Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x6TS9okT6s5sn1CSvcfdIPV09Dg.cer
File: x6TS9okT6s5sn1CSvcfdIPV09Dg.cer (raw, json)
Hash identifier: RgZP+dF++TIqR2V72cA1ldMSUIhioFALm0GcBYC1fww=
Subject key identifier: C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B2408B7B2F265983EBB998C8F259A2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 202632
IP: 31.47.0.0/19
IP: 185.12.168.0/22
IP: 185.173.28.0/22
IP: 185.210.180.0/22
IP: 213.91.64.0/21
IP: 213.91.112.0/20
IP: 217.71.48.0/24
IP: 217.71.56.0/21
IP: 2a03:9240::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:40:8b:7b:2f:26:59:83:eb:b9:98:c8:f2:59:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c7a4d2f68913eace6c9f5092bdc7dd20f574f438
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d8:ef:ef:f6:19:b0:9f:cd:93:59:b8:35:99:
c0:ec:a9:78:f6:bb:b3:0c:46:0d:fa:da:ac:41:c0:
26:5d:a4:63:00:9f:29:14:ba:1c:40:af:a0:35:da:
0b:23:d3:39:0f:38:1d:4e:48:7d:64:04:6b:98:15:
92:aa:f8:bf:42:fd:5c:7d:da:ff:ef:3d:00:5d:7f:
27:44:cb:70:c2:5d:62:e7:b6:61:91:cd:76:1a:91:
56:c3:8d:1c:8e:ec:e5:49:07:26:31:5d:c2:e9:12:
cc:99:ef:e4:dd:1a:dc:c4:6b:89:ba:dc:4d:ef:86:
10:86:d8:be:92:c8:38:30:09:39:71:3b:b0:38:65:
0b:0b:0d:f9:15:9b:a4:ac:53:00:7a:a1:8f:f8:a8:
d8:f2:da:6b:ba:24:c8:43:3b:1a:c8:89:14:e9:29:
85:fb:ba:04:0f:de:98:2f:bc:52:5e:a3:c0:2d:d6:
ee:ad:52:f8:69:1f:e8:2b:45:6f:02:72:8d:5a:14:
91:87:d2:e4:fb:3a:62:b9:68:e8:a1:9b:bb:9e:ad:
c9:95:5c:f8:ab:8a:92:3d:99:9a:18:f2:8f:7b:4a:
b7:6d:41:c2:a6:16:ec:19:22:f1:c3:cd:ba:2f:f3:
f9:4f:15:d5:1f:d6:be:23:a0:b0:30:18:84:66:90:
c6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A4:D2:F6:89:13:EA:CE:6C:9F:50:92:BD:C7:DD:20:F5:74:F4:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/f03ca1-726b-4de9-b419-f9a1bbc36845/1/x6TS9okT6s5sn1CSvcfdIPV09Dg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.47.0.0/19
185.12.168.0/22
185.173.28.0/22
185.210.180.0/22
213.91.64.0/21
213.91.112.0/20
217.71.48.0/24
217.71.56.0/21
IPv6:
2a03:9240::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202632
Signature Algorithm: sha256WithRSAEncryption
48:8c:c8:bc:10:c4:98:6f:ad:da:8f:7c:34:4a:15:71:86:cf:
c8:69:ee:1b:94:3c:08:1e:dd:ae:ef:aa:a9:63:e3:55:18:3d:
32:36:1d:b6:1a:7c:ae:ce:a4:04:91:a1:34:15:54:35:ca:12:
ff:d8:87:90:0f:45:29:86:59:76:ee:5f:3a:43:8e:89:49:5f:
bc:3e:8e:4f:62:99:1c:da:f3:16:75:d8:be:e3:55:b5:40:bd:
08:15:b7:f3:24:d9:95:0c:94:53:c7:7b:5e:a2:2f:e2:e0:b5:
40:bf:36:b3:f7:6c:95:17:34:6b:26:5c:15:2f:95:4e:e7:61:
c4:fe:6e:b8:88:b9:fc:bb:ed:52:77:ee:5e:bc:7c:e7:7a:31:
a9:14:97:c0:cc:3e:8e:cf:25:d0:92:8c:5a:72:73:1b:b5:35:
9b:f9:cf:4d:d1:96:fc:70:98:a5:f9:cc:ea:ae:42:27:5d:bf:
0b:fe:6c:6a:e7:7f:cd:59:06:6f:24:03:b4:dd:7d:c6:39:4e:
4b:10:7b:3b:6d:9a:71:0d:11:63:85:49:18:e2:31:ab:11:ba:
38:60:1c:5e:e8:62:7a:79:df:15:be:ff:61:46:5f:e3:9b:6b:
4d:38:fb:db:40:9d:df:4b:18:64:cf:c6:7d:db:9b:d6:5b:fa:
5d:d6:0d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:00:53 2025 by rpki-client