Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q7lESdTSRidxdzvAimJFB9pRKw0.cer
File: q7lESdTSRidxdzvAimJFB9pRKw0.cer (raw, json)
Hash identifier: RhAE3eU7fCNVCetVfeT2KXxNgFx8OD2yyMv+VG7t4bY=
Subject key identifier: AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F5B0837EE9C9C8485F144D5A07404
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:59 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 62.70.0.0/16
IP: 212.125.160.0/19
IP: 213.203.0.0/18
IP: 2a02:2ac0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:5b:08:37:ee:9c:9c:84:85:f1:44:d5:a0:74:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=abb94449d4d2462771773bc08a624507da512b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:c7:be:a1:51:26:4c:b2:d3:83:ca:9b:37:
81:d0:03:7b:cb:41:5f:46:41:25:2f:55:7a:06:77:
dc:51:60:73:62:d6:75:e5:bd:6f:1a:e7:37:be:a4:
61:55:db:eb:ad:86:8f:99:f0:8b:55:35:94:f4:80:
b1:30:db:0c:e0:c4:c7:1c:0e:4a:29:36:2d:f2:00:
dd:f1:55:dd:dc:fe:47:23:4b:db:82:e3:ac:2e:2c:
d1:04:22:50:e7:0d:63:a9:a6:32:6c:18:30:d3:bc:
06:35:cd:8b:76:71:31:0b:ff:c5:1e:4c:13:79:e9:
05:cd:c4:e3:b4:a6:f0:4d:7c:67:93:04:f8:5d:37:
c0:0c:6c:43:96:19:c6:12:65:da:be:f6:f4:da:d2:
12:ac:ff:40:87:69:d1:4c:78:f0:d8:fb:e1:cd:a0:
c9:d0:de:7a:0c:fc:74:1b:43:5b:82:b7:cc:7b:98:
42:0a:ae:00:fe:d5:4f:28:89:ba:a7:6c:86:38:28:
8e:a4:10:47:26:11:b3:60:55:f4:a1:3b:ed:3a:77:
27:01:12:a0:c4:c9:fd:04:d7:11:4e:b3:3e:68:ca:
47:60:90:ee:bf:95:d4:94:34:b1:9a:77:0b:5b:5b:
b6:02:c1:38:db:7e:9b:56:44:b8:8a:cd:61:49:ed:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:B9:44:49:D4:D2:46:27:71:77:3B:C0:8A:62:45:07:DA:51:2B:0D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/625d78-019c-4301-ba78-70c0c15bc80a/1/q7lESdTSRidxdzvAimJFB9pRKw0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.70.0.0/16
212.125.160.0/19
213.203.0.0/18
IPv6:
2a02:2ac0::/32
Signature Algorithm: sha256WithRSAEncryption
1d:88:c0:e1:b3:7e:d6:09:b0:9f:2d:4e:e3:6e:d5:cf:c9:53:
00:2f:ea:55:b8:8b:c9:f2:0d:14:25:6c:6b:02:3a:0e:f4:24:
0d:78:be:74:1c:1b:60:02:eb:88:15:d3:2b:0c:13:8e:92:3d:
9c:42:63:1e:f3:1c:e9:8e:3b:f8:aa:52:75:ce:f5:75:9f:f6:
ba:e9:b5:7c:9c:e4:5b:34:00:ce:03:af:21:cb:e1:b1:12:03:
a6:1f:5a:c8:17:a9:37:0c:d5:b7:d1:a5:c6:3f:00:8f:e5:79:
6f:7f:1e:bf:e8:04:b8:ed:11:0f:84:6f:58:00:b4:66:b9:1a:
0c:42:2e:34:ee:86:bd:cd:f3:ee:2e:98:ff:39:28:6f:b6:cc:
3f:74:5f:d2:08:02:01:6e:4a:62:c6:eb:40:65:96:c0:30:bd:
50:65:aa:d5:41:96:4c:15:b9:b2:c1:45:28:19:b6:69:82:78:
38:d7:dd:4c:e0:35:98:35:4d:6d:83:48:4b:93:0c:fa:93:db:
55:69:02:45:a7:76:29:05:87:e5:ee:b3:e9:59:45:87:42:ac:
66:34:74:bd:0b:31:31:7f:f1:de:b1:f2:b4:c3:e2:5e:d3:fc:
79:63:24:f5:91:02:62:b8:8d:a5:fd:d3:f8:8f:b4:05:d7:76:
a7:44:94:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:52:17 2025 by rpki-client