Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pqqcrek75rp8irsyODGAdjF9YH0.cer
File: pqqcrek75rp8irsyODGAdjF9YH0.cer (raw, json)
Hash identifier: LqDgoeUG1A04Y6xtEUwktIDIGJOyDjtiyenG97Wxbnk=
Subject key identifier: A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194252210CD23459CEF15BE72BB22F68280
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:49:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203497
AS: 207668
AS: 209423
IP: 45.66.20.0/22
IP: 45.144.120.0/22
IP: 91.211.224.0/22
IP: 194.53.192.0/22
IP: 2a09:60c0::/29
IP: 2a0c:7240::/29
IP: 2a0d:8840::/29
IP: 2a0e:ed40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 14:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:10:cd:23:45:9c:ef:15:be:72:bb:22:f6:82:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a6aa9cade93be6ba7c8abb3238318076317d607d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:75:a1:0a:72:d3:2f:b8:0c:97:4a:14:c0:40:
b0:d2:16:78:35:4e:71:ef:2c:d4:a6:d0:40:b0:fc:
84:9f:9f:a9:4f:17:d5:cb:f4:d6:fd:02:c7:f2:ae:
a9:9f:dc:f7:54:64:0a:66:4d:2a:0c:26:2e:aa:e6:
59:b5:e4:69:89:2c:87:c5:6e:1c:51:ef:d3:35:3f:
49:f9:43:2b:75:7e:1c:44:d6:85:04:dd:8f:1e:a4:
db:44:84:63:73:e6:1e:4c:13:3a:82:71:6a:62:1c:
9a:45:a0:e8:c3:85:86:d0:2a:c4:0f:0f:d1:62:c9:
03:4a:4a:de:15:bd:86:db:44:a4:fc:99:5b:df:8f:
9e:16:8c:2b:85:14:6b:98:65:97:84:8a:3d:48:ef:
46:4c:f3:d0:17:d4:0c:89:68:0d:d7:74:55:e3:e8:
cb:e5:c1:2a:96:28:37:71:2c:e8:97:fd:9a:df:8e:
2c:63:77:23:16:b7:cb:6c:1d:6a:06:80:d5:4a:bc:
d3:4b:40:af:10:39:a7:42:93:0b:80:4f:92:8e:7b:
b1:b5:07:f4:d3:d3:ef:fb:bb:79:a2:88:85:c0:06:
54:f2:fe:cc:3a:c3:ca:3e:a2:02:5d:22:28:9e:13:
b4:82:5f:ae:02:80:bb:24:bc:af:94:37:25:6d:df:
89:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AA:9C:AD:E9:3B:E6:BA:7C:8A:BB:32:38:31:80:76:31:7D:60:7D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a970c6-c118-452e-a56f-ec467fa8636e/1/pqqcrek75rp8irsyODGAdjF9YH0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.20.0/22
45.144.120.0/22
91.211.224.0/22
194.53.192.0/22
IPv6:
2a09:60c0::/29
2a0c:7240::/29
2a0d:8840::/29
2a0e:ed40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203497
207668
209423
Signature Algorithm: sha256WithRSAEncryption
8e:c3:a5:b0:d0:52:29:78:93:b8:19:c3:c8:af:bf:b5:66:5c:
81:db:be:83:ad:56:f2:5e:2a:f7:cc:e9:f6:2f:10:0a:24:4e:
1f:12:eb:e7:11:ed:9c:4e:66:50:63:7d:aa:63:42:1b:95:92:
82:7b:46:63:84:ac:d8:47:f3:e7:0f:1e:d8:23:b5:d3:08:e3:
62:19:74:d8:5d:32:e2:48:13:cc:64:49:19:bb:75:12:38:94:
d0:cb:c8:d4:d5:bd:25:a1:94:99:52:6b:a3:d3:5e:4a:54:c1:
3f:1e:7c:9a:fe:45:bd:0d:56:9b:8b:66:e4:e1:e5:c1:af:f7:
2b:94:bd:8b:f1:86:53:99:c8:2b:7c:79:9c:8d:d3:98:7d:9e:
a3:d4:1e:ed:ae:64:01:79:4f:ed:14:fc:b7:70:0a:a0:a6:fb:
79:52:4c:35:97:5a:62:15:ad:2b:cf:7a:61:84:22:37:0a:ba:
0e:76:f8:6b:6e:b8:ff:42:ae:d1:39:8f:4c:9d:1b:a2:7b:ba:
15:12:12:a2:a1:d8:1d:40:db:46:7a:e7:0a:3b:40:26:3f:d6:
7a:4d:83:14:4e:f4:71:84:99:d2:1c:8f:5b:4e:58:6d:75:d5:
59:be:11:f2:f1:b2:d6:60:c4:a9:ac:0d:eb:ed:dd:96:32:e5:
7b:3d:24:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 22:35:06 2025 by rpki-client