Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r06GL461X0-CVOLIWLcvQzl_4_o.cer
File: r06GL461X0-CVOLIWLcvQzl_4_o.cer (raw, json)
Hash identifier: 2jrqv5o/DQBvFB1iLTVC7pW7P4XZHTDUxHydnuprXAs=
Subject key identifier: AF:4E:86:2F:8E:B5:5F:4F:82:54:E2:C8:58:B7:2F:43:39:7F:E3:FA
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F53FB844FA7C33D5A8C8658189F25
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/67/9e37ce-2c77-450b-94c7-50d2f7a10962/1/r06GL461X0-CVOLIWLcvQzl_4_o.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/67/9e37ce-2c77-450b-94c7-50d2f7a10962/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:57 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50287
IP: 109.232.176.0/21
IP: 2a03:2c20::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:53:fb:84:4f:a7:c3:3d:5a:8c:86:58:18:9f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af4e862f8eb55f4f8254e2c858b72f43397fe3fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:0c:68:2b:7a:72:28:e4:49:37:be:9b:6c:dd:
ba:a6:41:19:cd:16:3d:c3:32:fe:60:03:c7:bc:cf:
bd:01:b0:c1:3b:15:95:f5:0e:1d:1d:83:16:b7:45:
55:31:2d:cc:69:7d:6e:59:d0:9e:e4:37:a3:95:20:
aa:5c:28:f5:17:5d:a9:79:48:6f:25:f6:4e:1d:e2:
ff:b4:78:77:8f:fc:27:ee:5b:0e:1c:3b:6c:5c:af:
e5:49:c2:b6:0f:d3:c8:70:ad:57:7a:81:9f:ab:69:
08:b9:d3:7f:d9:3a:85:db:0f:e8:3d:b0:7f:c4:65:
59:cd:13:69:5a:1c:89:de:04:09:d8:0e:4e:35:1d:
f2:93:51:5e:8d:5b:8f:4d:16:2e:ee:57:9e:38:fd:
c0:3c:a8:20:76:35:e0:3c:25:0a:6e:ae:5c:00:4f:
4f:ce:1a:1d:c1:19:08:26:f4:83:c0:26:ac:6e:f3:
53:ca:c7:9d:b2:90:49:e7:45:4b:b7:61:82:c5:61:
2e:63:19:7c:58:81:6a:32:b1:66:12:61:c2:7f:d7:
1c:62:60:34:6a:d5:a7:32:23:cf:e6:dd:16:e1:6b:
0d:31:26:09:a1:dd:27:1e:36:d0:8f:57:67:89:d4:
49:39:ad:50:20:09:83:2e:9e:f2:58:17:da:09:7b:
50:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4E:86:2F:8E:B5:5F:4F:82:54:E2:C8:58:B7:2F:43:39:7F:E3:FA
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9e37ce-2c77-450b-94c7-50d2f7a10962/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9e37ce-2c77-450b-94c7-50d2f7a10962/1/r06GL461X0-CVOLIWLcvQzl_4_o.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.232.176.0/21
IPv6:
2a03:2c20::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50287
Signature Algorithm: sha256WithRSAEncryption
46:c3:57:9f:b8:ce:4a:85:ff:b5:58:01:b1:70:72:4a:81:ad:
fa:10:b7:dd:92:cb:db:d1:77:7a:08:d3:a5:f0:10:a9:8b:0c:
0a:1e:b3:d0:3b:78:1a:7b:40:ae:74:0a:21:36:fb:fe:cd:c1:
df:e3:6a:0e:f4:12:5b:50:b8:bb:f6:3f:6e:f6:58:1c:b1:b9:
fd:cf:16:00:b3:f3:e5:d4:de:0a:41:5e:00:d9:31:58:48:f1:
7d:dc:7b:13:1c:56:30:15:ac:10:70:ed:d8:78:99:eb:98:4d:
b9:4f:60:7f:9c:1e:42:f0:1b:c2:38:1f:bc:96:6d:0f:66:10:
4a:e1:f7:0e:2e:0a:92:73:85:85:68:fa:b6:94:69:b5:ec:a2:
98:cf:38:f5:9b:95:62:62:4d:e9:1c:0e:ec:bd:3d:1d:f5:8c:
15:5e:f2:3a:53:fd:db:86:f5:2c:97:6c:86:99:2e:ab:34:b9:
b2:63:28:d2:6b:e9:49:21:14:73:25:6e:82:15:0a:81:21:bb:
b4:7a:bf:63:a4:eb:79:92:f1:ae:79:dd:a9:4a:e6:0d:39:87:
54:11:93:3f:57:8a:f8:20:f0:76:80:52:3f:2d:46:95:ae:d6:
91:f7:20:42:d8:66:29:f7:e1:ee:28:90:5c:13:a0:d4:87:e5:
0d:dd:dd:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:30:47 2025 by rpki-client