Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iw2B8-Dy0Y87WQ3MU21elM_gcBI.cer
File: iw2B8-Dy0Y87WQ3MU21elM_gcBI.cer (raw, json)
Hash identifier: iGNJBYJoPq30a73OkSjjuA8fCtyf9AhdKoSfG9mVJzs=
Subject key identifier: 8B:0D:81:F3:E0:F2:D1:8F:3B:59:0D:CC:53:6D:5E:94:CF:E0:70:12
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942521D5620A2D540BCEC8AD7BCB268698
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/iw2B8-Dy0Y87WQ3MU21elM_gcBI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203690
AS: 204995
AS: 206502
IP: 45.13.220.0/22
IP: 78.108.212.0/22
IP: 185.184.8.0/22
IP: 2a0b:2180::/32
IP: 2a0d:11c0::/32
IP: 2a0e:7c00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 15 Apr 2025 02:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:d5:62:0a:2d:54:0b:ce:c8:ad:7b:cb:26:86:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8b0d81f3e0f2d18f3b590dcc536d5e94cfe07012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:cb:b0:64:74:37:48:90:ff:37:08:27:5d:
e8:e0:d6:df:35:ba:07:06:bc:05:c5:7c:c4:5b:2f:
a9:52:2c:3f:0e:7d:28:db:aa:8f:ee:fe:97:23:2c:
3c:67:f3:5a:92:5a:90:0e:77:31:11:c7:ef:84:8d:
34:72:2d:b8:eb:f0:87:6c:08:d3:b2:d7:bb:61:b0:
67:fc:59:1a:83:1b:ee:9b:7a:d7:d8:bb:d5:f6:9e:
bd:83:ab:ee:42:8c:6c:e4:c2:0f:06:90:22:67:2f:
b5:d7:63:1d:48:bd:a6:1e:da:63:d9:fb:47:4f:06:
0a:03:f8:4c:89:43:7f:5a:d4:5a:cd:00:d9:03:ff:
dc:51:65:cc:43:4f:25:f6:d6:2f:8d:9b:e4:09:79:
7e:1c:9d:f5:85:a6:52:21:cd:18:e8:eb:30:bf:6e:
fe:29:e8:0c:ff:1a:50:c7:dd:8c:62:59:ab:ed:28:
13:a8:8f:7c:09:a1:57:32:81:1c:c3:8e:b0:60:a6:
30:3d:7c:91:d6:63:7f:0b:ac:a4:2f:de:5f:bc:43:
72:6c:c3:08:29:49:9a:06:f0:7d:fe:d9:8c:b3:5b:
96:c0:9a:f4:6a:b5:39:a6:ba:8a:59:3e:e1:4b:2f:
d0:2a:83:65:fd:3d:59:f1:94:2d:94:6d:6a:4f:6e:
ab:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:0D:81:F3:E0:F2:D1:8F:3B:59:0D:CC:53:6D:5E:94:CF:E0:70:12
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/iw2B8-Dy0Y87WQ3MU21elM_gcBI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.220.0/22
78.108.212.0/22
185.184.8.0/22
IPv6:
2a0b:2180::/32
2a0d:11c0::/32
2a0e:7c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203690
204995
206502
Signature Algorithm: sha256WithRSAEncryption
06:98:7d:60:2e:36:15:7b:93:b7:9e:e8:67:a3:35:b1:e6:1d:
dc:1e:08:3f:09:ea:04:03:bb:bc:5e:4c:0c:d7:a9:fb:f7:8f:
52:4d:e9:70:1c:00:97:2c:3a:54:f0:a1:04:26:e2:a4:9a:4f:
94:f2:a7:02:3d:e3:dd:e1:15:77:3e:33:b5:d4:f0:62:dd:a6:
e6:2a:e1:ed:ca:bc:49:b0:4d:c3:19:61:40:76:79:4f:bd:59:
2b:7c:d6:b9:89:f2:71:41:c7:b3:9c:5f:c9:80:b2:8e:04:a7:
3d:c4:c8:92:43:94:0f:80:e7:af:9e:8d:9c:3a:bb:fb:0c:6f:
56:99:ab:93:46:e0:4d:b5:84:a4:7e:b5:f0:0a:31:b9:ab:40:
94:04:9e:2d:f5:5d:34:1d:ef:c3:31:8b:d2:cd:c9:82:0c:17:
3b:4c:99:e4:d2:3a:41:38:81:2a:e3:cb:23:af:8d:39:5e:e1:
97:fa:6c:08:44:21:c5:d3:b9:71:73:ad:1f:6c:bb:9f:38:d7:
7c:7b:a9:c5:29:89:3e:04:f0:57:f4:c0:dc:9f:91:cd:1b:2e:
af:08:76:cb:f6:1b:21:38:d2:ca:99:84:81:32:48:60:a3:00:
0c:97:91:c6:31:4c:a8:88:a8:df:45:9d:40:69:51:fe:7c:dd:
ac:41:54:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 09:57:38 2025 by rpki-client