Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/w98u83AH1U-Gu6J1c9M61pXJ7lw.cer
File: w98u83AH1U-Gu6J1c9M61pXJ7lw.cer (raw, json)
Hash identifier: oo4F/vhdfGHva+gLRjt3NcasA1NDVHmSrbTIOgEHZ+s=
Subject key identifier: C3:DF:2E:F3:70:07:D5:4F:86:BB:A2:75:73:D3:3A:D6:95:C9:EE:5C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B1ECEEAF409E81FEDE624AB40630F6
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/w98u83AH1U-Gu6J1c9M61pXJ7lw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:16 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 198187
IP: 91.231.23.0/24
IP: 91.232.62.0/23
IP: 176.100.192.0/21
IP: 185.174.112.0/22
IP: 193.42.240.0/22
IP: 195.170.190.0/24
IP: 195.182.10.0/24
IP: 195.182.15.0/24
IP: 195.182.19.0/24
IP: 2a0b:9d00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:ec:ee:af:40:9e:81:fe:de:62:4a:b4:06:30:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c3df2ef37007d54f86bba27573d33ad695c9ee5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:8d:df:90:17:83:d5:bd:f5:75:25:5c:a9:
f9:4b:58:b5:31:80:d0:00:12:73:7c:ec:43:7b:60:
2a:a0:d9:4d:10:03:a3:45:b5:dc:da:9c:53:4f:93:
14:4c:9f:9f:98:12:5c:79:c2:a5:fc:cf:9e:04:a5:
7e:08:60:67:87:77:c6:52:47:6b:0c:89:75:04:42:
e0:8a:3e:95:0e:29:43:31:c6:87:31:a2:e8:b3:9a:
fe:e0:1a:7a:59:7c:5e:99:fa:0a:b6:f1:f0:ef:30:
d9:2c:91:08:a4:7a:f6:ba:d0:bb:38:11:85:e8:c5:
4c:4e:6a:1f:c0:7f:13:fe:fb:94:ed:d0:6c:aa:7d:
e1:81:5e:02:f1:4b:f4:e9:7a:fc:07:f0:9b:c7:7a:
b2:e7:3b:68:f9:7d:61:c3:cd:e8:06:f7:f0:b5:a4:
dc:89:33:e1:9a:c7:5d:55:e6:20:55:ea:51:e7:3c:
73:f1:82:0c:a7:df:90:e9:db:49:54:a1:60:a8:7a:
e0:9a:8d:28:a4:90:cb:85:dd:08:9a:a8:be:f4:ff:
82:25:1c:3c:87:59:a9:f8:eb:ed:8f:fe:ae:2b:6d:
a0:25:28:dc:32:34:0e:d8:1f:8e:71:cc:9d:47:cc:
a8:b2:ec:5f:41:b3:be:2a:1a:03:db:66:c4:2f:f8:
80:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DF:2E:F3:70:07:D5:4F:86:BB:A2:75:73:D3:3A:D6:95:C9:EE:5C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9a97f0-50b6-4844-89d4-23a276a428ab/1/w98u83AH1U-Gu6J1c9M61pXJ7lw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.23.0/24
91.232.62.0/23
176.100.192.0/21
185.174.112.0/22
193.42.240.0/22
195.170.190.0/24
195.182.10.0/24
195.182.15.0/24
195.182.19.0/24
IPv6:
2a0b:9d00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
198187
Signature Algorithm: sha256WithRSAEncryption
1e:16:28:ec:cf:2a:ea:e5:70:74:2f:4e:f2:73:6f:1d:c5:9d:
3e:6c:9b:3e:a2:cd:e2:1d:3a:dc:bc:7d:f2:88:a4:65:40:3e:
cc:83:c8:25:c6:52:75:d6:2f:e5:2c:9e:33:11:2f:6a:7f:be:
55:df:32:8a:24:d0:df:04:9d:89:84:a9:62:cd:70:9e:90:51:
f1:68:01:ab:32:9e:f9:1e:dd:14:ed:e9:f7:9e:3c:de:c9:14:
2f:7b:83:62:2e:98:ae:9f:3e:6d:2d:19:44:6e:fa:4f:88:89:
93:cb:30:98:56:e0:43:05:4e:4b:6c:35:c8:af:9a:70:dd:61:
06:31:b7:c5:1d:2f:f0:d3:92:5c:ac:9f:31:39:14:1a:92:a4:
43:f9:85:90:36:0a:86:f0:f7:7c:ee:09:34:17:99:07:2c:a8:
c8:6e:24:4a:bd:7b:5a:23:5a:12:b2:0d:ff:bc:76:16:fa:e2:
64:66:fe:76:e9:cc:4d:a0:79:cf:68:11:02:fd:2e:10:73:54:
c1:9c:48:93:a4:49:69:11:9f:60:5c:6a:63:11:94:8a:a9:f9:
da:bb:7d:e8:bd:c9:66:1d:31:1c:ae:33:84:e7:c8:9b:f6:14:
85:fc:f2:92:65:d2:0b:f7:4c:be:c0:7b:3f:cc:a3:e1:81:2a:
bc:1d:88:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:13:43 2025 by rpki-client