Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/quibwwl3aKzWfC3XR9O-Gtty6Zc.cer
File: quibwwl3aKzWfC3XR9O-Gtty6Zc.cer (raw, json)
Hash identifier: mzFpSJMgaT9YnQ9rVRVQTrcl1C/AVstJOnH/DrNiLLA=
Subject key identifier: AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194244481896242EB2169B3E0B15A054835
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:47:36 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41656
IP: 91.200.73.0/24
IP: 194.145.203.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:81:89:62:42:eb:21:69:b3:e0:b1:5a:05:48:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:47:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=aae89bc3097768acd67c2dd747d3be1adb72e997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:fc:25:79:08:ab:3d:43:cf:f2:b2:22:b3:fa:
2b:91:18:01:0d:d2:76:c6:6d:3f:75:ab:0c:bb:57:
91:06:39:6b:4c:25:3c:7b:12:0c:27:92:ce:cd:ec:
bd:84:8f:8c:b3:7b:bc:a5:6c:55:e1:d3:c8:c0:07:
5c:7c:00:48:20:b1:0e:d9:9f:cf:5c:54:72:59:0c:
30:19:ce:91:c4:49:6c:fe:ac:c2:ec:c4:bf:6b:bb:
f3:e4:d8:61:b0:cd:08:6d:3c:12:b1:ec:8e:5c:48:
ee:ea:c9:62:dc:cb:c6:f6:c6:bf:86:3b:86:6c:32:
bf:38:d2:5c:fc:e7:ae:02:13:94:a3:38:bf:0f:95:
1a:0f:da:cc:81:96:66:e6:7d:ff:24:14:75:81:6e:
66:33:fa:c3:ed:ed:4c:c1:1e:fb:6b:a1:59:3f:32:
d4:7d:6d:86:61:7e:31:02:1a:4a:20:f4:6d:94:ba:
35:3a:9b:bb:3c:2b:a2:a2:0d:c9:86:25:f4:59:91:
c4:31:9d:91:8b:95:d8:f8:93:b6:46:61:4b:a6:7f:
5a:c3:4d:29:42:d2:cb:0c:db:8b:b1:81:70:12:92:
84:ec:b0:b3:8b:1b:3d:6f:2f:2b:6a:98:44:b7:d9:
58:a0:1f:d9:4e:53:3e:ac:60:c2:33:c0:25:6a:e0:
11:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E8:9B:C3:09:77:68:AC:D6:7C:2D:D7:47:D3:BE:1A:DB:72:E9:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/32e650-0cec-4262-bc93-e3dd776489a1/1/quibwwl3aKzWfC3XR9O-Gtty6Zc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.73.0/24
194.145.203.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41656
Signature Algorithm: sha256WithRSAEncryption
7f:1b:ee:56:19:0e:aa:2b:00:d2:85:f6:9f:22:47:92:6e:7a:
1e:ac:23:2f:11:34:42:cf:37:2f:26:6d:b6:bd:27:b2:11:f2:
b7:39:c3:ee:15:83:df:2a:62:76:1c:62:81:e1:03:30:aa:e3:
bd:5e:89:c4:58:26:fa:81:a3:c9:c0:71:00:ce:a6:3b:6e:9e:
0b:69:8c:3b:88:6b:55:2d:bf:23:35:16:a3:ee:a1:f5:2d:15:
90:58:70:79:83:51:8f:cb:12:34:3f:4a:69:88:74:02:3e:10:
c8:df:d7:a4:e7:9c:50:f7:fa:ed:2a:63:1f:8e:cd:bc:fb:53:
b7:c5:2c:dc:0d:1a:06:fc:6e:a4:36:b6:eb:13:46:a7:e7:df:
76:10:81:98:dc:5a:b2:08:7a:cc:ab:79:1f:fc:a5:f0:e8:99:
9f:47:eb:d7:0a:bc:18:ef:43:bb:91:ab:96:36:09:89:fd:16:
13:48:f7:c8:00:c4:eb:8b:b2:1a:88:3d:13:29:a0:b1:0a:73:
ef:38:f0:46:1f:25:c8:86:4e:22:6e:39:06:bb:16:21:f7:89:
28:25:a9:cd:b8:4a:04:fb:34:4b:7c:b1:f1:95:ba:85:99:11:
15:22:ba:28:1e:4e:3b:22:d6:65:db:3a:79:33:64:5f:71:dc:
40:84:39:cc
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:57:07 2025 by rpki-client