Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vM1Spqf5VxcbFfe-XiCRZCg2lAE.cer
File: vM1Spqf5VxcbFfe-XiCRZCg2lAE.cer (raw, json)
Hash identifier: bP6ueOcObWFFokiT5/a1H9Z1VpbFeSKaJUlh/Un/AlE=
Subject key identifier: BC:CD:52:A6:A7:F9:57:17:1B:15:F7:BE:5E:20:91:64:28:36:94:01
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942824DD32F336541B482A7D192F760923
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/vM1Spqf5VxcbFfe-XiCRZCg2lAE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:51:32 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 5.252.124.0/22
IP: 45.87.16.0/22
IP: 62.68.0.0/19
IP: 185.218.168.0/22
IP: 193.35.216.0/24
IP: 193.36.3.0/24
IP: 193.36.42.0/24
IP: 193.36.74.0/24
IP: 195.245.0.0/18
IP: 217.140.64.0/19
IP: 2a09:48c0::/29
IP: 2a0e:ed80::/29
IP: 2a0f:8040::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 13:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:dd:32:f3:36:54:1b:48:2a:7d:19:2f:76:09:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:51:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bccd52a6a7f957171b15f7be5e20916428369401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:19:2f:95:7c:43:23:43:03:b2:df:5c:9d:14:
72:31:51:70:f0:18:90:5a:71:53:dc:9a:86:19:0f:
b4:9a:de:0f:b1:09:76:8e:fc:f8:7c:02:db:d1:4c:
bc:eb:a6:fe:a9:ec:b3:28:93:6c:57:34:05:69:cf:
19:53:e1:4a:1d:c6:97:96:49:cc:e5:70:17:75:f7:
2b:30:a2:ce:50:92:86:a9:55:fc:03:7a:c1:df:16:
af:8b:f6:26:07:77:e9:66:49:4a:25:11:f7:84:37:
9d:50:55:b3:7b:c0:9a:2d:7b:6b:40:6b:51:35:88:
78:22:2d:9b:b1:e2:d9:8a:04:d6:87:5e:af:db:85:
3a:84:79:d1:c4:9d:76:eb:1c:ee:f6:76:02:cd:cc:
41:cf:2a:4b:9b:8e:4f:98:20:b8:a4:0f:e2:e1:e4:
9e:bd:11:c5:b4:a7:cc:19:a0:a7:47:24:34:54:9f:
57:c1:15:a5:31:f4:17:73:9c:44:c6:25:18:af:7c:
7d:75:fa:e9:2e:12:e1:f3:b0:44:20:af:93:a1:2d:
3b:e5:ed:af:66:9a:b5:92:af:cc:a4:fc:64:18:b2:
2f:8f:c9:9b:7e:b3:d3:55:8a:68:46:b5:3b:99:e6:
ce:79:4c:b1:31:3c:ea:d8:50:3c:f2:c4:52:8d:44:
53:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:CD:52:A6:A7:F9:57:17:1B:15:F7:BE:5E:20:91:64:28:36:94:01
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/eeab9a-d207-4b2e-a525-e823e17bb5cc/1/vM1Spqf5VxcbFfe-XiCRZCg2lAE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.124.0/22
45.87.16.0/22
62.68.0.0/19
185.218.168.0/22
193.35.216.0/24
193.36.3.0/24
193.36.42.0/24
193.36.74.0/24
195.245.0.0/18
217.140.64.0/19
IPv6:
2a09:48c0::/29
2a0e:ed80::/29
2a0f:8040::/29
Signature Algorithm: sha256WithRSAEncryption
11:a1:56:73:b6:9f:56:10:d3:0f:39:33:60:b6:85:e1:af:6a:
c5:52:1c:ea:48:e1:45:e9:db:ed:15:d6:7d:2a:1b:72:73:56:
b8:ed:00:2a:33:d7:ed:1e:63:93:a1:a7:d5:f2:cd:a3:3e:7a:
9d:d2:ec:36:de:d8:5a:35:07:ff:58:1e:b9:14:83:21:21:a3:
d9:f6:fd:04:68:29:e4:40:c3:53:21:bf:f4:cd:53:0b:bb:81:
16:6c:ee:02:18:5a:02:07:90:26:e2:d6:26:90:ea:89:bc:93:
8c:0f:3a:b7:bb:8c:47:7f:18:29:2f:c5:75:f2:52:47:27:b0:
26:68:6c:7e:d7:05:d9:10:0c:4b:e1:6a:b7:22:33:7d:0e:bd:
af:dc:b4:b3:aa:fd:41:38:f5:39:13:a1:13:3e:57:0e:48:04:
87:d3:ee:81:61:e7:fa:05:10:22:6b:fb:2a:68:32:e1:9a:21:
09:5f:e2:42:d4:14:86:6b:7c:31:e4:6e:36:f9:bc:92:70:2e:
e7:fd:b5:e6:76:9d:2a:b4:4a:cc:fe:10:5f:d7:dc:66:14:3d:
38:b5:65:9d:20:a7:40:32:8a:94:7d:71:3d:ba:13:f3:ab:ea:
95:f5:8f:f7:5c:49:fd:f6:b5:71:66:d4:1e:9e:b1:dd:02:87:
93:85:ff:d5
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:45:04 2025 by rpki-client