Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zxhBQM0aIj9ji3mW9UifSF2O5ic.cer
File: zxhBQM0aIj9ji3mW9UifSF2O5ic.cer (raw, json)
Hash identifier: Loe6pdJ7a8ot6kHr2aHP4JkjiilbBKcu0sQnAFK0q/4=
Subject key identifier: CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019661EE895BFAFF7A1A7A082806DF8A4FA8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 23 Apr 2025 09:15:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 215457
IP: 31.128.56.0/22
IP: 2001:67c:1848::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:61:ee:89:5b:fa:ff:7a:1a:7a:08:28:06:df:8a:4f:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 23 09:15:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cf184140cd1a223f638b7996f5489f485d8ee627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f1:7c:2d:39:dc:75:8b:3b:e1:25:20:2a:e8:
65:12:de:3a:af:62:ef:d2:76:bd:a6:88:88:17:12:
cd:0d:f5:cb:a7:d2:32:a4:b2:9b:1e:3e:44:6a:68:
17:9c:aa:ec:ca:11:7b:70:5a:43:aa:67:64:72:10:
e1:ae:83:d0:46:da:8c:4a:fe:c9:55:8d:26:ce:58:
ef:43:66:5c:b8:b2:f7:e2:db:12:f0:54:e5:e6:ed:
b2:26:61:fb:19:da:f5:73:64:62:03:9f:41:c0:ba:
08:eb:0e:3a:ce:a3:43:c5:3d:e2:26:5b:11:78:ec:
32:b2:ae:02:ea:da:09:0c:5d:c8:8d:17:38:76:06:
3e:9f:68:f8:85:4f:80:9f:96:18:1d:af:90:7c:84:
40:15:bc:43:05:4a:78:34:20:4e:8b:2e:77:87:a1:
93:eb:24:6f:1e:83:bd:54:3d:55:0c:c8:72:e2:7e:
44:90:79:90:ee:43:1a:00:fa:32:21:43:9f:d7:9f:
6f:8b:44:30:1c:39:8e:d6:be:c1:67:71:b8:a3:45:
5f:a1:de:26:91:c3:b6:7d:5e:91:93:22:e0:ae:88:
44:1c:ee:65:06:b3:75:87:98:a5:c9:9d:25:21:b6:
38:9b:ab:bb:76:9d:a4:16:62:27:9b:6f:ec:af:97:
d6:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.56.0/22
IPv6:
2001:67c:1848::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215457
Signature Algorithm: sha256WithRSAEncryption
a9:23:fa:04:8d:17:2e:c1:40:c2:96:9d:5c:6b:af:c5:22:f1:
71:5e:10:5b:69:a3:78:00:68:72:d5:c6:cc:5e:e6:54:2e:41:
c0:61:11:99:b5:54:7a:a4:fa:bd:b5:96:06:6f:f1:37:2e:27:
49:14:8b:3a:f5:f3:0d:a4:b6:73:9c:cb:7d:63:f8:51:d8:c1:
a9:ce:d7:bc:34:10:3e:7b:5f:74:2d:4e:37:43:9c:8e:12:ca:
47:b8:2c:3e:b6:28:30:57:a0:d7:b6:40:23:5f:bb:1a:6d:59:
68:95:32:3d:f0:19:17:ea:ed:31:c0:a4:8a:d8:07:c4:9a:dd:
26:da:ce:b0:15:2f:8c:86:55:e5:30:1b:06:6b:06:40:ca:dc:
65:0e:12:11:ad:b7:11:65:85:d4:23:16:af:bd:b3:6b:8e:bc:
4f:b2:ec:15:bf:31:50:df:68:1e:4c:48:3e:2c:86:0a:bf:f9:
77:83:b7:92:ac:d7:dc:2b:86:d6:82:72:07:26:52:12:1e:b7:
92:37:ae:0e:44:31:13:35:58:9f:bd:91:76:26:89:dd:75:ee:
fe:d1:92:32:ec:e8:99:de:d2:23:19:c6:01:27:c5:51:45:a7:
03:ca:f8:ea:13:23:1e:fa:39:f2:c3:b1:1a:97:5c:ea:b2:3b:
76:c9:eb:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 04:20:00 2025 by rpki-client