Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/T9ZkbJPCl0eJ7O97REZW7mQWFyk.cer
File: T9ZkbJPCl0eJ7O97REZW7mQWFyk.cer (raw, json)
Hash identifier: ho75NMDKmn/J0sKAXN18G4C3IxFl1DYIiXzv4uUSV64=
Subject key identifier: 4F:D6:64:6C:93:C2:97:47:89:EC:EF:7B:44:46:56:EE:64:16:17:29
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D96E5A8473BF81A7DE1458FE08307B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/T9ZkbJPCl0eJ7O97REZW7mQWFyk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:31 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 25575
IP: 193.19.92.0/23
IP: 213.145.224.0/19
IP: 2a03:1000::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:6e:5a:84:73:bf:81:a7:de:14:58:fe:08:30:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4fd6646c93c2974789ecef7b444656ee64161729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6d:79:a7:0f:c1:10:89:e1:3e:f1:a6:13:b1:
b2:a5:df:cf:65:10:33:8e:0a:65:98:1a:0b:8f:a7:
14:a1:1b:8f:48:dc:ea:13:f0:6e:44:a8:7f:98:93:
9b:a1:94:04:cc:36:9a:07:56:2f:f2:fe:d2:d9:a4:
52:26:3e:b8:61:de:2c:c0:6e:29:07:b5:de:3e:bb:
97:97:ff:26:de:b3:2a:cc:10:50:ba:d3:e5:f2:c4:
78:6d:c9:92:57:28:7e:63:83:b2:ae:65:cd:fb:68:
13:76:de:ca:56:da:04:63:a0:ea:42:35:02:30:9b:
6d:5c:d3:6e:1d:2c:14:bb:cd:e6:dd:ed:ad:95:c1:
53:f9:f7:a1:d6:ec:06:d4:93:b3:c9:bf:f5:6c:8a:
a8:d0:f6:12:6f:d7:73:39:0c:cd:10:54:9f:57:10:
c0:bd:95:90:b1:51:06:d5:e9:59:93:3a:1b:b7:bf:
3d:3e:38:99:0f:2d:d2:8d:93:b2:d4:ee:05:55:02:
1b:63:78:e0:7b:25:64:af:77:90:28:68:a9:28:21:
a5:bd:bb:c5:ee:c5:8a:fc:5b:6f:fc:9f:6e:9f:ff:
c6:0d:cc:24:f0:e9:23:e3:b6:16:aa:23:c5:10:66:
a9:05:7e:1a:b4:f4:f7:52:2c:53:33:cf:cf:f3:d0:
ef:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D6:64:6C:93:C2:97:47:89:EC:EF:7B:44:46:56:EE:64:16:17:29
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/33816b-145b-47f8-85fa-76a5385c515a/1/T9ZkbJPCl0eJ7O97REZW7mQWFyk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.92.0/23
213.145.224.0/19
IPv6:
2a03:1000::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
25575
Signature Algorithm: sha256WithRSAEncryption
7c:3e:68:16:9f:aa:fa:01:66:06:4c:37:fe:d0:c8:c5:31:ab:
5d:93:26:3c:97:8c:f2:e4:ed:4e:cd:a0:9c:da:76:56:ea:0d:
9b:1d:fd:3d:55:5f:44:e8:2e:43:3d:2b:92:63:b0:d0:fe:4b:
82:b5:f4:2c:2a:88:3c:7f:1e:af:d5:99:02:28:dd:5c:ea:c4:
53:8f:00:10:7a:a2:56:c8:78:aa:59:5a:22:5d:91:7b:d0:fc:
95:7d:81:eb:34:43:79:f1:46:d7:d7:70:bd:d2:da:63:73:6e:
c0:4e:eb:25:02:04:5c:04:a6:04:0a:1d:45:d3:aa:e8:59:af:
a4:c4:78:01:98:da:f4:a6:b4:6d:8f:da:6e:66:5f:25:2f:9b:
db:bd:9d:3f:a4:dd:ca:51:e8:ae:46:03:38:f7:51:cd:72:30:
b4:86:4a:f6:2e:30:54:d5:f5:ff:a3:97:77:ad:5b:c4:0e:93:
29:13:bf:06:5a:e9:5c:ee:b5:ba:84:7c:97:27:23:16:9a:8e:
36:da:1e:b9:03:4a:2c:1c:b1:3b:81:cc:a5:51:30:32:4b:74:
66:71:3b:ed:b6:c4:d1:81:cd:35:fa:1c:f7:34:eb:5c:e4:a4:
83:d2:83:33:ea:15:a9:d0:68:e8:fa:d3:df:fc:d6:0a:d4:6d:
10:dd:e7:f5
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAZQm2W5ahHO/gafeFFj+CDB7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTE0OTMxWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmQ2NjQ2YzkzYzI5NzQ3ODllY2VmN2I0NDQ2NTZlZTY0MTYxNzI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu215pw/BEInhPvGmE7Gypd/PZRAz
jgplmBoLj6cUoRuPSNzqE/BuRKh/mJOboZQEzDaaB1Yv8v7S2aRSJj64Yd4swG4p
B7XePruXl/8m3rMqzBBQutPl8sR4bcmSVyh+Y4OyrmXN+2gTdt7KVtoEY6DqQjUC
MJttXNNuHSwUu83m3e2tlcFT+feh1uwG1JOzyb/1bIqo0PYSb9dzOQzNEFSfVxDA
vZWQsVEG1elZkzobt789PjiZDy3SjZOy1O4FVQIbY3jgeyVkr3eQKGipKCGlvbvF
7sWK/Ftv/J9un//GDcwk8Okj47YWqiPFEGapBX4atPT3UixTM8/P89DvbQIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFE/WZGyTwpdHiezve0RGVu5kFhcpMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M2LzMzODE2
Yi0xNDViLTQ3ZjgtODVmYS03NmE1Mzg1YzUxNWEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzYvMzM4MTZi
LTE0NWItNDdmOC04NWZhLTc2YTUzODVjNTE1YS8xL1Q5WmtiSlBDbDBlSjdPOTdS
RVpXN21RV0Z5ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQBwRNcAwQF1ZHgMA0EAgACMAcDBQAqAxAAMBkG
CCsGAQUFBwEIAQH/BAowCKAGMAQCAmPnMA0GCSqGSIb3DQEBCwUAA4IBAQB8PmgW
n6r6AWYGTDf+0MjFMatdkyY8l4zy5O1OzaCc2nZW6g2bHf09VV9E6C5DPSuSY7DQ
/kuCtfQsKog8fx6v1ZkCKN1c6sRTjwAQeqJWyHiqWVoiXZF70PyVfYHrNEN58UbX
13C90tpjc27ATuslAgRcBKYECh1F06roWa+kxHgBmNr0prRtj9puZl8lL5vbvZ0/
pN3KUeiuRgM491HNcjC0hkr2LjBU1fX/o5d3rVvEDpMpE78GWulc7rW6hHyXJyMW
mo422h65A0osHLE7gcylUTAyS3RmcTvttsTRgc01+hz3NOtc5KSD0oMz6hWp0Gjo
+tPf/NYK1G0Q3ef1
-----END CERTIFICATE-----
Generated at Tue Apr 22 11:43:28 2025 by rpki-client