Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/uwoTocnh3YTt5DKDSQvng4d1SpQ.cer
File: uwoTocnh3YTt5DKDSQvng4d1SpQ.cer (raw, json)
Hash identifier: 83jA4PGIwJaOH0Omk/OS7va9soDPw4R0A2iU8JS791s=
Subject key identifier: BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FDFD971FA87763AF6D26EF1DB7F8D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 208642
IP: 85.116.144.0/22
IP: 185.202.244.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 09:59:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:df:d9:71:fa:87:76:3a:f6:d2:6e:f1:db:7f:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb0a13a1c9e1dd84ede43283490be78387754a94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:83:73:19:56:83:82:eb:d4:69:de:39:33:b2:
1a:7d:01:b0:c5:ad:51:4b:90:b0:03:f2:c1:0a:56:
ed:e4:71:a2:cc:58:80:5a:7b:2a:ab:2c:d3:94:fc:
c6:14:57:d9:83:87:6f:1f:7b:0f:cb:fd:cb:29:6f:
4f:05:5d:cd:7f:2c:89:3b:91:a2:12:6a:6d:2f:75:
c1:76:4f:6c:36:26:d0:9a:f1:21:40:04:66:1e:df:
e0:74:c6:18:ef:23:97:5c:d8:ae:34:cc:e9:48:ba:
dc:34:16:9a:b7:62:b2:73:71:e5:55:ae:e0:56:59:
e9:7c:13:c6:7f:50:c7:08:03:b4:d6:a1:ee:07:a8:
c7:c5:2c:d9:1b:9f:ab:64:ad:bf:ac:89:53:82:ad:
b0:69:c4:d7:8c:3c:40:55:fc:82:53:3e:24:39:dc:
07:5b:f0:2e:d0:a3:39:a7:9c:16:16:ef:7f:52:37:
e5:78:31:3b:de:26:86:34:b5:24:27:2b:02:79:7c:
9f:23:da:45:69:49:ee:1c:0b:84:ed:27:93:43:a1:
93:8a:2c:5e:c1:9d:d3:43:07:fb:b1:b8:87:db:89:
55:5d:e5:31:9b:1b:0f:a7:75:b4:55:da:1e:7a:33:
0d:03:e7:3c:82:d5:9b:d5:a6:6b:60:a0:81:4f:22:
12:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:0A:13:A1:C9:E1:DD:84:ED:E4:32:83:49:0B:E7:83:87:75:4A:94
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f8cca-6b1d-4ae6-bc2a-f42e7c45935a/1/uwoTocnh3YTt5DKDSQvng4d1SpQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.116.144.0/22
185.202.244.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208642
Signature Algorithm: sha256WithRSAEncryption
4b:3c:3a:51:1a:95:95:6e:cc:60:5e:a1:72:30:30:49:0c:47:
23:bc:02:98:00:b1:86:75:62:c5:47:71:67:18:82:07:80:d8:
2d:2b:df:4e:f2:cf:c3:63:8c:c5:23:e8:7b:5e:17:ea:8b:bb:
e8:1b:97:c6:1c:29:ee:f5:3d:3e:95:48:d7:67:d2:57:1a:38:
4b:91:fa:53:8c:d6:24:0b:f8:91:09:23:a6:71:bf:eb:51:6b:
75:99:f5:c9:4a:f8:e4:d8:0d:04:65:70:66:2b:85:db:e4:96:
35:a9:63:11:81:7e:54:50:ca:12:46:35:1a:f9:23:61:84:9c:
51:8a:86:ab:15:ee:89:95:7b:34:24:57:19:c3:ba:7c:5d:ac:
2b:10:78:5b:b0:43:b5:ee:56:06:b0:41:b0:a5:03:ec:35:5b:
90:42:cf:7c:c5:f7:11:99:3b:94:7a:75:39:0b:b7:96:cd:78:
22:ee:87:2b:ca:b8:c4:10:df:36:e3:00:c2:fa:e3:5c:50:c4:
be:c8:8b:b4:60:d2:d4:e0:e9:5f:27:7a:2c:ff:bd:63:ed:31:
01:a8:77:03:34:eb:5f:c3:d0:f7:25:e7:c7:f2:c2:a8:49:74:
67:fc:20:87:bf:d6:c4:89:3e:ad:1e:b1:76:52:7a:9d:00:2a:
8c:26:7b:70
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 13 19:13:15 2025 by rpki-client