Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sDHiyoJMqNVWJAanAhrjwToUJdg.cer
File: sDHiyoJMqNVWJAanAhrjwToUJdg.cer (raw, json)
Hash identifier: ErCBrPg4uk6JObvhchnExi5ATSRbViaVwTCn83/HeXQ=
Subject key identifier: B0:31:E2:CA:82:4C:A8:D5:56:24:06:A7:02:1A:E3:C1:3A:14:25:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942825DB99BDECBA111634D5C71587D6F1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/sDHiyoJMqNVWJAanAhrjwToUJdg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:52:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206901
IP: 185.72.140.0/22
IP: 2a03:3fa0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:db:99:bd:ec:ba:11:16:34:d5:c7:15:87:d6:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:52:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b031e2ca824ca8d5562406a7021ae3c13a1425d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:22:e4:9c:35:ff:31:e8:97:4b:df:49:65:34:
bb:71:a4:0c:f7:37:e6:3f:f3:e9:b4:a3:00:d4:7a:
07:cf:35:d1:d0:16:bb:15:ed:c5:5d:34:c4:a4:09:
16:b3:95:18:91:52:43:1d:39:df:a5:36:ca:fd:26:
1e:15:3e:eb:45:95:2b:62:59:c9:72:6f:42:c5:40:
79:b0:2a:e0:6c:33:e8:9c:75:28:11:21:52:d2:a9:
b5:db:d7:ae:27:5e:b0:e7:1a:72:70:47:2a:eb:bd:
d2:16:30:a7:73:2a:67:54:a5:9b:15:33:a9:b5:29:
92:53:99:82:ac:db:10:f6:57:a9:14:b4:ee:1a:d9:
e4:2b:e6:96:ff:5b:c9:85:36:89:41:1b:07:e2:29:
66:92:2b:0c:a8:70:09:72:96:75:57:c5:a6:57:f2:
90:6b:c9:b3:11:fd:76:c7:bb:9b:b6:d9:bd:c9:f3:
af:13:94:ff:a7:22:7a:ef:1f:5a:b1:b7:3d:ff:a8:
74:d8:34:13:19:ab:00:37:c8:76:fd:d9:e3:b7:35:
c1:43:ad:a9:97:5a:4c:ef:a0:ae:51:bb:e0:de:ff:
8e:57:c8:58:29:50:44:f5:11:ea:f6:a2:11:fa:70:
81:be:78:af:7b:66:4d:01:67:0c:7c:42:88:1a:35:
5b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:31:E2:CA:82:4C:A8:D5:56:24:06:A7:02:1A:E3:C1:3A:14:25:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b7b933-7e80-4b37-a285-130e4dc015ab/1/sDHiyoJMqNVWJAanAhrjwToUJdg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.140.0/22
IPv6:
2a03:3fa0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206901
Signature Algorithm: sha256WithRSAEncryption
66:c2:ab:2d:20:37:ed:8a:c1:b1:dc:a5:1a:50:d7:e0:40:75:
c4:7c:64:32:e3:0d:38:22:60:77:c5:da:ae:24:fa:a6:5d:70:
f2:14:5a:38:30:bf:8f:8c:27:ca:9e:fb:ac:1a:5c:2a:78:a7:
78:dd:9a:22:b4:67:b4:60:9a:ae:b1:be:45:e1:4e:fe:3c:2a:
42:2f:be:22:e3:4e:e3:e1:e5:6f:d1:6f:be:e6:ff:70:61:25:
60:60:55:3d:64:f0:f6:11:9e:e3:01:20:26:f3:b9:41:d9:5c:
28:73:fc:b6:cf:10:52:b6:d7:36:f7:6c:ad:b7:de:3f:0f:1a:
77:37:97:ad:7c:a3:ae:a8:a8:a0:8a:07:0e:f5:7f:bc:b6:0e:
34:e8:f5:b6:fa:66:bd:c4:92:51:72:a8:4e:bc:7f:96:d7:4f:
9e:c6:2c:66:11:63:8a:46:fc:f1:c7:ae:a5:c1:3f:94:7f:d7:
66:30:68:0e:9c:cb:e9:3c:ca:98:e4:16:a3:7e:9e:39:b7:c7:
ed:26:e2:b4:06:55:d1:f2:10:8f:dd:62:62:29:63:65:09:a4:
e8:1a:0c:02:8e:14:e5:04:36:55:12:b3:35:3b:c6:80:15:8a:
82:00:39:75:b9:00:1c:f5:e0:c4:ae:9b:c9:3e:7f:e3:ef:73:
94:92:5d:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:19:17 2025 by rpki-client