Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer
File: ffEaMWDbjOeRi_PsWLXF4ePpOCE.cer (raw, json)
Hash identifier: OWJoCTcTjdGB3iRqJJzH+MGm8rK0vvreN6FelokeIXM=
Subject key identifier: 7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194274809C64F244C964E8AFF6E542BA409
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:50:20 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41504
IP: 195.3.212.0/22
IP: 2001:67c:2378::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Mar 2025 12:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:09:c6:4f:24:4c:96:4e:8a:ff:6e:54:2b:a4:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:50:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7df11a3160db8ce7918bf3ec58b5c5e1e3e93821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c4:60:d4:9c:df:8e:29:53:cc:d7:23:91:5b:
5f:6a:24:09:99:4e:d4:ff:75:54:a9:87:f2:bc:62:
f8:15:c8:70:e4:68:f0:70:f4:ce:5d:6b:24:39:69:
c6:07:5a:d2:59:58:11:36:e4:75:b2:f6:c5:3e:3b:
be:a5:38:62:aa:01:d8:8b:9e:a7:5c:64:68:2e:c4:
89:cf:a3:64:2f:9f:dd:e6:72:b8:2d:34:c4:06:9d:
48:75:ba:23:86:e3:35:51:18:d6:31:d3:1b:22:2f:
9e:f0:d6:34:80:59:01:fe:61:d8:7f:98:56:2b:5c:
0d:b7:5c:d2:b7:32:47:4c:bc:36:b9:18:bd:e7:e7:
9c:c7:bb:77:d8:21:84:4c:6a:89:cf:f0:19:6d:46:
df:05:20:00:5d:69:00:8d:6e:15:9a:b0:f8:90:97:
89:dc:a6:8b:8e:77:65:b4:0a:a5:be:b3:1c:15:be:
d0:af:ba:0a:26:9c:c3:36:79:c3:f7:a8:8c:c7:1c:
6b:7f:29:0f:28:1e:99:f7:da:e2:a3:a9:82:5e:dd:
8e:fe:ce:79:bd:ef:89:e9:0d:eb:73:78:44:93:b2:
78:9b:48:c8:66:03:04:f1:74:91:73:75:cb:38:99:
1f:86:f5:50:28:a9:76:9c:61:e8:43:07:8d:87:9d:
a3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:F1:1A:31:60:DB:8C:E7:91:8B:F3:EC:58:B5:C5:E1:E3:E9:38:21
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/85b29b-0ea2-4741-b439-e4b66a3fe5bc/1/ffEaMWDbjOeRi_PsWLXF4ePpOCE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.3.212.0/22
IPv6:
2001:67c:2378::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41504
Signature Algorithm: sha256WithRSAEncryption
27:07:74:02:3a:2d:8e:5a:da:c7:aa:d5:ec:ea:21:70:e6:1e:
a7:30:54:99:53:58:5c:5c:b3:69:4e:22:94:6c:88:77:07:b6:
3b:1a:6b:1a:5e:1a:27:ba:55:47:b3:3f:3e:97:fb:74:a5:bf:
9f:27:02:e4:c4:c3:c4:ee:2a:05:83:aa:43:9f:1a:b0:1c:58:
4a:06:74:b9:a4:d9:0f:ed:bb:34:db:0c:97:ef:a9:3d:e4:ed:
d6:04:11:a5:9d:e3:51:5f:1f:bf:0a:c5:2a:31:b3:cb:3f:74:
45:0b:53:14:e6:5a:e7:fb:a0:aa:d3:0e:ac:c3:1d:d3:8a:6e:
79:2f:83:01:d0:3a:b1:7c:5b:0f:46:d8:70:26:30:18:d4:2e:
73:b4:aa:5c:8a:7f:58:d8:17:86:1c:fb:eb:6f:a1:b9:d1:68:
4b:3b:1a:cd:97:ed:56:e3:49:2b:0e:5a:bd:be:c3:d2:a4:a9:
b5:21:32:c6:cf:a8:c4:d7:00:f3:0c:45:ba:68:38:a9:78:68:
e2:46:31:e1:2f:e6:52:d3:4b:01:b0:a2:d0:42:e0:28:0c:20:
19:c4:79:2f:15:07:c7:fb:f4:9f:90:f2:32:6f:b2:68:45:b9:
fc:da:20:68:1f:63:e3:61:5c:9d:9a:66:12:1c:93:74:9b:05:
16:3c:13:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 8 22:12:27 2025 by rpki-client