Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iMaZNJivBRiWLl9I1chG3BddGIQ.cer
File: iMaZNJivBRiWLl9I1chG3BddGIQ.cer (raw, json)
Hash identifier: PeKBYR5ujAm9v007fBUGgFedZxqVKNbnHJjA6b7zNCI=
Subject key identifier: 88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942747219B91B0108C4EB7B49C4CCB8491
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:20 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 207801
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:21:9b:91:b0:10:8c:4e:b7:b4:9c:4c:cb:84:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=88c6993498af0518962e5f48d5c846dc175d1884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9e:e0:d6:b3:e0:09:62:f8:d6:bf:74:bb:ca:
7b:f0:55:7a:d2:c4:a7:e3:66:48:e3:11:fa:38:e6:
71:3d:5f:c7:9a:bd:b5:4b:c9:24:c4:47:eb:16:47:
82:a7:5c:7b:b0:78:f4:38:19:d8:01:f8:ae:47:17:
ab:8a:7d:fd:3f:b2:92:b4:f0:73:4d:44:e2:dc:c6:
bd:f4:79:a4:f1:72:62:f7:2b:b7:31:fc:10:fe:9d:
e8:b2:88:ee:82:5e:84:e2:3e:e5:b4:a7:ed:e0:35:
b0:43:d6:1b:07:fc:5f:4b:55:aa:ac:09:93:7c:ed:
df:8f:74:51:0e:a5:2a:28:4c:b6:30:57:f4:04:88:
c5:2e:ea:d1:ec:4c:9c:a0:a5:b7:5f:71:0b:42:94:
9c:4b:18:0e:ba:b5:2d:1f:33:5f:c7:9e:5b:44:33:
15:f4:ee:74:7a:fb:ba:20:c0:76:0a:25:bf:ba:c9:
95:21:0d:1a:84:0f:bd:e1:42:61:fd:10:ab:da:88:
68:8a:ab:13:15:81:54:40:1b:86:fa:28:ec:12:91:
fd:25:5f:e4:9e:50:e0:de:39:d6:29:d9:72:0b:bd:
b0:21:2c:ba:d0:31:56:20:ad:06:7e:ee:8b:bd:40:
ee:de:09:b4:48:af:01:4c:9c:06:40:2b:a1:6d:dc:
90:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:C6:99:34:98:AF:05:18:96:2E:5F:48:D5:C8:46:DC:17:5D:18:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/81b00a-f68d-44f4-8825-982736b45bdf/1/iMaZNJivBRiWLl9I1chG3BddGIQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207801
Signature Algorithm: sha256WithRSAEncryption
77:3d:b3:b6:ff:a7:e4:41:fc:db:8c:b2:42:d4:5a:f1:d6:2a:
51:dc:74:d2:5a:62:af:6b:2c:60:02:87:f6:30:4d:4b:32:50:
81:6f:ba:9c:04:1d:66:00:82:09:3e:ff:38:80:b9:8b:9b:9e:
a1:39:7e:8f:d2:63:bf:d6:67:eb:d6:de:11:32:69:a8:fc:a2:
94:3c:d8:6a:af:90:1b:eb:60:03:7e:9e:a8:e5:dc:04:f9:44:
ca:71:1c:9c:f9:d2:bf:fe:69:57:9e:89:28:94:c8:f0:06:8a:
32:43:71:fe:5d:bd:09:76:68:ea:20:bc:dd:b8:6e:6b:ba:15:
8d:a3:e5:89:7a:c9:88:57:4e:d4:f0:78:93:47:a3:23:6b:97:
71:3f:0c:be:eb:c3:57:25:80:94:9c:6a:1c:39:00:f9:69:61:
07:64:51:b1:a9:3d:f4:7d:3b:ca:f2:6e:11:b7:84:ff:ea:e7:
53:d0:81:b7:6b:8f:d8:f5:10:8c:fc:32:81:53:d0:f8:41:0f:
a4:12:44:75:b4:cd:20:0c:11:d1:bc:cd:f4:39:3e:f3:d1:df:
74:00:6d:69:0b:82:2a:92:02:96:28:5c:ed:a9:27:e5:99:c1:
66:dc:ae:73:d9:b9:53:91:05:d1:e1:af:bf:da:e4:21:aa:a0:
d6:ea:21:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:05:50 2025 by rpki-client