Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/exi86iJ6TqxhtTALME3u8UaU3JE.cer
File: exi86iJ6TqxhtTALME3u8UaU3JE.cer (raw, json)
Hash identifier: +zY1D08fz7P/UJKHmH2BmQXWgUwElkN7ze3BUEIV77M=
Subject key identifier: 7B:18:BC:EA:22:7A:4E:AC:61:B5:30:0B:30:4D:EE:F1:46:94:DC:91
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D6B24BBD39FECD5F1F3127B4F8B775
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/exi86iJ6TqxhtTALME3u8UaU3JE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:47:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201157
IP: 185.79.64.0/22
IP: 2a03:5c60::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:b2:4b:bd:39:fe:cd:5f:1f:31:27:b4:f8:b7:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7b18bcea227a4eac61b5300b304deef14694dc91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:48:d8:37:1e:a3:92:7a:d8:84:77:79:24:de:
49:5a:8c:a2:16:ee:d8:95:eb:ef:f0:5d:e0:6c:dc:
94:e1:f0:b1:e8:5a:19:e7:25:4f:c2:0d:a0:b5:f7:
e8:4d:68:5e:0a:b4:cc:5d:99:60:15:f6:61:5d:d6:
13:da:51:06:97:a3:ee:f5:a4:e6:56:08:dd:db:a9:
43:65:0c:c7:e6:e8:11:fe:ae:4b:14:35:bf:72:cc:
27:d3:5c:38:60:b4:99:ea:20:0b:29:8c:4d:ff:98:
b7:94:d2:7f:41:dc:73:9a:92:fd:7f:e5:53:c6:75:
fa:78:50:19:d6:ff:c0:63:a3:5f:36:e8:32:c3:19:
c1:c4:c3:ae:23:07:1d:b8:48:8a:a0:5f:39:57:18:
91:fb:06:29:f6:22:fb:e8:25:53:7a:47:83:81:91:
f6:2a:f8:33:1f:a4:e2:65:45:58:f9:cb:bc:a6:e9:
6e:8b:ab:26:42:d8:d0:50:78:36:de:31:89:65:ef:
01:cb:d2:ce:cd:35:08:dc:b7:7f:ac:c4:d8:a1:00:
d9:4c:8d:b8:1b:72:eb:cb:82:0a:49:36:2a:c6:a6:
a3:18:be:c0:68:61:5a:f8:e4:fb:aa:69:31:7b:e2:
d0:71:97:13:5e:fe:7a:e4:d1:d0:a5:fa:46:22:36:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:18:BC:EA:22:7A:4E:AC:61:B5:30:0B:30:4D:EE:F1:46:94:DC:91
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/dac072-0f1d-449b-b30b-09b19d255254/1/exi86iJ6TqxhtTALME3u8UaU3JE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.64.0/22
IPv6:
2a03:5c60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201157
Signature Algorithm: sha256WithRSAEncryption
4b:90:2e:35:46:50:4f:1a:d7:f1:10:a2:bc:dc:80:34:94:19:
f6:f9:6b:b0:fa:bf:24:25:06:40:fa:8f:9f:db:e3:5f:a7:4a:
8f:2e:d6:c7:32:fc:9d:b1:8b:1f:29:31:d7:35:7c:49:b1:7d:
f3:28:a5:f1:32:e8:1c:b1:3c:e5:7c:3a:db:69:09:98:c4:57:
9c:90:cd:4d:d1:b8:1e:41:95:83:69:c7:80:9f:07:63:60:1c:
6d:34:60:ab:e1:3b:38:a0:be:b2:4c:b8:c7:03:ad:e2:0a:78:
8c:bc:53:7d:a6:6a:c0:3e:54:7a:0c:ba:a2:29:cd:d6:95:66:
6f:22:13:ab:0c:82:9d:bc:c3:7b:00:c0:42:fb:73:bc:17:97:
97:30:d4:fb:fc:0a:70:3e:83:ee:0b:5a:87:cf:8d:a3:f6:80:
07:62:c5:54:93:4c:40:d5:06:b5:83:42:63:b1:f4:bd:9b:3a:
8b:3e:74:ba:bb:ff:17:5c:76:02:90:45:8f:ff:fe:c6:d8:32:
aa:ba:10:f9:c3:41:df:ee:7f:a4:cc:c9:de:79:01:a8:8e:2a:
35:9d:f6:41:99:45:dd:38:f7:8a:6a:a1:9f:ba:f2:2a:32:70:
8d:81:91:d6:15:4d:eb:b2:f5:49:f4:be:64:52:0d:75:de:66:
c3:ab:5d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:43:27 2025 by rpki-client