Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pB97t76hWBYk_LZQOrWnD0IMmz4.cer
File: pB97t76hWBYk_LZQOrWnD0IMmz4.cer (raw, json)
Hash identifier: hcpPHDly4Fr6buWg5sbIRFsJ+Mh8xghQPTIcC34VhZs=
Subject key identifier: A4:1F:7B:B7:BE:A1:58:16:24:FC:B6:50:3A:B5:A7:0F:42:0C:9B:3E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196F2C40D342EDE4405715D68565FD2DEB3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/2160f4-7d57-4c7c-89af-98f1a2dfc39c/1/pB97t76hWBYk_LZQOrWnD0IMmz4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/2160f4-7d57-4c7c-89af-98f1a2dfc39c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 21 May 2025 12:14:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 2001:678:105c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f2:c4:0d:34:2e:de:44:05:71:5d:68:56:5f:d2:de:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 21 12:14:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a41f7bb7bea1581624fcb6503ab5a70f420c9b3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6f:bb:8d:b1:da:c0:62:3b:be:66:96:48:91:
cd:5a:f2:41:00:f9:35:db:b0:0d:52:d2:67:fc:e0:
bf:89:94:a5:9b:8a:df:a1:66:04:d5:64:52:0d:d7:
18:60:4f:67:cc:ca:33:13:ce:9e:c6:9c:61:e8:75:
3f:4c:82:39:20:01:70:43:99:de:7e:1b:ee:f1:6a:
0c:b7:4c:0e:7a:09:f3:df:8b:4d:48:c4:3d:66:00:
d5:64:9a:82:f0:6e:7b:57:51:1e:4e:3b:93:2b:3e:
35:8c:bd:b7:9f:8b:18:81:1a:14:46:58:5b:35:2b:
2b:85:0b:e5:9d:d7:9c:1b:85:7e:0f:cb:52:82:6c:
a4:71:9f:8b:cc:ee:55:ea:0d:c3:23:34:9f:d9:94:
7d:3b:c7:5e:d7:9d:ef:df:c6:bd:a3:e2:d9:52:4c:
91:b6:07:bf:fc:c0:42:8e:0d:88:6a:73:8b:04:03:
74:d0:e2:93:9c:aa:09:55:f3:69:d8:86:87:c5:42:
64:ea:82:9c:f5:51:da:49:31:1b:e3:80:5a:65:49:
ed:c2:ce:b4:56:ab:19:43:9f:b2:10:50:68:e5:72:
30:49:64:42:60:b1:12:9a:94:1c:c4:f6:9b:08:6d:
ca:74:b0:41:dd:fc:3e:c9:6c:32:5b:7f:9b:a2:c9:
9a:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:1F:7B:B7:BE:A1:58:16:24:FC:B6:50:3A:B5:A7:0F:42:0C:9B:3E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2160f4-7d57-4c7c-89af-98f1a2dfc39c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2160f4-7d57-4c7c-89af-98f1a2dfc39c/1/pB97t76hWBYk_LZQOrWnD0IMmz4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:105c::/48
Signature Algorithm: sha256WithRSAEncryption
47:e1:18:e5:9f:c3:58:42:a2:d2:4d:cf:27:35:59:3f:2a:47:
be:26:3b:5b:23:64:6d:01:a4:37:a2:66:1b:1e:e1:b2:28:7a:
00:be:6b:cd:24:d2:7e:32:0c:cd:f0:b1:72:e2:8d:d0:c9:70:
1e:69:0f:f4:d6:d0:cd:84:c3:b3:71:6f:c9:d8:9d:18:b6:64:
ae:cb:a5:55:d4:9f:5b:e6:57:11:2c:5a:f8:46:de:62:56:ab:
42:a4:be:95:4f:d4:a3:c4:ca:d9:5b:22:3e:04:b6:b5:f2:a9:
30:c4:2c:a9:4b:3b:24:c3:04:4b:7e:62:d9:af:5d:f9:ca:7e:
ac:72:b6:0a:c7:59:ef:7e:94:ae:69:21:a9:2e:39:1d:5c:f1:
d7:09:a5:86:2e:83:b8:3c:1f:77:41:fe:e3:64:08:6d:93:10:
5c:19:e8:f8:0c:60:7c:53:19:b5:88:1a:fc:5b:75:88:9f:89:
dc:97:b2:02:31:1c:e9:8d:5e:b9:fb:4b:79:cc:d2:00:56:85:
14:4a:c9:09:0a:c5:1f:28:2c:97:35:db:d0:5e:31:da:c3:97:
06:8f:ff:69:b8:5c:51:60:bf:a1:50:56:74:a1:dd:2d:61:73:
5d:7a:8c:47:f9:c6:a4:22:c0:9d:af:a3:69:73:52:fc:aa:fe:
5e:da:d7:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 18:41:28 2025 by rpki-client