Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g7826xjvmlfF-2A62kAP5rZojm4.cer
File: g7826xjvmlfF-2A62kAP5rZojm4.cer (raw, json)
Hash identifier: L0M9zNbqQM6n3/7+2OGQKPenzoeyHw+YVgYvCSr/jDg=
Subject key identifier: 83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5E63D0FFA15BF70348C9E9043DA3F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 39047
IP: 31.3.24.0/21
IP: 37.75.216.0/21
IP: 80.242.96.0/20
IP: 93.190.176.0/21
IP: 185.14.16.0/22
IP: 195.66.138.0/23
IP: 217.175.0.0/20
IP: 2a03:a840::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 14:28:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:e6:3d:0f:fa:15:bf:70:34:8c:9e:90:43:da:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83bf36eb18ef9a57c5fb603ada400fe6b6688e6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a3:21:5d:cc:a5:3b:20:4b:00:ec:4f:d1:62:
f5:31:91:02:b2:4b:68:82:78:cd:e5:f6:0f:dc:51:
72:c8:0f:0b:f7:ec:b6:53:7d:b3:61:8e:7b:9c:d8:
d1:e7:e4:71:97:2a:c9:8f:a3:de:e2:fe:9c:ca:64:
0f:0f:0b:e6:10:53:0f:77:62:95:26:33:92:4f:1e:
f2:f5:5f:0c:65:53:6f:48:4b:ef:87:2c:bd:29:24:
d5:be:44:00:92:74:47:59:6a:e7:d9:bf:7b:21:ce:
92:3d:b2:99:6d:df:2e:b3:d8:dc:d2:f5:51:fe:73:
61:1f:c8:0c:97:b3:26:f2:a4:f9:b4:f8:bf:69:6b:
d3:2e:87:e3:c5:aa:d1:69:82:ca:3d:2f:e0:96:c7:
de:d8:96:85:37:2c:49:4b:45:ff:8a:74:43:55:35:
96:7a:19:db:09:32:b0:55:50:23:f6:a8:6b:3f:00:
12:ea:c6:e1:65:7c:8d:58:62:5b:e2:b2:94:f9:46:
48:78:f6:2c:fb:2e:6d:00:4a:bd:50:ef:94:3c:7f:
86:c6:b2:d9:a3:a2:1e:7c:20:31:d7:44:86:70:52:
72:d3:f7:32:70:84:fb:9d:65:d5:ea:a8:10:0c:91:
48:66:6e:97:f9:9d:1e:3a:1c:02:5a:7b:db:af:5a:
92:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BF:36:EB:18:EF:9A:57:C5:FB:60:3A:DA:40:0F:E6:B6:68:8E:6E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/f77d51-ee1c-47a9-90bc-e0d2a1b6e8ac/1/g7826xjvmlfF-2A62kAP5rZojm4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.3.24.0/21
37.75.216.0/21
80.242.96.0/20
93.190.176.0/21
185.14.16.0/22
195.66.138.0/23
217.175.0.0/20
IPv6:
2a03:a840::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39047
Signature Algorithm: sha256WithRSAEncryption
0f:30:78:da:c6:9c:6b:0f:03:6d:d5:24:ed:6d:15:34:17:a0:
df:32:e8:52:cf:35:c9:23:72:05:62:ad:80:4c:39:9c:86:80:
1a:81:49:59:56:c6:10:56:ce:1b:60:02:16:af:18:7c:a3:ae:
c9:7a:3f:b7:71:90:2a:a4:b8:2a:b7:5f:1c:ad:5c:d9:66:fd:
20:82:8a:e2:dc:45:fe:06:21:be:28:1f:5a:1b:a3:af:97:a5:
c9:e0:5f:c2:e9:78:90:76:67:76:6b:90:85:5c:66:58:a3:8a:
8b:41:a8:e4:ca:d2:43:aa:bf:06:2a:8e:c0:9d:a0:84:63:e4:
bc:dc:1d:c2:70:e8:23:10:ae:54:d4:46:69:23:35:b1:dc:67:
e0:37:c3:26:ac:32:22:b1:e5:44:cf:6e:16:01:ee:23:67:ab:
86:88:5c:e0:77:1d:72:22:78:cc:42:7d:2f:28:96:26:b0:6a:
33:9f:3c:f2:85:37:60:90:f6:7d:36:75:66:b9:00:4f:0d:17:
17:21:48:00:98:a4:c5:05:bf:d7:b2:de:c9:64:dc:80:40:59:
03:46:1b:be:48:d3:9e:9b:f3:3d:6c:fa:75:97:41:94:1d:a8:
68:f8:3d:b0:93:6f:85:83:fe:66:a3:90:ed:68:8e:71:7b:dd:
a6:2b:e6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:49:32 2025 by rpki-client