Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer
File: q2TJrlviZApf1pRYanBMo0wgh78.cer (raw, json)
Hash identifier: H8+2jlx65Zzr2BB/IW+K9tes6xr0vypuLhPS/tlLBLI=
Subject key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C14CFD7783FCC0C1FDA5376E2F66D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 20815
IP: 80.64.32.0/20
IP: 2a00:5c00::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:14:cf:d7:78:3f:cc:0c:1f:da:53:76:e2:f6:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:14:5e:d5:22:a3:c9:24:f7:e3:78:ca:c1:93:
86:c2:98:5b:22:2a:d7:6d:9e:32:79:04:d5:e4:ef:
6a:d7:7a:df:37:96:0d:49:54:f9:5a:fc:85:e1:14:
82:bb:d5:67:a0:8d:81:33:57:64:83:a9:c9:f9:b1:
db:98:4d:e0:33:54:bf:00:67:52:79:3f:84:a5:fb:
23:1d:c8:6c:78:04:14:7e:f3:55:9d:8b:d6:ca:80:
ab:f4:32:22:29:a0:93:34:64:ce:a8:c0:d0:5a:e8:
dd:d3:59:d2:36:fc:4b:50:25:59:77:d0:26:b6:02:
49:91:51:99:16:5d:be:a2:2d:1c:a9:15:b2:8e:ca:
d8:69:11:88:c2:a1:3d:ff:08:08:de:de:8e:ef:a8:
97:59:e6:a5:14:85:4f:29:4e:0f:66:b0:c2:bd:89:
f3:6c:76:74:c6:56:b1:46:ae:33:e7:7d:fb:77:54:
ff:ef:3c:dd:70:06:50:ab:82:76:ad:b0:9c:b7:9d:
6f:20:39:8f:e2:ae:51:49:62:98:f7:b9:e5:41:ba:
b5:f3:09:c2:a0:65:fa:c6:4e:45:88:2c:82:9b:5f:
9f:42:63:fb:8e:d6:17:43:08:94:3e:43:fb:9f:5f:
a5:87:94:d1:a8:71:ca:07:87:db:f2:e1:2e:a2:39:
fb:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.64.32.0/20
IPv6:
2a00:5c00::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
20815
Signature Algorithm: sha256WithRSAEncryption
3f:fe:99:8c:7b:97:e4:6e:87:45:dc:30:0d:ad:89:27:63:f2:
58:06:a2:fe:2d:a1:cd:12:1e:3d:8f:bd:3c:a6:8a:99:6e:1b:
a8:52:b5:97:e3:09:3a:29:b3:d7:21:45:ec:92:19:2c:bd:52:
16:c0:f2:ca:31:e0:1b:0b:cb:d2:9c:da:11:d6:79:06:c8:84:
ab:ba:64:49:99:1e:24:8e:9a:cb:e2:e3:3c:90:5f:f2:5f:32:
df:85:9a:45:fc:96:79:29:f5:6a:3f:30:34:f6:e2:3c:56:a0:
66:34:81:41:14:ed:54:72:02:53:da:bf:d8:d4:c6:51:31:d2:
f6:67:48:1c:3b:81:df:b9:dc:dc:09:70:fc:ff:07:37:fe:25:
0b:f2:56:40:84:6f:a0:79:86:26:3f:ff:b1:74:ba:22:8b:8c:
38:20:44:33:de:05:39:54:37:ce:4a:d6:c9:c5:75:ca:1e:1c:
5f:2c:5a:3c:0a:c7:46:dc:45:b0:0b:e6:aa:bb:e9:7f:f8:1a:
80:6d:0a:e1:38:5b:3e:0f:17:56:75:b0:d5:ce:70:6f:89:21:
72:1e:2a:0d:87:df:ce:fa:4f:b7:f7:02:21:b6:b4:5c:c8:0b:
72:1b:13:7c:c1:50:74:76:c9:6e:20:46:a4:39:8d:7b:e8:8f:
08:87:e7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:29:44 2025 by rpki-client