Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/py0XjI5T9SExwftkdDyWDPiX_Qw.cer
File: py0XjI5T9SExwftkdDyWDPiX_Qw.cer (raw, json)
Hash identifier: pZ2xisbYURqAjP8YDq0SF9s06gBbmWYpWBtph4stzXA=
Subject key identifier: A7:2D:17:8C:8E:53:F5:21:31:C1:FB:64:74:3C:96:0C:F8:97:FD:0C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FCC37307381A58FC19158AD35EA58
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/py0XjI5T9SExwftkdDyWDPiX_Qw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203965
IP: 185.118.172.0/22
IP: 2a06:9380::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:cc:37:30:73:81:a5:8f:c1:91:58:ad:35:ea:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a72d178c8e53f52131c1fb64743c960cf897fd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d8:b3:d0:7d:a2:c6:a0:40:f3:bb:65:6b:ce:
89:b8:6e:31:aa:74:1f:e0:90:66:1c:86:3a:a7:d4:
de:73:c5:fc:74:1a:f6:fc:18:d9:04:75:30:69:d0:
4a:f3:f6:9e:c1:d3:4c:9b:de:84:7d:98:a2:02:ec:
1a:e0:52:94:78:c4:e7:c4:45:9f:da:1a:00:a6:dd:
1a:a7:93:f2:7a:34:1d:67:64:a3:d9:09:1f:c5:d5:
ef:b6:de:7a:ba:53:83:16:db:2b:17:84:60:1f:3b:
30:fc:47:1b:2a:7e:6f:1b:53:52:6b:c2:92:94:11:
ff:be:74:99:c6:9b:6e:72:bf:78:84:f2:50:17:76:
2a:d8:37:c4:dc:d4:8c:10:5f:1d:7b:ee:1a:6d:e3:
d8:ff:af:8e:56:24:9e:64:35:84:2f:b8:dc:4c:cc:
3b:96:96:19:08:36:34:c5:86:12:67:4f:5d:17:2a:
09:8f:52:bd:8b:f0:49:05:4f:1f:32:48:8b:01:35:
62:f1:41:da:3b:35:f0:35:21:08:20:00:2e:ac:f9:
99:2a:82:f6:36:92:f2:fc:54:de:69:2d:75:ed:96:
49:62:68:f7:88:8e:60:ab:a7:50:2c:46:ba:8d:84:
08:fd:46:87:81:30:f5:48:e7:65:7b:21:f3:25:99:
68:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2D:17:8C:8E:53:F5:21:31:C1:FB:64:74:3C:96:0C:F8:97:FD:0C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1b813a-5e86-45b0-99cd-28b9d261ecb1/1/py0XjI5T9SExwftkdDyWDPiX_Qw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.118.172.0/22
IPv6:
2a06:9380::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203965
Signature Algorithm: sha256WithRSAEncryption
3a:a2:84:e2:ff:b6:bc:d0:12:3d:8c:22:88:18:0a:6e:b6:37:
33:53:d3:07:28:a4:b6:97:7e:89:66:35:bd:36:42:29:4f:da:
7d:a9:77:e1:a4:57:1e:3b:68:30:19:15:de:bb:41:21:32:7b:
63:45:39:0e:2f:f6:a5:0d:5e:82:5c:3b:dd:6b:28:d0:98:65:
54:59:cd:11:b5:4b:7a:2f:b9:1e:5e:97:23:f4:69:7a:e0:44:
18:77:e8:df:c4:14:37:67:59:d6:6c:1f:34:d5:36:bf:43:a1:
3e:a0:a3:a5:97:85:48:24:78:64:0c:ba:a8:ac:0d:16:e5:bf:
31:d2:f4:2c:2f:ee:70:c2:06:9a:d7:19:a8:aa:46:92:3d:42:
9b:7d:77:b1:c8:2c:c5:a0:5d:06:bc:c7:f1:6c:f2:4c:e7:68:
41:78:41:ce:3b:55:61:77:38:23:9e:c7:f0:42:6d:ff:10:f7:
af:31:f2:28:52:15:e6:8d:6d:97:9b:5f:50:56:b5:5e:89:1d:
d2:f9:70:71:c0:ba:7f:17:6d:25:ab:60:10:b3:74:7b:4b:24:
ca:27:42:20:fe:fc:10:28:25:97:9f:d5:37:0c:b0:81:5a:29:
86:5b:e9:e8:1a:c2:45:13:6f:f3:d0:27:24:fb:a6:ec:dc:ae:
b1:56:32:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:41:26 2025 by rpki-client