Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/335xZknay_bqmGAjUU3-QN8afPA.cer
File: 335xZknay_bqmGAjUU3-QN8afPA.cer (raw, json)
Hash identifier: j1BdfARoMS9PHLwn0NP6mNseDXov5CTC/E2boeGuMKc=
Subject key identifier: DF:7E:71:66:49:DA:CB:F6:EA:98:60:23:51:4D:FE:40:DF:1A:7C:F0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019425FDDEC3A97E6461A78E18734CC785C9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b2/eeb757-5040-4bfb-a35d-a66289851cd9/1/335xZknay_bqmGAjUU3-QN8afPA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b2/eeb757-5040-4bfb-a35d-a66289851cd9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 07:49:42 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 207399
AS: 209281
IP: 86.62.20.0/22
IP: 185.74.223.0/24
IP: 2a04:7480::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:de:c3:a9:7e:64:61:a7:8e:18:73:4c:c7:85:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 07:49:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=df7e716649dacbf6ea986023514dfe40df1a7cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:1e:47:0e:04:76:b5:bf:31:32:38:f0:19:6b:
fb:d0:bc:84:7c:c6:d0:eb:67:70:d8:2c:e9:cd:b2:
a9:fd:16:ec:2c:13:85:c2:39:ef:e8:ff:45:63:be:
90:4f:96:94:3e:65:98:04:68:fc:76:50:f8:77:cf:
df:de:94:5f:40:7e:fe:fa:83:4a:70:18:79:73:08:
c7:cb:81:75:d9:7f:e9:20:f2:b6:d4:23:61:47:6b:
42:ac:15:e3:ff:14:74:b7:ce:a0:39:6b:b4:41:87:
71:5f:c6:5d:e3:71:0b:4b:1e:07:ed:5c:b0:ef:a3:
67:ee:a3:c9:67:45:b6:1b:18:95:ba:85:97:13:4f:
78:96:9a:01:4f:f1:e3:fc:6b:cd:70:73:10:50:6c:
0a:8f:6e:86:5d:a6:a8:cc:07:dc:1f:e7:48:e1:ce:
a9:7c:6c:d7:33:bc:c4:d8:2d:87:03:f7:4e:a4:17:
c4:73:93:a3:cc:74:cf:75:9b:ec:0f:01:e1:6f:99:
44:86:f0:4c:02:40:60:bc:7f:82:a5:6f:7c:18:5e:
6f:1a:4e:10:d0:36:6d:53:bb:cd:a0:24:c2:54:0f:
e3:43:b8:00:51:50:e8:47:33:37:d6:c3:e6:34:e9:
fb:23:d7:72:66:18:c7:f0:57:f2:15:c7:42:a0:89:
01:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:7E:71:66:49:DA:CB:F6:EA:98:60:23:51:4D:FE:40:DF:1A:7C:F0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eeb757-5040-4bfb-a35d-a66289851cd9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/eeb757-5040-4bfb-a35d-a66289851cd9/1/335xZknay_bqmGAjUU3-QN8afPA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.20.0/22
185.74.223.0/24
IPv6:
2a04:7480::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207399
209281
Signature Algorithm: sha256WithRSAEncryption
1e:ba:8d:09:53:50:1b:a7:3e:85:0b:81:ef:c2:bb:16:a7:0d:
3c:c9:c4:6c:ca:1a:82:18:21:99:06:99:65:9f:e1:e8:08:d0:
31:66:c1:48:15:43:49:53:5a:f9:42:ce:c1:62:2b:50:98:ad:
1b:38:23:ac:f1:7e:47:27:f9:5c:2a:2d:51:26:f3:2c:f3:7d:
76:b3:7e:c5:da:21:68:1d:31:dc:ea:5b:d5:04:fb:29:e1:5b:
3e:d1:0b:e3:3c:38:9d:29:df:c9:31:87:e3:98:4b:fd:78:e2:
d9:38:b8:be:95:67:4e:bd:91:d9:cf:6f:25:21:87:d6:35:f7:
fd:cf:ee:45:c1:35:03:b4:ac:90:87:dc:aa:32:cf:65:97:c2:
71:20:6c:7a:4e:7e:45:84:24:29:be:88:9b:e0:38:60:5a:b5:
70:e2:6e:9a:e1:9e:44:42:58:e3:e4:cd:72:9f:c6:fd:6e:56:
bc:31:29:98:d1:01:2c:45:53:0a:fb:23:a1:b4:5a:1e:75:7d:
c1:55:4b:9d:e9:0a:ca:07:05:39:0b:1f:14:f3:7f:ca:73:47:
e4:2c:31:bb:2e:ab:9e:0e:0e:82:26:0a:ee:6d:f6:43:ed:15:
62:0e:2b:ca:9d:8a:ca:de:ff:79:27:af:e0:c6:7b:d1:c2:de:
7e:5f:25:1d
-----BEGIN CERTIFICATE-----
MIIFrjCCBJagAwIBAgISAZQl/d7DqX5kYaeOGHNMx4XJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDc0OTQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjdlNzE2NjQ5ZGFjYmY2ZWE5ODYwMjM1MTRkZmU0MGRmMWE3Y2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxh5HDgR2tb8xMjjwGWv70LyEfMbQ
62dw2CzpzbKp/RbsLBOFwjnv6P9FY76QT5aUPmWYBGj8dlD4d8/f3pRfQH7++oNK
cBh5cwjHy4F12X/pIPK21CNhR2tCrBXj/xR0t86gOWu0QYdxX8Zd43ELSx4H7Vyw
76Nn7qPJZ0W2GxiVuoWXE094lpoBT/Hj/GvNcHMQUGwKj26GXaaozAfcH+dI4c6p
fGzXM7zE2C2HA/dOpBfEc5OjzHTPdZvsDwHhb5lEhvBMAkBgvH+CpW98GF5vGk4Q
0DZtU7vNoCTCVA/jQ7gAUVDoRzM31sPmNOn7I9dyZhjH8FfyFcdCoIkBUQIDAQAB
o4ICujCCArYwHQYDVR0OBBYEFN9+cWZJ2sv26phgI1FN/kDfGnzwMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IyL2VlYjc1
Ny01MDQwLTRiZmItYTM1ZC1hNjYyODk4NTFjZDkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjIvZWViNzU3
LTUwNDAtNGJmYi1hMzVkLWE2NjI4OTg1MWNkOS8xLzMzNXhaa25heV9icW1HQWpV
VTMtUU44YWZQQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCVj4UAwQAuUrfMA0EAgACMAcDBQMqBHSAMB8G
CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwMqJwIDAzGBMA0GCSqGSIb3DQEBCwUAA4IB
AQAeuo0JU1Abpz6FC4HvwrsWpw08ycRsyhqCGCGZBplln+HoCNAxZsFIFUNJU1r5
Qs7BYitQmK0bOCOs8X5HJ/lcKi1RJvMs8312s37F2iFoHTHc6lvVBPsp4Vs+0Qvj
PDidKd/JMYfjmEv9eOLZOLi+lWdOvZHZz28lIYfWNff9z+5FwTUDtKyQh9yqMs9l
l8JxIGx6Tn5FhCQpvoib4DhgWrVw4m6a4Z5EQljj5M1yn8b9bla8MSmY0QEsRVMK
+yOhtFoedX3BVUud6QrKBwU5Cx8U83/Kc0fkLDG7LqueDg6CJgrubfZD7RViDivK
nYrK3v95J6/gxnvRwt5+XyUd
-----END CERTIFICATE-----
Generated at Tue Apr 8 06:45:09 2025 by rpki-client