Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer
File: vY-cA-dX89tRTKONFa2kUfoulhU.cer (raw, json)
Hash identifier: nc3jN6T353sJmq5CJSM9mMoafNRYp3K9z6guWWZxBlQ=
Subject key identifier: BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019422FB12AE9610090B417CAF037F5B7252
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 17:47:47 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 202072
AS: 204262
IP: 141.98.96.0/22
IP: 185.45.44.0/22
IP: 185.109.96.0/22
IP: 193.3.28.0/24
IP: 2a04:a0c0::/29
IP: 2a06:4f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:12:ae:96:10:09:0b:41:7c:af:03:7f:5b:72:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 17:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:34:8d:86:c3:35:9c:9f:56:61:1b:c1:0e:00:
7c:87:f1:30:a1:49:da:65:e2:c5:05:dc:95:02:26:
6f:45:93:f9:87:d5:38:1d:31:f4:6c:2d:5a:16:ea:
78:21:b8:fa:2c:2b:50:aa:cb:ef:b5:63:7f:98:89:
91:26:1a:1f:25:f4:85:fd:c9:d5:69:b3:5a:60:8a:
92:01:9a:3a:4a:b8:8c:b1:87:0a:08:57:15:4a:b3:
91:54:a0:17:29:fd:03:32:2a:1d:b9:ad:b6:82:dc:
39:d9:f3:20:d1:bf:0b:c5:52:e3:eb:79:dc:3a:26:
fa:7e:91:23:49:32:cb:00:5d:84:13:36:81:75:ec:
06:ff:10:13:29:3a:22:f0:3d:64:1e:fa:25:c0:85:
d0:e9:f1:11:70:a7:6c:0e:e6:14:56:5f:07:0a:b9:
70:d2:5f:ed:57:d4:ea:66:98:33:7d:f5:1b:a7:0c:
74:97:fa:5b:d8:dc:3a:48:4d:89:c6:4c:a4:ce:a9:
f6:11:61:25:16:d8:6a:bc:2f:47:90:4b:74:ec:21:
82:a4:d9:50:2b:c5:eb:17:2e:34:60:66:55:cc:e4:
a3:27:5d:2f:de:d3:1e:9f:b9:51:ca:61:e1:d7:1f:
d8:ce:9e:72:a4:f9:25:b1:bd:e8:6a:6d:d8:24:3e:
9d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.96.0/22
185.45.44.0/22
185.109.96.0/22
193.3.28.0/24
IPv6:
2a04:a0c0::/29
2a06:4f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202072
204262
Signature Algorithm: sha256WithRSAEncryption
12:c5:cf:06:a9:4b:1d:a1:9a:b1:bb:24:98:38:e5:38:e7:f9:
11:7b:36:98:e8:e4:fe:b5:7d:61:60:0a:89:c2:4a:aa:8b:28:
9d:2d:bd:bb:77:8d:c7:b3:f6:35:33:4e:e2:c3:ad:cf:24:bf:
2a:35:a7:86:3c:40:d2:75:ad:d1:f4:7f:6c:41:a6:14:25:c6:
69:d9:dc:6f:da:16:15:43:7d:69:dc:36:d3:b4:c8:24:ea:4a:
f2:35:8b:9f:18:2a:d0:a3:46:7e:80:0e:9d:0e:d9:a8:b3:d2:
5e:04:a4:d4:89:1f:37:1f:5a:61:f7:84:88:20:f9:07:52:39:
a8:ad:4a:7d:02:52:fb:e2:d8:30:ea:c4:06:fd:43:31:ea:3c:
96:c6:e2:19:fe:15:1c:3d:f3:08:51:e8:11:b0:85:88:bb:6d:
81:4f:c1:11:f5:7c:00:a6:07:fb:34:19:20:35:d6:42:47:60:
58:dd:fa:87:65:0a:2d:42:98:f8:0e:d5:44:e5:23:5d:17:43:
62:4e:7d:1c:e9:cf:f7:e0:2b:24:d3:3d:cd:67:a4:3a:1b:9d:
43:88:d7:77:dd:29:a5:6e:fc:e4:fa:c4:ae:47:0c:67:54:52:
29:11:5e:d4:a6:64:16:27:25:da:a3:9f:24:11:28:2d:df:66:
4b:d9:5a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 04:35:01 2025 by rpki-client