Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u8VfskrVVuBCAmUfbVqLJ9W-35c.cer
File: u8VfskrVVuBCAmUfbVqLJ9W-35c.cer (raw, json)
Hash identifier: vGbmTx6Mu9h6Bc0hD3DGEixJgMKKKwLCnVGjIytVf/U=
Subject key identifier: BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D9D7DB4AC695ADDCA9404B96D1096D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:58 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 213319
IP: 185.168.228.0/22
IP: 2a0b:f080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:d7:db:4a:c6:95:ad:dc:a9:40:4b:96:d1:09:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:58 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bbc55fb24ad556e04202651f6d5a8b27d5bedf97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8e:6b:4f:02:98:65:0d:48:31:69:4b:5c:ba:
dd:2e:dd:ef:03:ad:c6:c4:25:4e:3f:37:29:99:a4:
03:9f:ee:04:ba:52:b0:51:a0:a1:b6:08:be:e7:fb:
8c:be:31:e8:56:24:72:2f:66:21:b2:e9:61:d4:29:
a3:22:27:9f:a8:92:89:0f:a7:b8:11:31:8a:cb:29:
5a:99:a9:7d:34:af:b8:13:de:bf:4e:49:73:03:6f:
5a:41:8f:4d:a4:39:49:30:5b:af:ef:47:39:93:c6:
ac:41:5e:5c:17:8b:2e:f6:cc:8c:90:ac:95:05:43:
25:f8:a1:e4:65:1a:d5:93:4d:68:77:f7:c0:7c:e5:
a9:8b:1e:d0:ce:28:28:2d:89:10:a3:46:38:a5:dc:
38:54:94:28:26:05:5a:b3:89:04:63:c7:ff:35:1f:
ec:05:75:e2:8e:2f:91:e7:9d:19:de:88:a2:2c:2b:
1b:2e:b2:f1:f5:3e:05:e2:04:38:a9:31:f5:62:5a:
e6:ab:ee:fe:d5:4a:0e:69:c7:89:01:9d:d1:6d:a8:
ee:42:99:86:39:32:bd:0d:12:ee:12:fe:bf:6f:ee:
a3:61:da:4b:45:d1:2f:9e:22:31:50:a0:2f:8a:ed:
43:01:e7:4c:8f:48:36:7d:2f:e4:33:fb:17:54:5c:
88:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C5:5F:B2:4A:D5:56:E0:42:02:65:1F:6D:5A:8B:27:D5:BE:DF:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/46922f-5cb6-4d98-b4fc-93bd5e408f91/1/u8VfskrVVuBCAmUfbVqLJ9W-35c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.228.0/22
IPv6:
2a0b:f080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213319
Signature Algorithm: sha256WithRSAEncryption
6f:72:db:cd:a9:c3:11:e6:ff:97:cb:27:93:bb:71:95:be:2b:
43:46:92:e3:4d:89:c0:0a:d7:1a:49:cd:21:f6:68:f4:6c:88:
d8:6e:a9:e5:b3:3e:30:78:e8:24:a1:19:94:23:4b:a0:e4:4d:
02:0b:23:cb:6d:66:97:ba:04:0f:32:e4:ef:bf:54:4b:c7:71:
f1:07:47:1d:f6:37:2c:af:6f:16:09:a1:e7:e9:b2:79:46:d7:
b1:d2:5a:4f:db:a3:ac:f5:50:2d:16:c4:a0:e9:65:fb:cb:4c:
e8:5e:36:da:05:83:11:ee:e1:e6:16:f1:ac:05:2b:d3:1b:58:
e4:de:41:b2:87:c1:69:c0:62:35:05:d7:a8:21:23:a8:f2:bd:
94:85:66:0a:22:80:9c:81:55:b8:0a:2f:5c:f6:7c:76:75:bb:
2d:70:d4:2d:d4:52:7e:a0:91:c9:ae:d7:5f:89:d0:ef:4f:2b:
05:80:be:15:fb:9b:31:ba:9e:ad:7e:ec:84:07:80:02:97:16:
d2:53:28:1b:d4:ed:ee:cd:26:3d:c9:cd:47:6d:f3:07:d3:cc:
59:f2:b5:ea:f8:c5:80:bc:92:69:87:19:a4:c9:95:fa:9a:9c:
c8:87:59:46:e1:5e:d0:c1:e9:1c:66:f8:37:06:1a:cd:46:f2:
90:9b:12:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:28:09 2025 by rpki-client