Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qagVvnVH64cOtfZB0w_mljdByOA.cer
File: qagVvnVH64cOtfZB0w_mljdByOA.cer (raw, json)
Hash identifier: bpwj720zpq8r1fK614COtQunZDXbTbTaXoY5soW21cM=
Subject key identifier: A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F3E70D9D068C0C23E9C3130DD988E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:52 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 44156
IP: 79.99.96.0/21
IP: 2a04::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:3e:70:d9:d0:68:c0:c2:3e:9c:31:30:dd:98:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a9a815be7547eb870eb5f641d30fe6963741c8e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fe:19:ae:22:c8:11:e6:55:de:3b:24:69:25:f7:
29:d4:0a:ef:9b:5d:46:75:f4:99:8b:be:1a:e3:1a:
a1:68:54:c1:54:1e:be:84:12:77:d2:cf:8f:ae:c3:
a3:f1:c1:b3:3a:d9:3c:65:c9:c3:d6:1e:a1:f2:5c:
04:c9:c4:13:2a:62:e8:a7:29:4f:3d:0c:c5:d6:44:
ab:3c:d3:5f:98:54:b8:d0:c2:cb:08:24:b0:97:a9:
74:08:9e:c9:d2:87:11:01:a3:e7:12:9e:e4:c3:0a:
63:b9:03:59:34:7a:f5:6d:7e:9c:e2:03:5f:a7:5f:
b4:10:e6:44:fd:fe:9f:0e:31:d3:a5:d7:bf:95:bc:
fd:9b:a9:b3:6a:fb:e9:d7:53:4c:e5:4f:dc:7d:fd:
e1:ca:e4:27:cb:09:5a:b9:90:17:bf:19:96:be:18:
b6:76:2d:39:8e:17:d5:a8:a5:f1:71:6a:c3:24:71:
4c:46:c0:fa:5f:ce:ef:12:96:c3:40:91:54:77:c0:
c5:66:ab:9c:66:b6:4d:35:03:e3:36:fb:77:4b:c4:
a1:b7:67:bc:89:a6:f1:78:aa:04:01:a8:20:9f:9e:
85:0a:7f:31:af:5d:5e:fa:72:71:f6:cf:6f:b7:5b:
a7:89:0a:45:d0:f2:56:10:cc:62:53:fe:81:d0:5c:
f9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:A8:15:BE:75:47:EB:87:0E:B5:F6:41:D3:0F:E6:96:37:41:C8:E0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/fe3f3e-e187-4a12-aa9a-243c5f4e2e40/1/qagVvnVH64cOtfZB0w_mljdByOA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.96.0/21
IPv6:
2a04::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44156
Signature Algorithm: sha256WithRSAEncryption
16:b1:66:33:3e:d5:b8:e9:b1:fd:d0:42:de:4d:00:d5:34:bc:
20:6d:66:fd:e1:c9:1e:68:6f:05:f7:47:d0:ed:84:ee:9e:35:
f0:4e:9c:3c:af:5c:db:99:a2:71:8c:ec:df:e7:19:11:33:54:
eb:0e:fa:ff:5c:ff:d9:eb:fd:f8:bb:1c:bc:75:f3:ac:a0:ff:
09:08:30:e8:57:e6:a5:6f:63:e6:ad:d7:4b:f4:73:bf:79:bc:
73:dd:df:1d:09:b2:d0:e1:8a:62:ca:cb:0c:da:15:42:40:0b:
25:92:7a:ae:88:0f:eb:a7:f6:8e:45:9a:2d:7a:2a:36:18:e3:
c5:dc:58:b7:63:a2:e5:87:43:01:f6:0a:90:0f:c3:ef:79:c7:
9e:91:87:da:28:48:8c:43:19:57:64:9f:a4:b0:52:fa:79:a7:
37:13:5c:b1:d5:3e:b1:57:49:42:53:b2:92:65:ae:a6:7f:dc:
45:c8:e0:a6:83:0f:48:83:90:ad:ef:59:cd:62:44:38:0f:bc:
af:84:4b:06:fe:73:bc:85:be:ed:3b:c1:24:30:ed:db:b6:18:
95:b9:be:84:af:ef:d8:96:79:96:cf:8a:a8:81:8a:bc:bc:10:
98:dd:54:dc:50:ed:a1:dc:2c:a3:98:cc:f1:72:5d:72:df:4c:
98:54:a0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:51:22 2025 by rpki-client