Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qsavDCm-vHxIXPgAHanxmTCs5F0.cer
File: qsavDCm-vHxIXPgAHanxmTCs5F0.cer (raw, json)
Hash identifier: fWRktqKjnFCma1qGCkd1U0PMzbA1Z5xoWgfZlz8Rn+0=
Subject key identifier: AA:C6:AF:0C:29:BE:BC:7C:48:5C:F8:00:1D:A9:F1:99:30:AC:E4:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942521711E778BB6EC8BE70FFBC659E8CF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/qsavDCm-vHxIXPgAHanxmTCs5F0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:48:56 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 199290
IP: 5.180.248.0/22
IP: 45.8.64.0/22
IP: 185.79.4.0/22
IP: 185.196.16.0/22
IP: 185.241.28.0/22
IP: 2a0c:9780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:71:1e:77:8b:b6:ec:8b:e7:0f:fb:c6:59:e8:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:48:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aac6af0c29bebc7c485cf8001da9f19930ace45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:04:a9:97:b1:98:f8:11:e8:6f:c1:34:82:dd:
03:9f:c7:76:74:7c:0a:bc:2f:f2:39:51:80:f0:8d:
ee:c2:54:05:44:a4:66:73:b8:a0:2d:1c:e8:78:77:
dc:16:40:5a:75:58:11:39:a8:0b:82:c4:95:ec:81:
73:2b:8f:32:d1:34:13:c0:fe:92:65:8f:a4:3f:15:
40:2e:f5:1d:82:e6:22:d6:9e:2c:f0:90:e7:79:a0:
ff:ba:89:8e:e5:25:b1:e1:c3:25:35:c5:59:e4:91:
4a:d7:bb:42:34:9d:e3:c4:ed:a7:a2:fc:30:0a:3f:
2c:b9:08:47:3a:c2:4a:39:d2:6b:d2:dc:d9:0d:a1:
63:2b:8d:24:f6:12:e3:de:86:94:6c:32:d6:e2:23:
2f:0b:e6:6c:81:ff:39:41:05:7c:4c:2c:3c:23:33:
fb:d2:c4:60:2d:1e:c4:d1:bd:25:6b:eb:64:79:c8:
09:9a:75:6c:b7:2a:76:76:1b:e3:58:38:32:1a:54:
50:63:fe:ac:7a:66:b1:dd:4f:9b:ce:5f:f9:e4:88:
38:65:65:43:06:f7:33:9d:ec:29:8a:a2:90:1d:90:
ae:41:e9:c7:2b:bf:b2:f6:64:55:96:0d:0e:7c:a6:
81:f1:4d:c9:56:3d:5c:b6:4f:92:4d:aa:5a:14:2a:
fe:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C6:AF:0C:29:BE:BC:7C:48:5C:F8:00:1D:A9:F1:99:30:AC:E4:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f8c445-0aab-4087-a0d3-9347591910a8/1/qsavDCm-vHxIXPgAHanxmTCs5F0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.248.0/22
45.8.64.0/22
185.79.4.0/22
185.196.16.0/22
185.241.28.0/22
IPv6:
2a0c:9780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199290
Signature Algorithm: sha256WithRSAEncryption
36:32:c0:d8:7b:58:0e:b1:2a:4d:b0:b9:5b:e5:6a:f0:fb:1a:
21:28:48:ae:93:37:f4:59:02:4c:85:ed:3c:ea:00:71:fb:75:
92:31:fd:fe:37:ab:81:9b:b3:77:de:9a:df:29:2b:e6:ed:44:
f5:11:52:e7:bd:99:a1:2b:09:58:25:e6:ba:35:21:d8:34:ac:
99:23:a6:af:4c:87:2e:8c:54:b4:13:8e:0e:f5:40:a6:a1:c0:
44:ef:b0:c5:80:7a:f6:9d:ad:f1:90:28:8b:2d:65:b6:46:3e:
aa:35:f4:6e:81:03:d8:30:71:49:4b:f7:0e:ba:5a:1d:12:30:
f9:e1:9a:e1:10:93:37:57:88:1f:d2:42:29:16:6e:f0:85:09:
67:c2:b7:a5:45:ca:89:22:18:25:4b:0d:f0:14:c4:1e:01:7d:
7f:ec:cc:79:ed:44:06:5b:12:5c:5f:65:dd:84:bf:e4:93:02:
cd:57:af:33:b7:c5:25:ac:f5:a2:d5:88:b3:f9:36:a7:73:ff:
3a:dc:5a:6c:f1:80:8d:91:2e:2b:20:8e:f1:d1:1d:b9:98:9d:
5b:c5:68:c7:7a:88:6b:d8:b6:23:b9:84:86:e3:de:b2:ee:04:
65:85:33:00:06:70:a4:49:a1:aa:26:56:c3:e4:8d:0f:6d:86:
4e:e9:73:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:57 2025 by rpki-client