Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tpQiR24a5eoNWOT4_fkfBfEC_vs.cer
File: tpQiR24a5eoNWOT4_fkfBfEC_vs.cer (raw, json)
Hash identifier: vr98f7A99W4Vzzz5n/faHEBA2rSSLEzCw/qzBylme/A=
Subject key identifier: B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942368D917ED134D86B65CA531D476EC10
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:47:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 60045
IP: 146.0.56.0/23
IP: 185.15.204.0/22
IP: 194.247.170.0/23
IP: 2a02:fe40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:d9:17:ed:13:4d:86:b6:5c:a5:31:d4:76:ec:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b69422476e1ae5ea0d58e4f8fdf91f05f102fefb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:43:af:fd:a2:77:bf:87:19:4b:48:7d:17:42:
1f:19:52:e2:44:40:c1:97:50:a8:fd:55:7e:a6:76:
54:48:09:f5:bf:cc:fb:f2:8c:74:5e:40:17:b9:8f:
30:7b:1e:1d:69:72:f6:8f:c2:4c:47:6d:2c:12:ca:
16:4e:35:b5:ec:33:10:8d:81:9f:57:0d:0d:f6:f7:
b1:d2:c1:6b:5d:91:ec:be:70:97:e8:8f:94:12:ba:
3a:77:15:e5:ac:92:7d:f5:aa:ae:f4:63:e4:76:d8:
07:58:b8:24:34:6f:8e:ff:df:a2:b0:79:9f:c5:6c:
82:d9:da:f8:d8:cd:18:d6:15:8c:02:65:bc:81:48:
92:b2:84:09:95:ec:13:b2:78:16:32:9b:65:18:f7:
ae:a0:84:c2:ab:e8:b6:6a:c7:8e:7a:98:10:bd:ca:
4c:9b:be:21:39:fa:6b:c8:0d:25:ea:34:19:c0:c0:
42:4a:3c:67:66:c1:e9:bc:75:03:3f:97:63:62:71:
1a:e3:91:36:44:59:37:60:02:1b:4b:a4:4b:5d:fe:
e9:72:e4:f7:db:b8:f1:63:1e:09:ae:dc:d1:1d:0e:
04:72:f8:e3:a9:e1:c1:8e:e5:d6:2e:ab:7d:a1:6a:
09:d4:9c:ad:0a:3c:ff:0d:42:2b:24:35:4b:21:13:
31:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:94:22:47:6E:1A:E5:EA:0D:58:E4:F8:FD:F9:1F:05:F1:02:FE:FB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e49afe-15ae-485a-af76-66516ffce750/1/tpQiR24a5eoNWOT4_fkfBfEC_vs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.0.56.0/23
185.15.204.0/22
194.247.170.0/23
IPv6:
2a02:fe40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60045
Signature Algorithm: sha256WithRSAEncryption
55:a3:e0:13:4b:48:70:b9:54:03:84:2c:fe:f3:6a:db:40:ef:
78:8d:ae:0f:6e:8e:60:e2:74:83:91:18:5d:e1:61:6b:68:54:
ef:12:c7:a0:a2:ca:d6:38:43:07:cd:bb:5e:0c:75:1c:a3:5a:
75:f3:3e:3b:51:86:2f:41:6d:c1:61:e9:11:38:ad:e3:e0:92:
33:74:c7:3f:9c:7c:e7:89:a9:bf:99:5c:91:85:bc:9e:e7:a2:
3d:ac:e3:21:02:90:28:b9:67:b3:c9:e1:d8:1f:11:4c:e1:0c:
c0:92:54:1f:32:57:a2:97:33:01:ae:f0:44:7c:3e:b7:b0:c7:
f6:38:ba:7e:eb:21:a1:d7:c7:d7:95:e3:c4:1b:b6:bd:d8:ef:
3b:4c:77:7b:27:d0:56:40:15:19:42:2b:68:0b:d9:67:8e:4a:
93:1f:0b:20:e9:32:40:5f:ce:4a:e4:31:eb:6b:93:a6:e4:be:
be:e2:f7:c1:b6:b7:38:e2:df:75:3e:d9:89:14:e8:2e:c7:16:
1a:ca:11:b2:b6:ac:36:7a:3b:8f:79:61:4d:2e:2a:f9:93:b9:
6a:6c:34:0f:80:a5:00:4a:aa:3b:48:f5:d6:ee:0f:11:63:71:
a5:3d:be:25:03:8f:d4:34:95:62:95:3c:1b:38:c4:cd:19:52:
24:5c:e6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:46:43 2025 by rpki-client