Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer
File: qspPSnN-wJ8zWsQGMxMzKCE-_D0.cer (raw, json)
Hash identifier: fp/6OD/ypvBny+a2vJIGO+K5aal/84Z2dfHD0TsqPiI=
Subject key identifier: AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942369366264BA89C744F78E7812A65F16
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:48:05 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205876
IP: 31.24.250.0/24
IP: 45.152.249.0 -- 45.152.250.255
IP: 194.5.132.0/24
IP: 194.5.145.0/24
IP: 212.125.138.0/23
IP: 2a12:5040::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:36:62:64:ba:89:c7:44:f7:8e:78:12:a6:5f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:48:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aaca4f4a737ec09f335ac40633133328213efc3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e5:0e:d9:dd:01:5c:76:2a:40:04:7f:00:08:
86:25:cc:33:c2:a9:c8:0e:ee:29:d3:97:29:bd:b6:
95:6b:f8:3a:7a:0a:7c:0b:c7:d8:97:14:0c:36:d2:
6e:19:4b:a7:f9:50:0f:59:a3:c6:d0:65:6a:60:5d:
af:b3:c0:28:44:0e:aa:54:d9:d2:b2:0b:2f:62:8d:
17:cb:52:0b:98:4a:fe:a2:56:56:77:0e:e7:9b:44:
69:30:c0:ec:56:e7:31:61:37:c4:86:c1:24:6a:f5:
76:94:ce:19:67:5c:ad:2c:be:4a:ac:0b:bb:88:0a:
3e:5f:8b:1a:d2:a4:2a:3d:ea:7f:b0:71:3a:3c:48:
83:4a:fc:e0:07:a6:d7:f2:9b:e6:71:8a:82:82:9e:
f8:34:0f:bb:7f:05:25:71:af:f1:21:44:67:3b:2e:
cd:2d:48:6b:ab:8b:77:53:5a:35:22:47:3f:e6:d7:
36:19:84:37:58:b0:81:7f:44:0b:dc:cb:a6:ac:31:
36:54:29:e5:ae:60:02:80:50:b9:9c:5a:e1:0e:c8:
ef:03:a4:48:17:d3:fe:c1:01:e9:8a:d9:50:2b:37:
5a:89:45:76:00:fe:b5:8f:93:36:e9:6b:0d:26:07:
d2:98:ae:1e:da:03:61:38:dd:b2:89:84:6c:77:76:
16:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:CA:4F:4A:73:7E:C0:9F:33:5A:C4:06:33:13:33:28:21:3E:FC:3D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c1876a-fae1-43cc-a2d7-334e6f332180/1/qspPSnN-wJ8zWsQGMxMzKCE-_D0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.250.0/24
45.152.249.0-45.152.250.255
194.5.132.0/24
194.5.145.0/24
212.125.138.0/23
IPv6:
2a12:5040::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205876
Signature Algorithm: sha256WithRSAEncryption
7f:60:2e:53:aa:de:4f:99:9f:28:bf:fc:5b:ca:22:9f:f4:32:
3c:19:f3:1a:97:46:0b:fb:e0:f6:f1:d5:4e:c8:95:6a:4b:d9:
28:a8:61:cc:fc:cd:da:07:7f:f4:9d:49:05:a8:48:cc:8b:cf:
7b:b1:b9:25:14:78:3f:b9:aa:ab:d5:3b:a1:9b:b1:4d:6b:95:
11:42:ba:2d:94:c2:5a:4e:6b:76:36:96:0b:31:82:41:49:9f:
a1:2d:5d:14:76:61:42:b5:fb:1a:68:04:6a:c1:1c:5b:f4:92:
80:df:dc:d8:35:71:b7:7d:6a:54:5a:f7:ee:68:b0:13:02:6b:
a6:3c:b1:41:b2:5f:28:22:d1:22:ad:fa:70:2b:20:d0:ae:07:
21:fd:b2:2a:53:3f:c1:3f:14:fb:a3:fe:67:df:5c:bb:94:66:
06:3b:65:83:64:71:f3:39:63:51:6b:e1:dd:ec:cc:97:df:03:
9d:9f:07:0f:05:c1:19:20:66:de:1b:14:3a:02:fa:c8:f1:08:
40:69:42:23:00:10:3d:a8:58:a4:09:f4:3d:6b:3c:5e:3d:91:
99:c9:0b:ff:28:ff:89:a6:ca:b4:7f:b5:24:7f:57:36:91:ce:
26:f5:dd:c3:34:8e:03:c6:50:89:ef:77:57:38:52:ac:79:0f:
59:f4:58:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:51:53 2025 by rpki-client