Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sMmblRxqb2rcyGjYhalArfAFGhk.cer
File: sMmblRxqb2rcyGjYhalArfAFGhk.cer (raw, json)
Hash identifier: chNqlP9q6w+CwSok/BACXQunI9DMugsiSjnHgDQ5Ee4=
Subject key identifier: B0:C9:9B:95:1C:6A:6F:6A:DC:C8:68:D8:85:A9:40:AD:F0:05:1A:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266B13650D7A86EB16CB5011F16896C2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/sMmblRxqb2rcyGjYhalArfAFGhk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:48:59 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205565
IP: 185.213.244.0/22
IP: 2a0b:90c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:13:65:0d:7a:86:eb:16:cb:50:11:f1:68:96:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0c99b951c6a6f6adcc868d885a940adf0051a19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:0e:eb:53:7c:92:ee:e6:e7:d8:b0:ba:05:b4:
8e:36:25:2c:0a:5b:50:8a:6b:c3:95:c4:91:de:da:
04:39:25:bf:bd:9d:60:0b:fd:3f:07:89:95:bb:bc:
c9:00:9a:06:01:5a:2f:2d:40:1c:49:0d:27:1f:ed:
65:f9:b2:04:0f:69:8a:54:c2:25:86:04:47:d7:3a:
0a:a9:63:82:a0:e7:79:77:76:82:6a:f7:d3:ab:48:
7a:a1:22:89:2e:cc:56:49:5e:be:79:f9:c3:27:1a:
9a:51:9a:36:4e:50:43:ee:d3:37:80:eb:94:5c:3b:
04:fa:8c:3a:71:77:4a:07:a3:ce:df:0b:7f:03:49:
99:e2:89:b4:01:92:5c:1f:88:26:8b:4a:6d:d1:35:
c3:2e:d3:e4:7b:3a:31:bd:81:fd:f9:5c:15:22:de:
53:6d:81:f8:98:39:ea:ab:60:e0:ba:6d:e1:4c:30:
85:f7:ac:f7:90:44:5e:47:c2:16:40:fc:04:60:34:
b3:fc:19:b4:e6:95:1b:8c:dc:62:2f:04:b4:99:cf:
b8:14:9e:68:10:8f:2c:f9:cb:c4:64:d5:32:a3:57:
36:ed:c4:cc:98:11:87:2a:27:99:6e:c7:82:e1:24:
02:1e:33:06:de:d4:4f:3b:68:44:97:a0:e9:18:68:
67:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C9:9B:95:1C:6A:6F:6A:DC:C8:68:D8:85:A9:40:AD:F0:05:1A:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/0a7bbf-bf20-4114-972c-3e6956ed2c6a/1/sMmblRxqb2rcyGjYhalArfAFGhk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.244.0/22
IPv6:
2a0b:90c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205565
Signature Algorithm: sha256WithRSAEncryption
93:25:f9:c6:36:be:e5:bc:fc:26:49:60:1f:2c:91:3a:cd:51:
da:74:da:f8:5b:bd:f9:b2:74:97:0b:ad:b0:3a:f3:dc:52:8d:
ec:a4:3a:6c:19:b2:36:e1:7a:9d:f7:43:bb:ac:3d:6d:91:ae:
d6:44:1a:8f:cf:82:bd:97:fd:a8:c6:ec:de:87:bc:b3:df:5c:
5e:c8:cd:f6:7f:e0:ff:6d:b6:82:bf:38:a6:6e:a3:c8:0f:b6:
23:69:45:4f:4d:36:b2:48:08:30:51:48:56:1f:14:d3:c0:67:
b6:16:7b:26:71:88:c3:0c:57:ca:b6:33:2a:65:cb:06:be:a2:
a4:ab:4f:60:bf:0e:1c:e6:a0:e4:a4:9b:8a:5b:1c:c6:68:34:
d9:c2:86:98:b1:51:ea:83:e6:f1:aa:1f:4f:07:8a:5d:e1:ef:
38:71:c6:87:a1:32:ae:23:f7:b2:fb:3a:d6:97:40:6b:7a:a5:
4d:c0:28:7b:53:e6:c9:83:26:05:e1:ae:81:2f:14:dc:2d:4d:
11:b8:d1:5a:8f:36:38:64:f4:8f:39:1c:73:e3:e2:a7:73:23:
9d:d6:d9:38:ba:43:79:06:24:bd:4f:18:7c:85:16:11:7c:8c:
bb:09:74:1c:b4:28:79:28:8d:98:a3:bb:90:e7:68:07:12:1a:
70:47:b6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 04:14:48 2025 by rpki-client