Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/enUOttEsV-pkMLnwI5XK8qgb7Pg.cer
File: enUOttEsV-pkMLnwI5XK8qgb7Pg.cer (raw, json)
Hash identifier: 1dq1Pmuc+9RO37nhVVKJLQr9RhgG37P7ChPAhwGkJBE=
Subject key identifier: 7A:75:0E:B6:D1:2C:57:EA:64:30:B9:F0:23:95:CA:F2:A8:1B:EC:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5FD8091BF53A7A572874EE19860E9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/enUOttEsV-pkMLnwI5XK8qgb7Pg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41415
IP: 185.215.128.0/24
IP: 185.215.130.0/24
IP: 2a0b:aa40::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:fd:80:91:bf:53:a7:a5:72:87:4e:e1:98:60:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a750eb6d12c57ea6430b9f02395caf2a81becf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4a:bb:76:80:40:29:32:1c:6c:23:c9:81:a6:
7e:1b:b0:eb:e2:f7:80:ab:0b:e1:2a:e1:ac:92:95:
61:70:9e:65:f3:6d:07:a5:16:a8:2b:e4:5a:ef:44:
ac:dd:07:0a:5b:4a:60:4d:13:fb:b2:12:c6:c4:0c:
6f:61:4c:3f:2a:17:e2:c8:90:db:1e:93:ae:bb:e8:
69:c6:ee:a0:87:8b:05:79:69:c1:ea:f9:28:3a:37:
82:d0:d9:c9:07:ed:0b:bd:5d:11:c8:47:78:4c:0b:
6b:67:1a:df:a2:d5:ec:ee:5c:37:27:6d:96:70:fd:
50:94:b4:fb:2d:1c:e7:7d:9b:6a:b4:45:6e:90:f9:
f0:fe:ec:04:7e:9c:8d:c1:26:7b:b8:dc:8e:ea:60:
25:31:7c:23:b5:70:a1:56:06:c6:22:15:8f:5d:12:
72:98:c2:fa:21:ea:e7:20:f3:3d:ce:19:98:e1:83:
f7:80:09:54:07:ba:7c:23:30:3d:6c:9c:20:8d:c8:
94:57:a3:2d:b2:2b:66:77:d4:7e:c5:bf:d6:69:81:
39:08:32:42:4f:58:ee:71:35:96:78:6d:a4:af:a0:
5b:12:d3:0a:8f:04:f1:1b:9b:4d:e5:f5:c7:af:1d:
54:be:7f:bb:eb:ff:59:a6:b3:0e:c1:61:59:a1:cc:
31:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:75:0E:B6:D1:2C:57:EA:64:30:B9:F0:23:95:CA:F2:A8:1B:EC:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/98dc6f-be56-4c8d-b94e-57227982a000/1/enUOttEsV-pkMLnwI5XK8qgb7Pg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.128.0/24
185.215.130.0/24
IPv6:
2a0b:aa40::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41415
Signature Algorithm: sha256WithRSAEncryption
70:23:cb:9e:24:d6:03:25:be:30:31:77:dd:63:64:ac:a0:11:
a0:c3:03:43:e4:ee:59:a4:40:ea:4d:a4:37:d1:c1:8b:ee:de:
ac:b4:f6:19:3c:50:5c:c0:a9:16:aa:e5:d1:e3:23:35:3c:3a:
e8:3f:93:d4:38:d4:6a:50:8d:da:f1:55:74:75:0a:84:58:38:
37:66:76:1b:ad:c6:cb:e9:fd:82:dc:33:ad:a5:26:e7:9b:29:
0f:b2:82:b6:63:ae:e4:92:41:bd:9a:28:66:26:c8:c8:6b:15:
f1:96:d7:73:8c:9d:c4:e5:60:8e:27:38:e0:b2:35:92:56:4b:
26:1a:e4:a5:bb:36:5e:f7:af:bb:b4:88:09:09:62:c5:b3:69:
a3:61:09:2d:f1:c2:94:0f:53:f3:4c:14:b6:b9:c8:52:58:85:
a6:48:09:08:67:ce:7f:00:2c:c5:5d:12:93:8b:27:71:72:0f:
ab:dc:88:07:23:a3:77:54:71:e7:df:da:5c:b6:5d:b3:db:85:
bc:a2:4f:98:68:13:77:ed:47:67:a0:0b:74:cb:58:f5:e1:35:
80:df:fc:5c:73:60:b4:58:b2:59:ce:61:9d:c9:9e:3b:79:5f:
86:6a:be:8d:07:7a:7f:13:c2:b6:69:ec:18:6d:f3:2f:53:9c:
e0:07:62:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:57:58 2025 by rpki-client