Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer
File: iSWuMjSiyXwn9171HT_zJr4GDiw.cer (raw, json)
Hash identifier: YqpNl+JSflpD3sijNrDYwuDFxoAh+SFwsJ3By9oHMwg=
Subject key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5170FD76CA505AD443244B15DEAA9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:49:26 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203378
IP: 185.117.128.0/22
IP: 2a06:8480::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:17:0f:d7:6c:a5:05:ad:44:32:44:b1:5d:ea:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:49:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:04:5b:0b:99:80:98:45:96:d1:b7:dc:48:
3a:42:ae:54:c3:d0:ca:99:04:55:43:4b:e0:eb:29:
55:42:5c:3a:e4:eb:16:41:89:cf:3b:95:32:94:f0:
ae:1a:e8:18:20:bf:46:d8:d6:03:cd:a6:22:fa:be:
3b:28:50:ca:fa:6b:d2:7f:1b:20:9b:39:9b:38:34:
05:b3:65:82:df:5a:b4:00:67:5b:84:43:cf:dd:80:
44:4f:78:52:e8:f5:15:f1:fc:c9:36:4b:8a:f6:6b:
83:ea:ee:66:02:39:25:a0:65:47:75:b4:36:88:2b:
ba:a9:62:d6:1e:87:b1:6f:78:4e:ae:20:07:9d:78:
57:7f:ba:fc:3e:3c:3b:39:d2:4f:27:38:34:64:62:
31:26:85:a1:10:8f:29:2c:5f:d9:8b:61:b6:6c:85:
23:82:cd:b4:07:9e:9c:84:15:73:20:2e:be:2e:d9:
4a:f8:38:62:12:8d:43:90:da:bf:e0:96:50:a4:70:
da:8c:4f:38:8a:8c:37:c3:cc:15:5e:09:38:56:aa:
57:3b:8c:d0:a7:66:8f:68:51:18:c5:14:26:22:fd:
47:65:99:a5:f1:12:1e:a2:50:4e:ab:3f:ac:5f:4e:
a2:0e:ba:a0:7a:95:da:13:ec:fa:90:6d:a2:76:f1:
45:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.128.0/22
IPv6:
2a06:8480::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203378
Signature Algorithm: sha256WithRSAEncryption
3a:48:fb:c8:46:4a:ee:21:46:a7:6e:bc:bc:a9:27:7d:ea:7a:
2d:71:a4:c0:2b:c3:95:d8:a3:10:1f:d4:d4:8f:7b:5f:db:9c:
3b:5f:f1:ab:67:10:34:4f:aa:b8:ea:0f:85:ee:57:7d:0e:16:
2f:ec:ff:d8:32:c1:b4:e9:74:95:7c:42:51:67:1d:81:63:09:
7c:ac:d6:0f:0e:58:ea:56:e7:46:d4:12:b8:d0:fa:de:12:24:
24:b0:c5:f8:67:61:73:79:23:b4:5f:0e:80:58:67:7e:7b:6e:
69:ac:9a:1c:c5:22:b2:e8:88:61:57:05:ab:67:63:c9:6b:da:
a5:6b:53:5f:41:93:fd:aa:69:ca:08:ec:c7:1d:94:f7:4a:95:
d9:ca:2c:f8:74:6f:b4:82:5e:7d:68:74:e3:93:21:79:66:1e:
93:4c:07:05:cb:ed:56:29:82:c9:d0:4d:1d:88:43:11:e7:2d:
4d:df:be:ec:24:db:f1:11:d5:61:9f:37:16:32:fa:a1:67:c1:
f2:47:df:47:ac:1d:6f:e6:cc:18:93:db:e8:05:80:98:53:a9:
03:fd:1d:9d:5e:44:17:a6:6e:df:7e:f2:33:60:0d:dc:01:87:
0b:4c:75:56:93:8b:e9:bb:dd:ce:d2:4d:a9:c7:2f:f9:b1:64:
8f:f4:1d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:46:16 2025 by rpki-client