Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eCa2BPb4wD_p32yY5h856u11VaU.cer
File: eCa2BPb4wD_p32yY5h856u11VaU.cer (raw, json)
Hash identifier: wZPUZ595wDjYCwtDPJUWT7/RUaHdS+oJct5BxEUrXyI=
Subject key identifier: 78:26:B6:04:F6:F8:C0:3F:E9:DF:6C:98:E6:1F:39:EA:ED:75:55:A5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427479003415FD22B9AF40CAF9B65C60B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/eCa2BPb4wD_p32yY5h856u11VaU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 207442
IP: 185.89.98.0/24
IP: 2a10:1a00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 23:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:90:03:41:5f:d2:2b:9a:f4:0c:af:9b:65:c6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7826b604f6f8c03fe9df6c98e61f39eaed7555a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:65:5a:fd:ac:2f:2d:1f:3e:ae:1a:65:30:b6:
9b:ba:10:d6:95:c4:d1:35:7a:1b:db:88:c4:be:3e:
24:85:49:a8:41:13:52:e2:1b:26:95:34:10:6c:28:
e6:67:2d:5b:d6:25:34:44:8f:24:65:93:d2:34:ac:
1b:b9:05:52:be:f7:75:ae:d7:08:96:21:2b:4a:dd:
a1:4a:62:b0:0e:d4:2a:17:fa:b9:6e:ed:01:9c:68:
bc:c6:66:0b:df:89:c3:2d:9a:d0:ea:30:d6:ab:69:
71:7d:24:a9:26:08:e3:41:4f:59:15:b3:da:25:ea:
24:d2:b8:6d:09:ab:f0:05:21:1b:f0:65:79:89:e7:
cd:95:6e:3b:c2:b3:ad:dd:1a:ce:f7:29:9b:f1:62:
1e:06:c9:bb:cc:ef:23:14:8e:7b:04:fa:3a:14:bf:
14:b1:66:e6:e7:42:49:dd:93:f8:af:2f:66:06:95:
00:c6:4c:8e:ee:d7:58:92:76:9a:fa:b4:25:5e:58:
f1:0c:1b:67:e1:da:10:7b:77:a7:79:21:bd:09:15:
88:0d:0a:fe:89:c3:ae:ea:52:08:b5:98:e5:95:60:
eb:32:5b:99:68:cd:8c:76:87:ff:a0:b9:89:5d:98:
68:ff:96:55:ef:16:e3:90:d2:50:c9:89:93:69:b1:
9a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:26:B6:04:F6:F8:C0:3F:E9:DF:6C:98:E6:1F:39:EA:ED:75:55:A5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c94c65-ea02-405a-bba7-ca0474adf373/1/eCa2BPb4wD_p32yY5h856u11VaU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.98.0/24
IPv6:
2a10:1a00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207442
Signature Algorithm: sha256WithRSAEncryption
7f:f7:61:bc:c5:cf:cd:4f:fb:32:50:af:6b:f9:e3:97:ac:eb:
71:ce:6c:c3:04:5e:de:f5:51:05:e5:59:0c:3a:0a:e2:4b:8c:
3c:e6:11:9e:8e:4a:0a:cc:55:a4:70:88:da:fa:8e:66:d0:ca:
71:37:79:9f:9e:07:cd:78:e3:7b:98:eb:0a:29:5f:e3:4e:ca:
e7:db:46:5e:59:e7:53:26:06:d7:26:31:e3:8c:8d:b7:61:14:
1b:94:43:6d:30:b1:1d:06:16:97:4e:2a:dd:d6:1e:ba:ab:fe:
46:7b:1c:14:62:67:00:86:08:39:7c:84:dd:02:c5:02:8f:37:
59:39:7d:67:24:f5:36:54:1a:8d:5c:3f:a0:96:33:f3:57:aa:
76:7b:7f:44:8a:f2:bd:c1:44:b5:39:9a:5f:09:20:c9:03:13:
ec:e9:c2:dc:1e:9a:65:af:15:cd:10:a9:b4:cf:bd:b1:70:a1:
14:dc:33:20:cb:fe:3e:0a:af:68:a7:c3:a7:be:e9:10:9c:8d:
42:5e:0c:63:73:31:4e:87:71:7e:57:2a:00:e9:b6:52:07:8f:
7d:7c:8d:0c:38:3b:7d:ac:de:42:25:1e:99:8f:c7:67:0d:cd:
3c:21:33:9d:fe:3e:91:cc:99:dc:02:c5:39:ef:5a:c6:94:1f:
92:c7:6c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 04:44:21 2025 by rpki-client