Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x67yqz8unZrAH3J_cwr33x0EGA8.cer
File: x67yqz8unZrAH3J_cwr33x0EGA8.cer (raw, json)
Hash identifier: ZYvPPiAPjeM+txusPDQnqVnu+w7UsglYDfnI8NKVsgk=
Subject key identifier: C7:AE:F2:AB:3F:2E:9D:9A:C0:1F:72:7F:73:0A:F7:DF:1D:04:18:0F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5E4194B7EC6C24E706995305FBE31
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/x67yqz8unZrAH3J_cwr33x0EGA8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:19 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49106
IP: 46.150.160.0/19
IP: 62.122.192.0/21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:e4:19:4b:7e:c6:c2:4e:70:69:95:30:5f:be:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c7aef2ab3f2e9d9ac01f727f730af7df1d04180f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0c:da:1d:1c:4f:51:e1:e8:c1:6a:ba:f3:af:
b0:09:f4:13:95:cb:b7:89:de:74:97:8f:6a:92:69:
d6:6c:09:8b:8b:fd:01:07:84:ac:a3:57:27:36:59:
ca:0b:72:c5:bc:98:a0:6a:f6:b9:7d:13:27:e0:7c:
3e:d1:54:e4:a6:63:ca:a6:4b:0e:ca:0d:38:59:3e:
4b:96:e0:4e:f4:0c:3a:d8:1c:cc:0e:c9:20:1c:45:
fd:e6:0e:36:dd:2f:00:2c:9b:40:4d:31:d4:47:4d:
a0:a2:d0:9e:22:4d:a0:d9:f7:40:69:eb:58:1d:bf:
41:1a:0d:3f:3d:ee:57:a3:50:3d:7c:7d:9d:5c:ea:
3f:61:de:05:e3:2a:9b:03:0c:62:71:e3:4f:17:c4:
52:e9:c8:d0:89:b8:b1:c4:85:00:0f:b5:e6:00:77:
12:aa:42:d3:35:a5:2a:99:06:70:46:42:54:b1:fe:
9f:2f:d7:7f:ce:f2:69:cf:d1:49:8f:2e:99:17:a3:
9e:08:15:c4:a6:52:67:02:10:2e:0a:25:00:9d:e7:
d7:58:0b:ef:7b:68:e2:2b:84:49:8b:62:de:9b:ff:
5d:ef:ae:be:7c:5f:46:8f:b1:65:76:cf:6b:58:ca:
af:ee:c5:d8:99:03:fe:5c:18:c0:03:df:7a:a2:27:
0e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:AE:F2:AB:3F:2E:9D:9A:C0:1F:72:7F:73:0A:F7:DF:1D:04:18:0F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f34f2b-3662-41c4-8270-92ed2a000f1f/1/x67yqz8unZrAH3J_cwr33x0EGA8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.150.160.0/19
62.122.192.0/21
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49106
Signature Algorithm: sha256WithRSAEncryption
58:38:e4:7c:a1:89:4c:3e:86:2c:38:c3:b0:eb:84:21:5b:1c:
df:ed:2b:47:8a:9e:c0:0a:55:30:c1:23:d6:a7:57:f3:af:42:
e6:8e:69:e4:3f:00:1c:7e:95:79:36:f7:75:71:cf:33:c9:31:
4d:2f:86:de:e4:15:ef:33:de:a6:1b:2a:bb:ae:ac:3d:bc:6d:
31:98:de:8d:1e:0e:57:5a:aa:22:90:b4:23:f5:aa:d0:6f:89:
6d:a6:e2:5c:97:03:52:59:9c:3f:95:d2:27:ae:eb:6f:3b:f2:
f8:55:be:a3:7b:68:d0:57:15:af:be:10:75:0f:96:67:27:c4:
77:14:9d:7f:43:b5:20:34:23:91:e2:82:77:fa:e1:3a:10:c8:
95:26:a5:f6:25:92:ac:06:4e:75:8c:05:d2:6f:1b:0a:dd:2d:
bd:52:cf:5f:f2:26:d9:4c:94:ea:5e:bf:29:97:0c:e5:e3:3b:
4f:05:9c:27:39:6f:54:6b:e0:44:90:81:54:b6:b2:74:27:e5:
27:e9:b9:a8:e9:61:0b:e6:10:99:04:16:32:3c:22:80:e4:34:
0e:0a:2a:fa:13:b9:6e:c0:70:c4:53:4b:b3:c1:be:c9:42:37:
ea:04:93:e9:ce:1e:9f:7d:07:2e:6a:61:5f:49:b1:50:71:23:
22:05:a4:d9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Apr 19 03:44:01 2025 by rpki-client