Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
File: ti1M7HgzBZI-NJftiE8cRFtOePs.cer (raw, json)
Hash identifier: qfH/PRIZP41xpMnDq9Af0IT0of8mdF4tksmlQNUIh1o=
Subject key identifier: B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942825F807FA70FD20E692D343E593F801
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:52:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 41870
IP: 46.253.0.0/21
IP: 91.132.60.0/22
IP: 93.94.140.0/24
IP: 93.94.142.0/24
IP: 95.169.196.0/24
IP: 95.169.202.0/23
IP: 185.1.156.0/24
IP: 185.7.219.0/24
IP: 185.243.212.0/23
IP: 193.43.105.0/24
IP: 2001:7f8:e8::/48
IP: 2a09:be80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 14:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:f8:07:fa:70:fd:20:e6:92:d3:43:e5:93:f8:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:52:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:4b:6d:f3:e8:d7:3a:ee:7b:93:70:cd:3a:a9:
c7:da:50:0a:b6:c2:fe:07:04:57:3f:fc:76:1e:bc:
ef:39:91:ef:b4:06:0f:13:bd:f7:e0:e1:0d:02:f1:
e8:ea:79:7b:20:de:a2:fa:9e:14:75:b9:28:3e:dc:
3f:ee:48:29:f4:86:ea:43:96:86:b4:5b:da:72:00:
10:ee:95:2b:cf:5a:92:a6:a9:35:23:79:01:c6:76:
02:d8:f0:ec:97:23:2f:5b:ef:c6:70:14:51:67:ae:
35:59:09:ca:81:68:cd:3a:0e:4d:87:5a:d3:90:6a:
68:69:f4:67:a8:0c:61:5d:21:5f:0e:e4:26:02:a8:
4d:47:d7:ea:a0:91:39:33:33:3b:33:7c:c9:72:d1:
d2:9d:bc:31:69:35:fa:aa:c4:ad:f1:22:9d:8a:4e:
40:c4:ed:82:0b:7e:ac:f3:16:ee:00:fe:9b:4b:8a:
16:9c:a8:5b:f8:75:09:b0:7c:c5:a6:22:31:66:c5:
0c:d2:69:a9:28:f2:b7:91:a0:73:ef:6e:c6:e4:d7:
73:12:7b:ce:48:ce:b5:6d:0f:99:f6:f2:b8:5b:d2:
8c:70:16:70:0d:50:de:60:e3:d7:30:5c:2d:5e:79:
02:2f:fe:23:6d:4d:8a:d8:9f:67:6a:2d:e4:f1:33:
25:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.0.0/21
91.132.60.0/22
93.94.140.0/24
93.94.142.0/24
95.169.196.0/24
95.169.202.0/23
185.1.156.0/24
185.7.219.0/24
185.243.212.0/23
193.43.105.0/24
IPv6:
2001:7f8:e8::/48
2a09:be80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41870
Signature Algorithm: sha256WithRSAEncryption
a9:37:af:cc:87:c8:a7:eb:22:0b:92:4c:d3:cc:91:51:51:71:
6c:0f:07:67:ab:b3:a2:df:5a:dc:8f:e3:a0:35:e5:be:7d:ba:
2f:aa:59:56:87:ff:1b:5f:68:97:5c:2d:28:42:87:61:53:8e:
41:97:0a:65:d7:da:9b:51:32:9f:d6:7b:79:c0:10:a5:db:f6:
14:84:c5:bc:f8:45:5a:97:95:ca:c5:41:42:00:b8:eb:6d:b9:
bb:08:4e:8c:2a:02:26:84:36:4f:32:a1:08:f3:65:a0:ce:53:
06:41:91:71:4a:66:2e:65:00:f9:7d:e3:3a:c7:e9:8f:48:d2:
b0:48:1f:88:91:67:60:1c:f4:c6:0b:0c:1f:9d:51:44:37:1e:
9f:d8:59:b0:ef:ea:75:0e:60:a6:69:9c:26:1e:a9:28:00:90:
a6:6e:cb:0c:25:28:29:03:5a:e3:6b:a5:e9:30:91:41:94:44:
a3:24:28:f9:3d:62:ee:18:09:16:9f:9b:cc:ed:b4:08:12:3b:
f6:29:9b:13:f7:da:19:61:db:08:0b:8a:43:dc:a7:f7:74:b6:
54:56:eb:93:84:a4:54:a5:63:21:eb:9c:94:e3:65:46:41:69:
db:cf:8d:68:b5:b2:e0:fb:97:2f:e4:01:f1:88:31:57:dd:1b:
f6:1e:4b:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:00:13 2025 by rpki-client