Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/n98bEcryuCRFMXghJa6TOudpn3Y.cer
File: n98bEcryuCRFMXghJa6TOudpn3Y.cer (raw, json)
Hash identifier: oqU93zOXU+dyzrtFkN+NFsvYog3OwVUXccI9KdQ73xg=
Subject key identifier: 9F:DF:1B:11:CA:F2:B8:24:45:31:78:21:25:AE:93:3A:E7:69:9F:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C0EC82729661AC4204DED82C0F4B1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/n98bEcryuCRFMXghJa6TOudpn3Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206176
IP: 195.114.30.0/24
IP: 2a10:c900::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:0e:c8:27:29:66:1a:c4:20:4d:ed:82:c0:f4:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9fdf1b11caf2b8244531782125ae933ae7699f76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:a1:46:ef:6f:d4:03:8c:64:15:b2:bb:64:
46:30:bb:11:8b:fa:26:17:ac:0c:76:d3:04:42:06:
a3:44:9f:d2:4b:25:70:8c:3b:15:2e:39:b0:57:24:
70:db:1b:26:67:45:a0:8b:d6:61:3f:45:42:3c:5c:
a7:b4:d9:06:c1:27:83:49:b7:47:7a:ff:95:3b:09:
ea:2c:c2:f6:3d:e1:57:0e:47:ad:8a:3b:fa:7b:4e:
2f:ce:63:9a:7c:d1:0c:d2:44:f2:5a:53:7b:30:e2:
62:32:a2:be:03:9b:9d:41:3d:3b:c4:89:6b:b0:82:
b8:11:a7:b6:55:7e:12:ae:75:fe:73:66:c5:4d:46:
a5:86:58:23:2d:b0:22:3f:30:e0:df:e3:a3:f2:c6:
68:24:80:a1:1c:31:a3:4b:fa:e6:62:51:d8:28:27:
62:e8:c8:48:47:87:f0:a9:40:93:ec:fc:dd:04:8b:
55:2a:98:6f:84:37:c3:2a:32:06:9a:30:df:41:bd:
2e:d6:67:ea:e0:e2:5f:76:6d:e9:77:82:32:76:f1:
00:86:eb:9e:c8:c6:34:da:5d:da:79:ce:c4:0f:e4:
4d:04:33:a6:3d:29:97:a1:54:64:6c:24:b7:82:84:
1d:12:62:27:0e:ba:c7:25:3e:e6:3b:25:50:b3:25:
31:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:DF:1B:11:CA:F2:B8:24:45:31:78:21:25:AE:93:3A:E7:69:9F:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8abe54-3dc7-4617-9907-472f4dad7fde/1/n98bEcryuCRFMXghJa6TOudpn3Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.30.0/24
IPv6:
2a10:c900::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206176
Signature Algorithm: sha256WithRSAEncryption
33:6e:93:35:82:8d:29:ad:ff:6e:98:1a:2b:cb:79:a5:c0:0c:
ee:b5:36:7c:f9:3f:c9:95:3e:24:67:99:75:00:b7:6b:10:0d:
35:7f:63:26:1f:97:3d:ea:3e:f4:3a:41:01:c7:8c:b9:8e:3f:
5f:37:b9:39:b1:36:79:7b:b3:59:32:a1:f9:bf:db:04:c6:b6:
2b:b6:68:b1:c1:ca:af:ee:3e:e4:1a:88:2f:84:37:9f:2f:ce:
20:73:6b:6f:89:5d:38:53:88:d9:e2:9d:70:97:33:b0:5f:2c:
81:70:7a:da:1e:9e:67:98:85:04:cd:bc:2b:e0:7b:62:36:48:
cb:49:30:f5:07:47:c1:eb:7f:b1:aa:5c:ce:be:e5:e1:78:74:
04:9f:15:bd:1e:e1:74:8e:90:04:44:ae:07:53:63:a8:74:1f:
fa:9f:86:f0:58:2d:37:5a:9b:47:15:a9:bf:97:d1:1e:ff:eb:
2d:da:22:44:64:33:36:bc:73:16:15:92:a3:da:7e:96:43:7c:
5f:d0:aa:85:d3:f3:98:8a:99:f4:23:f9:9e:32:09:3b:3e:f4:
53:29:f2:c8:01:ca:4c:d7:96:b6:d9:2a:39:0c:ad:28:b7:54:
07:9f:74:d5:10:26:68:e6:23:d0:8f:5c:8f:c5:5b:06:53:4c:
59:d1:88:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:43:50 2025 by rpki-client