Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fSW-cEBtOB5yXT4r7xL2qPPdglc.cer
File: fSW-cEBtOB5yXT4r7xL2qPPdglc.cer (raw, json)
Hash identifier: KPOpep83BTgm3T+hKumZSxeImDxAX37dmi/Tamcib6Y=
Subject key identifier: 7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B1D0EAD670B8EFB0844FA548E33230
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:09 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50293
IP: 193.39.195.0/24
IP: 2a10:e440::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:d0:ea:d6:70:b8:ef:b0:84:4f:a5:48:e3:32:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:09 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7d25be70406d381e725d3e2bef12f6a8f3dd8257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ae:59:bd:94:27:df:96:71:8a:0e:02:49:79:
8d:ec:19:9d:a6:87:bd:46:e6:84:59:b4:7c:5d:91:
b1:72:b7:b4:5c:41:e7:57:c4:75:52:bd:16:4c:bf:
e5:0e:43:05:a6:62:59:af:44:12:f7:fa:b3:24:a2:
56:ac:3c:e6:5d:01:f6:fb:a6:27:84:22:5d:11:70:
fb:89:90:92:d2:2c:17:76:74:fc:75:cc:b3:6b:7d:
63:a1:87:76:11:8f:c5:db:ec:5f:17:1f:67:29:5b:
b6:8e:bc:60:81:a8:00:23:c4:f0:b5:43:de:16:c4:
c0:af:76:69:19:24:4a:51:8d:11:9d:1a:b4:0e:f2:
e3:b7:1d:45:17:1e:38:b6:9d:fe:23:b1:ae:1a:51:
65:dd:18:6e:ab:b8:08:9d:ba:59:10:7b:27:b6:83:
7f:80:dc:a8:97:be:66:84:83:5b:a0:56:11:8b:dd:
0b:b1:13:fb:ab:10:01:c9:e2:99:e3:42:95:27:2f:
49:56:cf:5b:58:0c:fd:2f:6d:21:f0:45:e8:e4:5f:
3f:c6:cc:88:56:39:bd:d3:7e:0c:63:1a:cf:30:fc:
a6:5e:6d:fc:c4:f3:5c:5b:67:2c:d8:75:95:30:ec:
70:34:ed:ba:3c:0e:78:dc:16:ad:4e:08:96:5d:29:
b7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.195.0/24
IPv6:
2a10:e440::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50293
Signature Algorithm: sha256WithRSAEncryption
18:b4:1f:b8:1c:f5:83:f2:8b:43:49:bf:f5:e1:5b:3b:bd:f3:
9a:c0:dd:30:38:35:af:01:00:dd:8c:c3:70:53:a1:57:63:48:
11:a9:02:51:0c:c5:7c:58:38:a6:59:ec:64:d2:47:56:b9:33:
82:bb:d2:03:6a:20:3e:02:17:87:b5:b4:be:db:42:01:04:23:
11:fb:3d:81:5e:6f:15:ed:e3:6b:bb:69:bb:50:9a:e4:61:6b:
d9:68:5a:fc:42:76:43:69:7c:6d:18:0a:8f:39:b1:0c:1a:66:
bb:41:22:45:0c:34:29:6e:6b:cf:1c:d1:41:23:1e:f2:92:cd:
6c:cc:62:2e:09:53:45:46:20:46:72:ed:33:24:08:11:4e:54:
22:c5:d4:cd:f8:84:a7:f6:56:65:cd:af:28:eb:4c:fc:67:07:
1d:1b:21:50:df:44:e7:22:c6:1c:f6:58:23:c1:7c:70:15:ec:
de:ee:cf:42:9a:25:9d:1f:15:3b:7c:82:8d:30:21:6d:aa:06:
f3:0c:c6:d7:65:4c:1a:c9:e8:98:ff:c5:18:63:82:6a:4c:2c:
d5:72:a4:69:7a:07:c0:b4:80:56:76:04:c5:4f:1a:47:da:f2:
2a:93:ef:db:3f:e4:a0:8b:b4:7c:45:5d:9a:2e:de:c3:1b:4f:
a8:45:c1:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:01:45 2025 by rpki-client