Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mAO6qFdULHWMJI0xHmOX_OSDgBo.cer
File: mAO6qFdULHWMJI0xHmOX_OSDgBo.cer (raw, json)
Hash identifier: q0eXC9B8y1Ns+4Z2CsnhboOoGn6/RnKKU/cW1sD/OQQ=
Subject key identifier: 98:03:BA:A8:57:54:2C:75:8C:24:8D:31:1E:63:97:FC:E4:83:80:1A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196A954AB974D9CEC9B41C762BC03DF6411
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/bb7d83-a3df-4b75-8569-bd9b355d32e8/1/mAO6qFdULHWMJI0xHmOX_OSDgBo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/bb7d83-a3df-4b75-8569-bd9b355d32e8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 07 May 2025 06:00:20 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210683
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a9:54:ab:97:4d:9c:ec:9b:41:c7:62:bc:03:df:64:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 7 06:00:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9803baa857542c758c248d311e6397fce483801a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:aa:08:5c:52:d6:28:de:07:6b:93:0a:8e:d0:
7a:28:46:66:cd:fd:56:50:fe:35:73:b7:f0:d4:d1:
c1:c3:a3:cf:8a:0d:56:1b:2a:5b:29:bf:42:ba:61:
a5:85:cb:42:4c:3b:8f:22:17:17:46:7b:73:23:41:
43:bf:c6:d2:03:e7:24:39:83:80:d7:95:32:ee:26:
05:c2:60:9d:cd:89:1c:6a:7d:da:ed:8c:ae:e6:bf:
e9:41:92:7e:e2:f9:b1:85:ed:a5:bb:16:ac:9e:29:
3a:2a:f0:0d:84:8c:cf:16:7e:66:f6:9f:29:60:44:
72:70:8a:f7:c7:94:fd:7c:73:23:34:30:85:0f:4c:
61:c6:cf:2d:24:9f:3f:97:e0:1b:ef:e1:3d:52:01:
66:20:ae:bf:3b:b7:98:9a:1a:9a:50:48:ab:75:6c:
c5:a6:e4:4e:3c:44:d4:bd:5e:ae:86:0f:26:72:dd:
cf:7f:54:9d:0c:a3:96:e1:7e:08:08:2d:ab:2f:23:
80:00:00:8b:2a:3d:41:ae:26:32:ad:e9:ac:d8:b3:
c6:f6:d5:20:8b:1c:76:39:58:86:e4:67:9a:c4:1e:
6f:be:f3:6c:c0:67:d8:99:4d:3b:b7:ab:91:85:e8:
24:07:42:d8:99:27:82:7a:1f:81:a9:73:41:35:d0:
e7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:03:BA:A8:57:54:2C:75:8C:24:8D:31:1E:63:97:FC:E4:83:80:1A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/bb7d83-a3df-4b75-8569-bd9b355d32e8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/bb7d83-a3df-4b75-8569-bd9b355d32e8/1/mAO6qFdULHWMJI0xHmOX_OSDgBo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210683
Signature Algorithm: sha256WithRSAEncryption
14:d6:ee:2e:2b:b6:62:4a:1a:1b:d9:65:8f:00:7b:a1:13:0b:
00:bc:66:f7:a8:35:4c:de:e4:e9:5e:66:31:32:55:ea:ea:a9:
da:0a:40:6b:7f:39:16:b1:a4:aa:fc:70:6e:64:c7:59:8f:96:
2f:81:f3:aa:78:47:c9:f4:c8:21:90:14:71:47:96:6a:ac:df:
57:ee:ea:b3:41:77:36:d5:cb:8d:3d:9d:40:82:50:47:89:00:
e1:0b:49:c2:07:17:03:25:aa:b1:9d:b4:9f:a2:d5:dc:97:de:
e7:de:f0:ec:c6:5c:b9:50:0b:24:21:26:33:ab:22:f6:c9:46:
db:ea:66:d8:71:70:d0:8d:30:42:59:be:2e:fc:2e:65:fb:bf:
e9:98:c1:db:b4:6d:e8:0d:a8:af:47:68:f2:5d:5c:a7:fc:53:
0a:05:56:6b:84:2e:4b:89:27:d7:7e:91:57:13:32:24:21:1a:
84:7d:95:5e:ff:85:45:dc:5c:85:38:46:5f:e7:41:8a:87:46:
9e:7c:99:e7:52:7f:c6:87:17:c4:52:31:67:fd:89:78:e6:60:
13:b6:5c:fa:78:e2:e1:7f:a1:60:d5:50:3c:ec:2e:29:cf:14:
ce:7e:30:8c:42:fa:d5:96:fa:81:23:88:78:45:9c:32:74:c8:
61:ed:2f:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:52:22 2025 by rpki-client