Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dixgr01zclhFzq8Le1hed1cGaWU.cer
File: dixgr01zclhFzq8Le1hed1cGaWU.cer (raw, json)
Hash identifier: a9/QO+LWuvxBeRbifkAF3CSx3GsxnezsIVakmsUIQkY=
Subject key identifier: 76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B3AE7370E0AFE3B2F4E588AC78B3B7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:49:02 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 39402
IP: 91.240.80.0/22
IP: 194.246.88.0/22
IP: 2a0d:e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 25 Apr 2025 14:31:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ae:73:70:e0:af:e3:b2:f4:e5:88:ac:78:b3:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=762c60af4d73725845ceaf0b7b585e7757066965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3e:48:50:7f:b1:99:ed:d5:ea:10:97:d0:1a:
14:99:63:24:d1:e6:19:f1:d8:77:6d:b6:4d:4f:14:
c8:c0:fb:17:ab:04:cf:44:26:06:dd:9a:04:90:cc:
94:62:af:43:89:51:d0:97:8e:81:1b:ef:b6:6b:55:
42:d5:b0:54:b5:40:4b:00:4a:e7:a1:41:9e:14:ac:
44:8a:98:20:db:bc:dd:10:34:cf:f1:7f:10:0f:a3:
88:71:a6:58:8e:d8:03:16:61:f2:53:32:b1:ba:dc:
51:9d:3f:5e:a7:a4:fe:c8:76:d1:79:e1:4b:b4:99:
1d:61:75:54:51:2b:ec:13:e0:b5:dd:16:25:7e:69:
da:fa:bd:1f:27:38:10:ff:48:e5:9e:21:65:fc:cb:
f3:33:27:73:5a:35:9a:a1:4e:74:fe:fb:fc:b8:e7:
0f:7d:35:5f:d1:5d:a5:69:96:75:94:f6:a4:b9:6e:
5a:e9:2d:21:14:97:57:07:84:49:a1:0f:b2:d6:4c:
9e:c9:e0:06:57:ff:70:9a:c0:37:20:7e:9a:3f:02:
47:59:51:36:a7:65:ad:7f:b7:2a:c1:6b:30:1c:06:
58:f0:e5:b5:7e:67:27:45:1f:1d:9b:a2:78:3e:c6:
94:99:7b:e7:cc:32:03:fc:77:96:58:6a:82:d7:bd:
c0:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:2C:60:AF:4D:73:72:58:45:CE:AF:0B:7B:58:5E:77:57:06:69:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e6a02e-0146-44a6-9dfc-d4209fc7f3c9/1/dixgr01zclhFzq8Le1hed1cGaWU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.80.0/22
194.246.88.0/22
IPv6:
2a0d:e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39402
Signature Algorithm: sha256WithRSAEncryption
4f:83:12:cf:af:b8:8a:24:aa:88:ca:39:60:ae:7d:a4:26:a1:
b9:ae:96:b1:f2:20:9d:12:d8:ca:11:54:69:0f:85:6f:8a:fa:
5d:81:21:e7:d5:e4:df:e5:a6:3e:fa:9c:9a:59:24:5d:bb:cf:
d2:b6:9a:90:22:8a:4e:97:d5:97:8c:ff:11:2c:c7:53:67:9f:
3d:6f:17:85:c1:3e:92:f3:19:f9:95:a8:c3:25:6d:53:27:65:
44:48:fc:ee:c6:fb:85:1f:54:b5:45:a2:26:3a:98:37:12:0b:
b6:d8:c5:55:d3:3f:65:91:df:a1:50:99:27:d4:7d:e2:40:83:
a5:67:d6:ae:73:87:ba:aa:15:a9:e1:cb:e4:ee:e3:62:9a:b0:
20:de:7c:1b:6c:1f:2f:e1:91:90:79:e3:87:05:31:05:de:76:
12:16:a9:7b:69:79:f6:1b:10:26:98:ba:8d:0a:f3:95:6c:89:
63:6a:0f:fb:ad:a7:5e:f5:16:17:29:b7:2e:49:f2:b9:f3:c5:
96:5f:f6:b7:68:70:35:f7:39:b2:8f:a4:d6:a8:93:b5:52:17:
06:bd:1e:41:de:95:a1:20:0c:e4:24:66:ed:97:9d:7e:e5:dd:
50:9f:f4:db:6e:06:ea:7f:b5:2b:bf:a3:a2:b9:48:f5:5c:b6:
e2:21:f2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 16:46:02 2025 by rpki-client