Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6Ix0pxKI7PpixSBPawJg-OjQFk.cer
File: e6Ix0pxKI7PpixSBPawJg-OjQFk.cer (raw, json)
Hash identifier: cZOmBhozYYjCgMc7iDngLIyQRkACHQlE0lTzImqhAkc=
Subject key identifier: 7B:A2:31:D2:9C:4A:23:B3:E9:8B:14:81:3D:AC:09:83:E3:A3:40:59
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019424B3A5ADEDFBF1293905F6E5C290EB6B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/e6Ix0pxKI7PpixSBPawJg-OjQFk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 01:49:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 42291
IP: 91.192.20.0/22
IP: 176.62.176.0/20
IP: 185.13.44.0/22
IP: 2a01:4080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:a5:ad:ed:fb:f1:29:39:05:f6:e5:c2:90:eb:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 01:49:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ba231d29c4a23b3e98b14813dac0983e3a34059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:5b:8c:aa:86:c9:dc:f2:e4:b4:f7:02:4c:
54:6c:fc:93:5c:06:94:39:9a:b5:69:56:80:bc:b7:
95:8d:6c:f8:20:2a:c9:85:be:e8:14:48:b8:c8:ce:
70:08:b0:ad:4c:26:a5:ac:b0:9d:f4:a7:f4:77:d6:
40:06:d2:ce:01:46:54:c3:96:a5:f7:cc:04:4f:40:
97:57:c3:6f:41:e5:5b:72:f2:94:f5:03:0a:f5:5b:
da:a9:7c:29:f4:03:a6:20:87:4b:5d:bf:20:77:ad:
e5:dd:d6:77:eb:ed:8f:3d:e0:f4:0a:40:28:3f:02:
c5:59:76:6d:12:65:b5:68:53:c9:56:79:d4:a1:51:
65:af:9b:26:14:5c:86:db:c2:3a:7f:ae:a7:8c:b6:
49:10:77:0c:74:6f:31:29:7d:f0:77:84:5b:ee:11:
f0:ef:5c:8e:f5:45:1f:e2:e1:bf:91:88:54:c9:ee:
ab:71:59:e1:6f:c9:42:54:d3:34:be:ce:df:3c:93:
f1:2c:87:c4:b6:ef:a1:bb:4c:63:a3:ee:3b:cf:7d:
c2:d9:89:90:34:48:4a:cd:61:a0:94:bf:b8:41:cb:
89:a3:6d:01:09:35:64:15:89:45:bd:9e:17:1a:db:
d0:aa:55:13:65:61:39:91:0b:38:2b:13:b3:e9:cc:
bb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:A2:31:D2:9C:4A:23:B3:E9:8B:14:81:3D:AC:09:83:E3:A3:40:59
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/65b1ae-7d9f-4d70-9f8b-5124e9515b14/1/e6Ix0pxKI7PpixSBPawJg-OjQFk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.20.0/22
176.62.176.0/20
185.13.44.0/22
IPv6:
2a01:4080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
42291
Signature Algorithm: sha256WithRSAEncryption
70:33:4c:cf:df:6d:6e:a1:b8:52:3d:67:5a:38:e2:3b:cd:04:
78:78:24:31:bb:e1:2f:bd:48:42:ae:7c:d9:3a:13:05:f8:03:
3e:4d:d1:20:39:0e:a2:a3:3d:b9:f3:68:8c:4d:f6:dd:e6:f0:
d4:a2:b4:20:cc:47:bb:a0:43:0b:57:4a:bc:fa:7e:63:9d:28:
e5:17:9c:51:1d:bb:44:9b:58:a7:cc:8b:ad:33:7e:91:5c:65:
00:9f:61:5f:6f:d7:ec:f4:53:16:f2:ef:b6:c5:b3:b9:f8:ab:
38:68:16:7f:5a:b4:d7:87:db:db:43:87:84:0b:5f:d0:70:e8:
71:d9:d4:b1:4e:3f:5a:f8:1c:35:fe:96:dd:81:b1:6b:33:2a:
82:0b:a2:73:d6:84:57:9d:a9:bd:97:82:e7:1a:94:ba:b4:25:
28:5d:2a:0d:ac:3d:20:16:28:77:f9:e1:9f:d5:3f:ef:bc:7d:
00:99:10:f6:84:a3:ee:19:eb:e2:3a:e8:ed:bb:f2:31:f5:ab:
d6:88:51:28:3d:54:19:b0:0a:ac:79:80:9b:4d:2e:a8:71:90:
56:51:54:35:62:40:26:d9:21:c4:a8:a7:64:5e:d2:d8:67:0c:
2c:92:86:f8:b3:5e:2a:1e:80:89:4c:4e:28:28:32:bd:98:a0:
22:52:e7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:02:11 2025 by rpki-client