Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dODVhfGshfVEks_JXh3OD8L3lw8.cer
File: dODVhfGshfVEks_JXh3OD8L3lw8.cer (raw, json)
Hash identifier: W8Nir2LY7JxlTL0Vrr3XSHKuhILHJ2KTidp1+8OHjgw=
Subject key identifier: 74:E0:D5:85:F1:AC:85:F5:44:92:CF:C9:5E:1D:CE:0F:C2:F7:97:0F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194214387B6FD085DC1B1CFBB29CE70AB7B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/fe0bf2-f838-408b-9843-6598910202a2/1/dODVhfGshfVEks_JXh3OD8L3lw8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/fe0bf2-f838-408b-9843-6598910202a2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:47:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 209080
IP: 185.239.112.0/22
IP: 2a0c:5680::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:87:b6:fd:08:5d:c1:b1:cf:bb:29:ce:70:ab:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=74e0d585f1ac85f54492cfc95e1dce0fc2f7970f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:48:c3:5c:ad:a0:f3:7b:ea:7f:b0:14:8c:2d:
33:42:f6:d9:30:30:3f:3c:ac:b5:2d:a3:7f:93:9b:
19:5c:e7:eb:72:b9:f0:06:db:0c:a2:c3:2f:3d:ed:
b5:df:31:a1:26:bb:ea:0d:2c:7b:f8:20:a8:5b:8f:
56:e3:80:3e:89:24:28:69:f4:92:3c:79:59:ed:bf:
89:91:01:e2:2f:43:67:89:ca:11:13:27:8c:67:e7:
fc:f9:18:6e:76:61:bc:5d:f6:20:16:4a:af:4e:52:
3f:63:c1:0b:0e:e1:5f:36:36:20:c8:52:10:1f:05:
98:74:cd:72:e2:bb:cf:6a:69:26:7c:9c:9e:97:2d:
6a:54:5e:38:89:17:ea:ea:65:bc:fd:dd:e4:dc:4d:
e9:d5:e2:c9:ad:29:c5:e8:4f:35:51:21:67:43:21:
6c:20:c7:22:76:1e:e3:e3:e9:3e:58:a2:29:7d:17:
5a:7b:82:f5:01:ad:92:b9:32:e8:cb:89:a5:da:47:
1a:e6:ab:a2:da:60:95:2c:1c:e1:a3:46:da:18:cb:
f6:31:d7:81:69:49:5c:65:db:87:d4:1b:80:47:ae:
90:a3:83:c6:72:e7:d0:af:06:fd:ab:f8:6d:39:34:
9b:67:08:6d:45:81:50:e3:9c:6f:2d:1c:80:fc:72:
6f:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:E0:D5:85:F1:AC:85:F5:44:92:CF:C9:5E:1D:CE:0F:C2:F7:97:0F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/fe0bf2-f838-408b-9843-6598910202a2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/fe0bf2-f838-408b-9843-6598910202a2/1/dODVhfGshfVEks_JXh3OD8L3lw8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.112.0/22
IPv6:
2a0c:5680::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209080
Signature Algorithm: sha256WithRSAEncryption
78:a1:d1:5b:4e:cf:c1:1c:5c:fd:74:60:c5:34:ae:3a:57:ba:
43:48:c6:46:b9:89:e6:a2:00:7e:37:56:22:01:2a:6f:fb:5c:
1e:91:22:81:5a:7f:76:f5:c1:c1:53:2b:3f:31:b3:5b:83:78:
1e:9c:16:cd:81:c7:f2:b1:26:72:bb:40:b1:82:f3:27:55:c0:
e4:50:01:67:15:45:aa:4b:d0:4b:79:90:7c:09:d3:e8:44:24:
75:46:f7:61:28:87:8d:92:e9:a2:72:49:ae:04:b4:af:fe:be:
26:1e:32:fb:82:a3:d2:3e:d9:1a:7d:79:6c:3d:09:6f:c6:91:
aa:d4:00:cf:38:17:e2:b2:d0:5f:2e:83:f5:43:3d:62:75:fd:
9b:bd:29:aa:7b:a7:93:62:5f:3b:8c:10:87:c7:15:8c:fa:5a:
2d:9e:2c:42:0e:e8:5f:bd:c4:dc:c6:ae:94:0b:28:73:44:65:
a8:91:49:72:75:5f:fd:ad:78:76:a2:6e:8f:28:9d:2c:fa:f6:
56:25:9c:a4:d7:05:a4:7b:02:a8:b1:3b:48:ac:3b:8b:18:1c:
5c:f1:80:ba:e8:39:7d:2f:3b:41:3a:07:a6:7b:0e:b9:e0:40:
32:40:02:f6:59:e8:4f:0a:7d:89:69:bb:05:4a:81:00:ff:98:
c5:21:c0:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:50:53 2025 by rpki-client