Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dz4yeLqiScFN5gXclkssJ1Xf7Po.cer
File: dz4yeLqiScFN5gXclkssJ1Xf7Po.cer (raw, json)
Hash identifier: qRbNWIeoo9fsWBqaFeljJv3f/vYoYsQxjHPsgwG9sJ0=
Subject key identifier: 77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D7CA3E3848B0382798DB080942CF81
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:48:52 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 202341
IP: 185.229.60.0/22
IP: 2a0d:7200::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 20:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:ca:3e:38:48:b0:38:27:98:db:08:09:42:cf:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=773e3278baa249c14de605dc964b2c2755dfecfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:98:7a:c7:bb:7a:b6:a9:b6:85:e7:e9:cf:
e3:0b:31:49:08:2b:85:88:10:49:e8:9d:cb:8d:74:
51:04:d6:8a:0e:f0:4f:04:ab:5e:e5:1a:be:3b:f0:
b6:11:7c:41:3f:a4:63:9a:93:b5:b3:e1:a5:8d:08:
3d:8e:17:a4:89:2d:3c:64:35:9c:81:a6:a0:4d:c6:
89:81:81:71:11:0e:af:ca:cd:ff:75:f2:4b:3f:14:
64:94:71:7e:22:fa:c6:50:c9:12:1f:aa:b9:d0:20:
35:bd:f1:42:38:30:9f:28:31:fd:51:1d:f3:78:59:
fe:12:62:e7:84:47:1d:4b:d1:5b:eb:80:af:c9:1e:
f4:4e:45:ea:55:17:a5:69:49:de:b4:38:68:b4:e0:
48:22:71:12:b3:59:a5:6e:75:75:92:8f:81:38:c1:
24:cd:1b:b3:94:8d:75:22:0f:e6:d8:22:d1:16:c0:
ae:5c:37:e2:d2:d6:04:9b:dd:c0:03:8e:27:78:e2:
a7:a9:10:92:b5:70:27:8d:30:53:e2:3b:3b:b0:4b:
f0:db:3d:44:1f:88:13:4a:d5:38:9d:92:77:96:c5:
5f:f0:e0:f9:5a:9b:d9:e4:99:3f:6a:a4:c9:14:1a:
7c:86:97:31:3c:a0:7e:c2:a5:56:dd:98:35:f7:3d:
e1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.60.0/22
IPv6:
2a0d:7200::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202341
Signature Algorithm: sha256WithRSAEncryption
9d:b1:ef:a6:0e:e5:a3:97:dd:f3:d2:65:bf:ec:66:6a:da:25:
f6:0d:3b:9f:41:c4:9f:24:b0:54:39:1f:fc:cf:3b:04:91:70:
de:01:3a:ad:7f:e0:4a:a8:22:d6:2c:dc:aa:7d:98:b3:d3:fb:
34:41:bf:43:e1:59:ca:82:e4:c3:da:ab:4b:7b:46:00:bd:16:
86:80:59:c6:17:af:5c:ca:89:29:87:c9:88:1e:a5:97:78:29:
f4:b0:a7:95:a4:84:d7:a4:49:36:88:3d:85:57:79:8e:d2:b6:
45:3b:84:bd:9e:48:6d:82:3d:f5:51:66:2f:47:f9:52:4e:a0:
9f:5b:0b:22:ba:6b:50:5d:8f:7b:14:e9:c4:0f:b2:db:0f:7d:
97:72:e3:e1:ea:ce:a1:f6:27:74:77:97:3c:e4:46:ce:4b:95:
eb:8b:eb:fc:cd:e4:54:84:73:ff:f8:93:74:3c:cd:bf:71:98:
a6:a3:c6:e4:a0:66:65:49:fd:35:bb:f7:b1:e7:67:51:0e:b2:
28:b4:3f:4a:4f:89:76:a9:fc:05:ee:db:90:e3:20:3f:83:de:
f7:f7:17:73:93:10:a0:92:23:f2:e9:80:68:6b:dc:ac:db:85:
01:51:97:75:fe:7c:da:68:4c:f4:02:d6:24:f8:1d:9e:c2:19:
62:6f:53:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 01:15:35 2025 by rpki-client