Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yDh_A1sJ0rw5P39g12IdMAzJd9g.cer
File: yDh_A1sJ0rw5P39g12IdMAzJd9g.cer (raw, json)
Hash identifier: b7X0oat1qupRsoMAiBORML1zHO67BrxfjhytNHbMSgA=
Subject key identifier: C8:38:7F:03:5B:09:D2:BC:39:3F:7F:60:D7:62:1D:30:0C:C9:77:D8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5B5957D922EAA2A4587F8FEB72F70
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/yDh_A1sJ0rw5P39g12IdMAzJd9g.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:47:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 193.41.200.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:b5:95:7d:92:2e:aa:2a:45:87:f8:fe:b7:2f:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8387f035b09d2bc393f7f60d7621d300cc977d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:8c:b3:00:00:51:cd:19:3b:b1:3b:1e:7f:be:
af:fb:d3:57:8d:7b:dd:32:d0:9a:70:53:72:c1:d9:
36:7a:5e:e4:38:2b:49:fb:47:04:91:ef:cd:a9:7c:
ca:1c:a0:95:dc:c4:5c:1c:29:56:32:54:f0:e7:47:
37:8b:9f:7a:62:33:f2:95:9f:57:f5:95:80:ba:02:
f7:6f:70:76:e9:be:9b:2d:38:a6:6b:bd:bc:cc:90:
63:4e:02:0c:9a:77:5b:61:38:21:91:6f:a7:36:b0:
67:b1:2e:e0:76:2b:e9:e4:cf:1b:09:58:9d:0c:87:
73:08:90:be:27:80:af:3c:19:cc:03:7e:97:9c:6c:
73:0d:eb:67:ac:4b:a0:18:d2:12:87:05:96:aa:9c:
76:17:05:41:e6:20:13:2c:70:17:9e:39:09:d4:59:
4e:89:b5:bb:a7:b9:b8:fc:ec:0a:b4:88:c4:4e:04:
42:47:c3:16:db:0f:5d:2e:29:d8:ce:4f:f7:ad:94:
cb:17:33:99:36:51:69:b1:87:8c:85:37:dd:26:cd:
b0:46:7f:c7:5d:ef:a5:d5:d0:d2:36:e8:e3:db:c7:
94:d8:71:7b:06:85:30:72:ff:86:a4:9f:4d:74:8a:
1f:91:92:2d:f9:1d:cf:e1:1a:3c:55:77:f8:04:17:
93:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:38:7F:03:5B:09:D2:BC:39:3F:7F:60:D7:62:1D:30:0C:C9:77:D8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/fb090d-685e-4110-b171-c1c3c848912b/1/yDh_A1sJ0rw5P39g12IdMAzJd9g.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.200.0/24
Signature Algorithm: sha256WithRSAEncryption
90:63:0c:6a:fe:5e:ea:b6:12:1d:86:1b:a0:4c:d6:84:ee:2c:
fb:0c:24:b9:55:10:d5:0b:b6:36:38:7d:6f:99:86:f0:b2:72:
6b:05:ea:db:d3:27:c7:5d:ee:df:67:49:c2:d4:15:27:10:06:
e6:ef:f1:34:82:cf:cd:a9:0b:61:07:7c:14:69:89:1a:9c:9b:
f0:95:1e:ac:09:27:d6:40:d7:9a:bf:74:b5:b8:35:cc:90:5d:
b1:db:23:1e:9a:a7:0f:2e:cd:fd:5b:e4:8c:f9:ea:13:12:df:
d9:14:d6:28:60:a9:8c:1a:da:5e:2f:30:b9:43:93:79:0f:5c:
45:0c:23:fc:a9:14:54:f2:fc:0a:56:cb:2a:1a:60:b9:c9:78:
e8:ec:93:fb:9b:62:f4:8d:16:6b:8a:76:41:03:51:d8:63:f4:
78:80:e9:a0:dc:5f:f0:79:4b:48:cb:56:5b:b7:45:64:a4:8f:
10:7e:fd:d0:ba:ae:36:9e:ed:e1:d0:72:62:66:20:02:47:e7:
f5:44:c7:46:c7:28:cf:70:82:77:f3:0e:43:a4:5c:3f:b4:bb:
98:84:12:22:66:c8:86:3b:b5:af:9e:25:71:62:3a:5d:2d:d9:
73:a2:28:bf:62:17:39:b8:fc:b4:63:74:ba:67:12:42:f4:37:
7b:f9:83:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 03:34:57 2025 by rpki-client