Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cIPC79QTNUG2RbZheEzd1JxInFs.cer
File: cIPC79QTNUG2RbZheEzd1JxInFs.cer (raw, json)
Hash identifier: LdcmjodHuTvBWCWEUmGogqi4TTHEWJVl0NfrRzjt7Yg=
Subject key identifier: 70:83:C2:EF:D4:13:35:41:B6:45:B6:61:78:4C:DD:D4:9C:48:9C:5B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019778BC78EF3364F9FD1F4E49E7D64D4917
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/cIPC79QTNUG2RbZheEzd1JxInFs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 16 Jun 2025 12:35:07 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 35316
IP: 193.47.78.0/24
IP: 193.239.222.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:78:bc:78:ef:33:64:f9:fd:1f:4e:49:e7:d6:4d:49:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 16 12:35:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7083c2efd4133541b645b661784cddd49c489c5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1f:b4:86:30:0b:77:ab:95:66:e6:a5:a4:25:
08:f2:b0:14:af:d8:01:5f:f7:ae:40:a1:3f:7a:a6:
6b:1b:5e:48:27:9e:90:31:ea:d9:5f:5f:a4:2d:b2:
06:48:18:3e:a0:8b:76:44:26:aa:4c:ba:2a:f1:bf:
3c:b3:41:5c:70:f8:fe:3e:5a:28:20:23:c5:ce:d6:
db:4c:83:8a:68:aa:64:6d:34:ea:2a:de:1f:17:1d:
e5:bd:eb:de:64:a1:80:53:6b:e9:c1:56:ed:4b:10:
cd:19:3a:3a:84:08:4f:74:82:fd:a4:7f:b6:8d:10:
61:47:20:f7:0c:51:ae:3b:22:c2:a2:fc:7d:b0:1f:
d3:d3:0d:e4:68:14:a4:76:64:56:91:56:d4:52:df:
80:0a:5f:f2:b2:05:d6:3e:95:04:ff:5e:10:56:26:
88:29:47:9c:5d:79:c0:a2:07:4f:57:4b:42:66:83:
ba:32:9b:e8:3b:9c:85:35:0b:eb:9a:38:b9:cb:b9:
1b:c2:d1:67:dd:5e:cb:7a:a3:b1:40:34:91:0f:71:
6b:a6:02:dc:d8:00:cb:85:fa:b1:6b:41:18:af:51:
6a:34:3d:e4:ae:4c:7f:7c:20:c8:b3:97:c4:37:c2:
ce:82:80:be:f5:4f:4b:8a:75:8b:18:65:a2:c9:c6:
7f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:83:C2:EF:D4:13:35:41:B6:45:B6:61:78:4C:DD:D4:9C:48:9C:5B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d36409-8845-4fa3-9dbd-9834171eb7d6/1/cIPC79QTNUG2RbZheEzd1JxInFs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.78.0/24
193.239.222.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35316
Signature Algorithm: sha256WithRSAEncryption
24:db:04:8d:f4:44:31:10:2d:22:da:fa:bb:0f:d3:cf:f0:79:
49:71:19:21:25:23:a1:59:9e:63:77:18:e5:41:27:22:48:a7:
05:73:42:80:b1:49:95:2a:86:3b:16:87:6e:6e:97:e8:d4:62:
18:93:5b:10:42:c7:1a:1c:8b:6b:b6:66:7a:a4:45:cc:a1:c9:
cc:f7:3a:5f:80:9f:54:be:32:97:09:c2:42:7d:d6:68:94:23:
c4:1e:ae:69:c6:4c:aa:36:2c:ec:7b:c7:cf:ff:88:eb:71:c5:
37:d1:e7:5d:45:10:6f:ca:c3:ad:a1:47:f4:4b:6b:d9:df:34:
9f:58:91:8a:58:b2:99:17:98:e0:db:4a:4e:e3:d5:1c:9d:07:
f4:65:da:a6:e7:a4:10:4a:08:bb:50:23:3a:2c:a8:51:77:86:
77:e3:61:f4:a1:90:f0:c2:e5:f8:78:17:97:98:79:68:23:bf:
25:7b:c0:63:88:b2:4a:2e:ca:f9:64:9d:f7:4d:93:34:ed:f4:
4e:1f:0c:f3:dc:29:71:b6:51:f2:a5:7e:c9:59:27:f7:f4:92:
49:14:80:5d:c5:8e:62:bf:b1:41:48:26:45:7d:8f:e4:be:3c:
d2:88:2e:bf:3e:93:0e:47:b9:a2:c7:87:5d:5d:56:be:a2:cb:
98:60:2b:e0
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 28 16:43:48 2025 by rpki-client