:71:9f:95:9a:38:2c:00:dc:df:
2a:2c:53:b6:3b:94:1b:18:df:a7:64:b9:e2:a3:eb:
51:50:6d:08:c3:d1:0e:2d:ec:c9:ac:4e:24:fb:b3:
f2:b0:43:3b:49:d4:25:ba:20:d5:5f:7c:75:9a:23:
5f:d3:44:e1:aa:50:84:54:8c:4a:ca:af:5e:1e:05:
32:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E3:AD:8B:02:24:52:1C:D0:AE:74:92:C6:94:BC:2D:4E:E1:FD:B2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bd8ec1-17a4-44df-883d-e97d226fbeea/1/aeOtiwIkUhzQrnSSxpS8LU7h_bI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203104
Signature Algorithm: sha256WithRSAEncryption
3b:d8:6d:d9:b6:fc:60:0e:b0:5e:33:2e:be:f5:2a:af:97:45:
0b:96:7f:4c:04:54:ed:8a:f5:38:d6:c3:18:7e:0c:bf:36:58:
c5:28:42:7e:d1:5d:68:7a:08:a8:11:d3:d9:6f:df:0e:29:79:
ed:a8:a3:94:04:01:38:20:8f:75:77:02:b6:4e:0d:7f:93:a0:
31:96:ea:53:13:fa:e5:fd:61:b5:e1:4a:44:9a:6d:fb:dd:9d:
2a:53:f0:0f:95:35:23:44:7e:0f:46:a4:a4:f9:69:b8:11:89:
57:a6:ff:5f:e8:7e:29:22:f6:d3:d3:8b:f1:42:54:25:5d:a1:
c0:e2:77:ed:88:e9:50:56:96:62:2c:8c:f2:49:5a:8e:3a:4b:
fd:52:de:d3:fb:3b:25:be:ee:69:bd:58:06:39:48:f0:14:5b:
40:4e:c7:2f:e3:a5:97:c1:74:d2:79:5d:00:4f:86:e3:02:82:
95:1a:95:9e:0d:20:1b:01:67:47:8e:af:6d:36:ce:ba:a0:67:
ca:2a:ab:c0:31:e0:94:ff:7f:2b:6c:05:78:f7:ae:da:dc:76:
1d:be:df:e7:cc:76:39:c0:d0:0e:77:e3:e5:c9:bf:14:a5:90:
bc:93:97:b2:a6:32:06:fe:8a:79:5f:3b:51:9f:a4:8d:52:8a:
cd:0e:61:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:52:27 2025 by rpki-client