Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sMyV_ELz2Bkg9GSw8gyKUgPyHjA.cer
File: sMyV_ELz2Bkg9GSw8gyKUgPyHjA.cer (raw, json)
Hash identifier: 8HAJ0stg1oi3QDv6blMmszMe9mzqD4uF7egY2xAFZLA=
Subject key identifier: B0:CC:95:FC:42:F3:D8:19:20:F4:64:B0:F2:0C:8A:52:03:F2:1E:30
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C0FE889F835627ADF65F6F6B63A7A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/sMyV_ELz2Bkg9GSw8gyKUgPyHjA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 8925
AS: 9030
AS: 42008
AS: 212215
IP: 212.8.192.0/19
IP: 212.15.192.0/19
IP: 2001:ae0::/30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 09:59:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:0f:e8:89:f8:35:62:7a:df:65:f6:f6:b6:3a:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:47:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b0cc95fc42f3d81920f464b0f20c8a5203f21e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:62:4f:ae:b7:58:75:99:83:29:05:c1:07:81:
93:fc:6d:7e:63:ea:3d:3a:78:0d:f4:7b:9b:90:e0:
30:1c:fd:82:2a:83:33:dc:9b:d4:08:08:ea:d5:8c:
71:80:1b:aa:53:ea:6b:fb:ab:c6:c1:15:02:23:c4:
c8:13:f2:f8:58:0c:7e:f0:2e:79:0a:28:48:f7:cb:
03:20:cb:b9:26:b0:3f:69:0f:16:3c:18:50:ca:86:
21:62:2a:15:33:c4:0b:cb:e0:e4:7f:9c:8b:85:75:
b5:ef:56:33:5f:3c:fd:09:4a:01:59:b0:90:73:92:
a7:29:d6:fb:45:5a:0b:e3:7e:78:8b:5d:f9:2d:2d:
1e:b8:89:e9:49:31:2c:61:48:02:7e:7f:b1:67:86:
14:7c:42:94:f1:eb:3c:68:5d:df:ef:2e:8b:45:71:
dd:e2:60:e8:b9:2b:7e:b1:49:3a:98:33:b7:48:f6:
c6:6c:10:54:a5:e5:dd:9f:49:44:ce:f7:1f:62:eb:
8a:56:34:90:e2:9c:5d:6e:d1:fd:71:91:69:af:7e:
37:1f:84:3c:77:7c:d6:0f:a3:0e:77:f0:d0:dd:be:
55:e7:4d:8b:62:94:89:09:e7:ff:ec:ef:de:fa:7a:
91:03:b1:a3:b3:9a:95:3f:1e:c1:b8:42:4c:77:19:
fd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CC:95:FC:42:F3:D8:19:20:F4:64:B0:F2:0C:8A:52:03:F2:1E:30
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/e96877-1133-4b29-a6ba-8453c0f135d6/1/sMyV_ELz2Bkg9GSw8gyKUgPyHjA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.8.192.0/19
212.15.192.0/19
IPv6:
2001:ae0::/30
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8925
9030
42008
212215
Signature Algorithm: sha256WithRSAEncryption
0b:55:1a:14:13:7c:91:dc:9b:9b:c6:c5:99:61:76:40:a3:dc:
af:c9:64:7a:90:c2:9c:e1:60:ef:c9:1b:20:b3:4d:c1:94:b2:
42:21:f9:b7:e6:e3:71:b7:43:9b:38:3b:bc:02:2d:97:66:40:
1e:65:93:0d:34:71:16:51:89:ba:43:f3:12:b5:d5:0d:97:cf:
76:03:9e:8a:ab:46:68:20:50:8e:b8:1d:ff:3b:01:50:6e:27:
98:20:79:e9:b2:a4:18:1d:3b:8d:66:c2:cd:88:cd:73:f6:78:
b3:40:d9:32:71:86:94:21:05:a7:25:9f:62:a1:a9:84:d5:e0:
36:38:ed:63:d8:4a:99:a5:9b:ed:5a:8e:0f:dc:66:38:04:88:
a1:13:3b:ba:fb:0f:8a:6f:67:ad:02:7d:37:ce:d7:b2:df:58:
a9:83:57:b4:37:79:d2:05:e0:b6:ff:3c:19:bd:f8:be:19:7c:
f5:02:d9:7f:57:fc:ec:52:69:d3:c3:6c:8d:9a:41:7d:1a:06:
a4:99:0e:34:53:6d:bd:32:17:ff:96:f4:48:ce:b3:07:66:e3:
e7:9a:a3:ce:f3:ec:dd:e4:96:ea:ba:d8:82:c1:e1:c9:03:85:
19:24:0e:ce:2b:f8:bf:3b:95:58:72:86:c9:ef:82:49:61:da:
97:57:80:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 20:16:49 2025 by rpki-client