Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer
File: u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer (raw, json)
Hash identifier: q1IO5T9XPFoXxsEETS1t6B2d1Ox/sBn+7MMS777FVQ0=
Subject key identifier: BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D99D244EB7488AD1B76D58A23F0561
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:43 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 16145
IP: 80.87.240.0/20
IP: 185.150.192.0/22
IP: 2a04:f2c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:9d:24:4e:b7:48:8a:d1:b7:6d:58:a2:3f:05:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bbf3a257f99528c3a924d269d1af438185c2006d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:68:2a:c3:e5:7c:69:30:1c:b9:80:bb:f6:dd:
e0:69:67:f4:0e:f3:87:fb:ab:28:77:93:cf:2a:a8:
5d:b0:0e:c9:3e:cf:3f:bc:48:dd:52:b1:b5:cb:87:
76:c9:98:35:ab:49:6c:e8:f5:9d:e5:47:53:22:e6:
bf:3b:6e:a1:ea:6b:e4:6b:6c:7f:3c:07:0b:9d:9b:
d9:30:3e:cb:07:87:e1:86:e1:98:f7:98:88:2d:c4:
f9:91:34:10:38:60:e2:68:83:84:2f:ac:4a:53:fd:
d8:11:00:72:65:49:18:f2:5b:af:31:2b:87:fd:40:
34:e0:ca:df:24:1b:18:27:85:f2:ea:b9:e0:92:18:
01:cd:73:5a:8d:7e:0e:f1:8d:3a:ee:8e:29:2b:19:
8e:b2:0d:aa:1c:36:bb:14:09:d8:a9:ac:93:81:25:
a3:21:5d:e1:1e:ed:58:05:33:05:d1:7d:67:8f:7b:
64:59:87:3b:84:11:61:b1:13:70:db:71:81:e5:e7:
fd:19:fa:ee:29:14:1a:cb:af:fa:6d:80:5f:d5:16:
2e:37:55:a4:64:f1:b1:19:31:6c:a5:3a:30:b7:b7:
61:00:35:a8:f3:0b:e6:df:06:bb:cd:7e:36:41:d5:
08:8e:03:75:b6:33:a4:ea:d0:d1:d7:76:e6:fe:52:
f8:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.87.240.0/20
185.150.192.0/22
IPv6:
2a04:f2c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
16145
Signature Algorithm: sha256WithRSAEncryption
52:66:f3:d2:e8:8b:5e:be:5d:39:5a:5f:60:01:6b:d6:df:84:
25:27:25:3e:e0:92:a9:9a:e5:88:51:55:bf:97:4f:9d:54:4f:
63:3e:02:22:93:a7:51:14:83:d8:42:3d:da:0c:61:38:ac:80:
87:e6:53:05:c4:56:12:2e:49:25:31:2b:d4:b2:44:74:40:a0:
29:0f:9b:12:ef:06:f6:4d:c8:4e:d7:0d:50:1b:35:7f:ea:a9:
4f:9c:91:d7:2a:b8:5b:b0:e2:54:c0:49:9a:95:76:e2:3f:37:
74:8c:00:39:19:5e:e6:db:c5:fd:d9:c6:9c:86:ab:70:e7:12:
d1:ee:b9:df:e7:3c:6b:43:d1:21:eb:9a:05:4f:d1:4d:b0:e1:
08:f5:82:f8:0d:9e:f0:b6:c4:e0:c2:ce:9d:eb:8a:7f:86:52:
09:ce:f6:5b:5f:a9:a7:51:02:7c:5e:e2:d8:0d:bd:c2:9a:60:
6e:21:b5:a0:90:89:7d:36:29:92:8a:37:af:31:fe:44:6b:b4:
df:af:fc:c4:07:c9:59:d5:4d:96:99:1a:a6:74:54:cd:54:43:
d8:e5:05:59:a2:a1:c8:40:1a:cc:e4:12:53:9a:3c:61:43:29:
ae:b2:d7:b7:2c:86:a3:36:b4:bb:98:b7:6b:e2:84:a6:e5:9c:
14:39:15:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:42:44 2025 by rpki-client