Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sGG9PMo9M2RaJ24PMiT_ie7kSFc.cer
File: sGG9PMo9M2RaJ24PMiT_ie7kSFc.cer (raw, json)
Hash identifier: W3fdt5Q+3rUUactbk6Fwe/VANfn0e/xrE2a5CE0+pLw=
Subject key identifier: B0:61:BD:3C:CA:3D:33:64:5A:27:6E:0F:32:24:FF:89:EE:E4:48:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942747B1FB50EF7A84A797D385A9D7CC0B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/sGG9PMo9M2RaJ24PMiT_ie7kSFc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:57 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200034
IP: 81.30.110.0/24
IP: 2a13:ee00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:b1:fb:50:ef:7a:84:a7:97:d3:85:a9:d7:cc:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b061bd3cca3d33645a276e0f3224ff89eee44857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:47:4f:c0:6e:b1:5e:3f:53:b9:09:65:23:60:
99:cc:c6:af:86:09:d1:0b:28:94:5f:95:cf:78:21:
52:cc:db:05:83:6c:43:19:90:cd:ed:8f:b8:e9:06:
23:cb:e2:9b:4c:6a:f5:2a:28:3d:fa:6d:5e:df:8e:
34:d5:00:12:ee:3a:0f:fb:cc:98:bb:fe:71:88:8e:
de:49:2f:51:4d:12:56:69:c2:32:75:b2:e1:54:91:
2b:00:f7:1d:4b:84:3c:41:09:1e:62:66:24:ac:28:
73:fb:63:53:d3:c2:88:34:10:ad:06:00:e3:ec:aa:
3f:0c:35:68:53:42:75:b6:e1:48:c6:8c:96:1e:84:
4f:13:79:84:de:71:a4:2d:f3:06:e0:69:f3:78:df:
cb:93:9b:03:76:36:0b:01:be:ea:3c:a8:11:68:af:
2b:16:0d:fb:72:d1:80:da:de:bb:99:21:2e:96:7d:
90:eb:08:b3:9b:fa:22:13:df:00:7b:0d:ad:fc:85:
d6:8a:fe:91:10:02:f0:3d:42:65:ef:00:06:5a:41:
5f:8f:33:9a:e8:aa:6e:45:72:d7:3a:e9:02:99:0f:
6d:3f:b8:a7:1f:d2:08:54:86:fe:a8:d0:f8:bd:f4:
06:39:57:0d:f0:d0:34:04:84:8c:00:11:5a:2d:fd:
11:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:61:BD:3C:CA:3D:33:64:5A:27:6E:0F:32:24:FF:89:EE:E4:48:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/657533-11ec-484b-be6a-32fda31186ef/1/sGG9PMo9M2RaJ24PMiT_ie7kSFc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.110.0/24
IPv6:
2a13:ee00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200034
Signature Algorithm: sha256WithRSAEncryption
a4:4a:45:06:05:87:78:24:47:f1:54:2c:ba:1e:c2:41:45:fa:
a7:9d:55:81:55:3f:63:26:35:96:c6:a1:c5:1b:18:3a:f5:ed:
13:e3:3a:7e:83:55:25:fe:63:44:7d:4d:dc:57:44:98:0d:0a:
86:d7:90:5e:01:34:3d:e4:40:3e:d8:e2:16:c9:11:1a:b0:32:
4f:a7:00:46:c2:0b:26:12:e2:7d:7e:d5:e7:13:67:74:a1:2e:
ce:03:c9:e8:fe:db:d0:fc:2a:8a:43:e6:04:06:51:59:c3:29:
08:26:7b:4d:82:1b:12:a9:01:f7:59:81:50:ba:ea:63:5d:1f:
8c:ab:8e:c1:e8:ce:04:a8:c7:aa:cc:07:04:4b:d4:a5:ab:7d:
08:34:b7:a8:75:7b:80:13:71:bb:82:fe:fb:5e:32:39:94:d4:
08:ea:f5:e1:62:9a:e0:53:2b:6d:fd:4d:ca:ef:e1:6a:6f:66:
66:00:50:32:f5:98:2c:cc:25:86:75:2c:bd:5c:58:27:c5:bc:
7c:78:13:49:56:05:13:a2:e5:33:32:98:53:47:e8:6c:02:ed:
40:31:1f:c6:2a:c7:12:de:ce:94:ea:c4:fc:e4:bf:13:b8:b4:
af:b6:89:46:d9:f1:d0:6d:3f:98:c9:83:db:98:0c:32:0f:86:
32:41:ce:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:56:04 2025 by rpki-client