Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nSZknk8seV_-VA-dl_JumcXF4_8.cer
File: nSZknk8seV_-VA-dl_JumcXF4_8.cer (raw, json)
Hash identifier: oH2GTmpYkyEjP7PDuQlnSZEU0B80te8evxPbDAftOU8=
Subject key identifier: 9D:26:64:9E:4F:2C:79:5F:FE:54:0F:9D:97:F2:6E:99:C5:C5:E3:FF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266BD3EF4F3242B43E34766DF82A97E7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:49:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 1213
IP: 45.144.8.0/22
IP: 77.87.24.0/21
IP: 87.32.0.0/12
IP: 91.123.224.0/20
IP: 91.193.188.0/22
IP: 193.1.0.0/16
IP: 2001:770::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d3:ef:4f:32:42:b4:3e:34:76:6d:f8:2a:97:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:49:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d26649e4f2c795ffe540f9d97f26e99c5c5e3ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:67:1f:78:ff:dd:fd:8a:91:61:83:47:b1:cf:
8b:66:3a:8f:7a:58:cb:1f:38:de:b1:03:a6:48:32:
75:a6:47:24:9e:ce:19:b1:68:63:86:2c:83:5d:b5:
0f:f8:1b:51:82:15:36:ac:76:2b:90:0c:49:22:5c:
86:20:c9:d2:73:53:1d:16:95:50:36:a1:52:8c:34:
58:f0:96:47:84:e2:99:97:36:d6:f5:92:fd:5c:90:
e6:cd:6d:15:73:f1:2c:4c:d5:91:dc:5c:b6:40:b1:
54:7b:93:ec:a2:f5:75:24:7b:e1:5e:22:b6:47:53:
9b:de:c8:33:98:6a:bc:6d:50:c8:9f:05:4f:de:0f:
1b:68:2c:79:5e:04:9e:ae:03:02:e3:37:ea:e1:cd:
dc:b5:9b:a6:3c:c0:99:26:7f:86:49:15:32:87:eb:
32:4f:81:97:0e:52:6a:b9:76:c0:bf:94:f8:6b:06:
5d:0d:87:8e:37:74:67:51:f1:e6:9b:8f:4e:b5:9a:
6a:5b:99:39:03:21:8c:bd:10:68:c7:ad:e6:c1:f6:
52:4a:4b:5f:9c:45:9c:5f:15:4a:d5:79:64:1c:6c:
e9:1f:a8:57:f8:f3:dc:65:8c:a7:d5:7f:be:f9:2f:
ef:b9:8f:54:ff:93:6c:6d:b9:a4:f3:c1:2f:91:7c:
5d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:26:64:9E:4F:2C:79:5F:FE:54:0F:9D:97:F2:6E:99:C5:C5:E3:FF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/dc5c07-eb30-408f-858a-ea469c860dc6/1/nSZknk8seV_-VA-dl_JumcXF4_8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.8.0/22
77.87.24.0/21
87.32.0.0/12
91.123.224.0/20
91.193.188.0/22
193.1.0.0/16
IPv6:
2001:770::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
1213
Signature Algorithm: sha256WithRSAEncryption
14:4f:e9:da:d9:f3:99:d3:65:06:bb:83:a1:dc:6d:3a:b1:19:
e0:41:b1:e2:1c:1c:94:55:be:e2:f9:b1:73:86:e3:b2:be:07:
8a:17:3b:99:33:b4:7e:ba:04:1a:3a:5e:ef:97:41:82:a2:f1:
63:53:5f:0c:30:bb:5e:73:94:26:cf:f8:8e:e3:38:49:29:49:
0a:65:52:dc:fe:32:fb:7d:d9:aa:72:46:cb:b8:24:3a:be:0f:
6d:24:05:7d:c7:7d:0f:8b:be:38:e4:6f:f6:5a:62:41:d6:1e:
51:a9:ee:77:f1:4b:85:e9:87:77:0c:22:b0:16:22:52:55:cf:
07:3a:80:f7:1c:9f:71:bd:f8:84:2a:84:35:a2:a8:d3:44:d3:
5b:ad:42:fd:96:9f:99:ca:ce:46:79:2a:e6:95:07:26:41:e7:
30:52:a0:03:77:a6:d7:32:94:b9:47:57:6c:2d:ca:84:ad:47:
d7:10:71:69:0b:3b:9f:d1:45:80:be:b2:2d:d6:9c:de:df:04:
ff:98:c6:bf:de:3b:d0:95:6f:33:76:c2:77:79:e5:59:f9:5b:
35:e0:63:a0:ed:2b:b0:df:b3:46:8c:de:d1:66:c4:e0:0e:5b:
c1:cb:28:67:c1:22:60:a2:cc:68:a3:89:46:76:95:4d:3a:18:
b7:e3:7f:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:42:19 2025 by rpki-client