Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
File: tYaoZDYz6YdBEai881GKCQXyhgk.cer (raw, json)
Hash identifier: pC95NsYHK9b6XH5zWYdYGBsZuwjT9j3bi9NslMWTm/E=
Subject key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258F9990E8F8B58098560F93362F33A3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:49:15 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210175
IP: 185.160.140.0/22
IP: 2a0d:1580::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:99:90:e8:f8:b5:80:98:56:0f:93:36:2f:33:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:49:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b586a8643633e9874111a8bcf3518a0905f28609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:e8:ba:99:14:5e:23:f5:5e:be:6e:ec:ba:
f3:26:b1:ef:b5:d6:43:56:2c:a4:f2:bc:c4:fc:c5:
b1:d8:02:51:82:01:5f:c8:7b:93:45:f9:29:26:d6:
ce:5c:9e:78:c1:02:ae:13:f9:16:9d:4d:1b:18:b9:
c2:76:a8:0c:a8:ce:85:83:f3:39:18:cc:8c:90:75:
a4:6d:0c:75:83:d0:7d:05:54:d6:e4:2a:87:86:bf:
f5:d7:ce:0e:ff:7e:62:06:40:d7:c9:92:ad:8d:b7:
9d:20:c6:2c:b5:bf:b6:01:5c:02:8e:25:11:06:c6:
05:82:4d:85:43:76:69:2e:32:49:74:d6:03:74:a3:
3f:f2:59:f4:26:ad:7a:eb:57:12:e4:f2:13:ea:71:
8e:d7:8e:91:cd:e2:35:48:95:ae:5e:e2:8b:41:84:
83:fa:ea:8e:3d:c6:ff:2f:90:41:22:e3:65:8b:d6:
7b:1c:2f:a8:44:03:9a:87:42:77:91:d2:42:b5:05:
86:d0:bc:95:c2:4a:7d:f1:46:3b:b2:b0:a9:fc:5d:
ce:75:cf:06:5b:1b:1c:e4:9b:f9:b3:13:19:ce:f6:
71:93:9d:c0:39:57:99:db:0d:b0:49:69:2e:a5:0a:
ce:0f:0a:d6:e8:51:1d:6a:5b:3d:df:07:ba:8b:c0:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.140.0/22
IPv6:
2a0d:1580::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210175
Signature Algorithm: sha256WithRSAEncryption
3b:91:78:cd:cb:53:7b:ab:bd:c9:67:a4:f9:f9:ac:b2:4a:cc:
0b:de:b2:60:2e:f3:f6:07:a3:58:38:5b:44:b5:c4:23:52:80:
e9:12:7f:51:b0:65:dc:4b:20:0b:c4:4b:98:42:83:14:5b:22:
cd:3c:92:49:ff:14:f8:03:fa:a1:39:3a:7d:32:6a:a6:1c:45:
69:29:0f:e4:91:42:a7:9e:6b:73:72:35:65:50:9d:ad:e5:4f:
c6:b8:71:e4:f2:4d:c8:c4:d4:a2:33:54:d6:aa:c2:09:6d:44:
c5:02:a4:32:43:06:78:fe:e6:fe:69:32:74:e7:6c:9f:78:cc:
b1:be:3b:91:dd:1a:e9:0a:30:80:c8:83:7c:02:0a:23:7b:75:
2d:ae:fa:e1:fd:71:04:af:80:bf:e6:87:eb:72:5d:bb:ca:7d:
82:83:c4:2b:97:c8:d5:03:63:48:5f:96:0b:9f:6f:96:fd:2b:
5b:e5:21:5b:0e:ef:4b:d4:6a:93:bd:4a:27:13:07:5f:a0:5b:
fb:98:66:8f:ce:f2:ab:4b:15:d7:a4:42:d9:cf:d6:33:bc:55:
85:85:c7:fc:b2:99:e2:e4:98:38:33:da:6a:67:4e:8f:95:08:
c9:81:54:72:05:8d:ef:97:09:80:39:82:a3:66:16:23:81:d3:
2c:09:09:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:48:03 2025 by rpki-client