Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ilUqhuMbaeXVMg7egdNLsSikXO4.cer
File: ilUqhuMbaeXVMg7egdNLsSikXO4.cer (raw, json)
Hash identifier: wcx/m9dHVDnpTtWKHmhwas+Ygckj0NHhb54BA4RfwvA=
Subject key identifier: 8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194266A12075C90F92254592BA3A7F8024F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 09:47:53 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 60950
IP: 185.23.24.0/22
IP: 185.100.128.0/22
IP: 2a00:6960::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6a:12:07:5c:90:f9:22:54:59:2b:a3:a7:f8:02:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 09:47:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a552a86e31b69e5d5320ede81d34bb128a45cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ec:78:69:1d:30:ab:d0:14:1e:d5:d5:99:d2:
d1:e7:60:cc:a5:01:2e:d5:8c:e5:84:88:a6:c6:54:
f4:8f:72:af:9c:e0:13:ba:73:73:bd:f3:5d:d7:57:
70:75:52:c7:e4:b8:eb:33:4d:d2:1f:cf:91:f0:d8:
97:7a:4c:2c:70:38:a7:12:40:8e:db:ba:9c:c3:76:
e7:0a:bf:93:0c:7d:8b:ab:d9:72:09:0b:78:b4:f3:
5d:a6:bf:d6:a0:59:8e:58:aa:1b:94:ea:12:d7:b6:
c2:a3:7e:49:f9:16:1b:fc:9a:3a:f0:47:72:ee:ba:
ac:46:8f:a9:f1:e3:65:a8:12:6a:be:3b:d1:59:e6:
7c:ee:e3:34:34:34:78:92:13:9b:cf:b1:c2:6c:b0:
9d:e0:26:59:fb:fc:8d:e4:65:b2:9d:9d:33:3d:7d:
30:f5:95:ca:de:49:43:20:da:6c:c0:c8:82:cf:2f:
41:88:8c:df:73:87:12:11:94:3a:b2:5f:ec:ea:96:
3d:15:36:93:b0:06:4a:68:47:29:3c:19:75:b6:e8:
15:16:0b:d6:50:67:45:00:c4:5d:96:de:1b:57:cc:
91:60:97:b5:fc:5d:4f:aa:0a:66:b3:12:0b:6e:2f:
16:2f:e7:97:aa:36:45:da:02:11:69:76:b2:72:15:
f7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:55:2A:86:E3:1B:69:E5:D5:32:0E:DE:81:D3:4B:B1:28:A4:5C:EE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/e954b9-8738-4496-89ad-78a126bf0adc/1/ilUqhuMbaeXVMg7egdNLsSikXO4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.24.0/22
185.100.128.0/22
IPv6:
2a00:6960::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60950
Signature Algorithm: sha256WithRSAEncryption
15:b4:46:26:ce:09:82:74:c8:b8:82:ff:56:59:03:c6:d7:ce:
c2:cc:58:50:29:07:06:25:f8:7a:6b:d3:0d:59:14:08:b4:ff:
25:94:7a:f6:97:21:8f:c5:44:47:24:4d:d5:ff:7a:64:ff:73:
71:bd:f3:77:17:6c:73:b7:43:65:cd:e5:00:ea:f9:67:f9:61:
f1:36:14:b6:db:bb:a8:93:c2:62:f4:e8:47:66:a6:8a:24:22:
97:d5:84:a2:a6:21:e7:7d:0f:f3:1c:eb:2e:a1:9a:7d:6b:35:
b9:f0:de:98:56:6d:9c:e7:e6:d6:4b:77:fd:b1:c2:e2:9e:d8:
30:e0:d0:5e:51:3e:6d:78:65:d5:9b:f5:a7:dc:61:8e:fd:ca:
f8:0e:44:61:59:f4:c8:8c:c9:ae:b1:29:e9:c8:a7:24:40:22:
78:49:5f:6c:ab:02:7c:27:db:ef:27:6d:28:2d:be:a2:1c:83:
7a:08:3e:38:6c:92:d8:e4:23:e6:c4:94:c9:20:51:ff:a8:37:
ac:f3:e6:da:f7:8b:c0:64:c7:6a:9c:c2:17:04:4e:2d:73:c8:
40:9e:b0:8a:06:5b:e7:46:1c:e9:88:ec:ae:00:c1:34:66:1f:
38:db:80:c1:80:b2:ad:69:21:e7:80:d4:9f:55:7b:23:85:f3:
1d:a4:7f:43
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZQmahIHXJD5IlRZK6On+AJPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDk0NzUzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTU1MmE4NmUzMWI2OWU1ZDUzMjBlZGU4MWQzNGJiMTI4YTQ1Y2VlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ex4aR0wq9AUHtXVmdLR52DMpQEu
1YzlhIimxlT0j3KvnOATunNzvfNd11dwdVLH5LjrM03SH8+R8NiXekwscDinEkCO
27qcw3bnCr+TDH2Lq9lyCQt4tPNdpr/WoFmOWKoblOoS17bCo35J+RYb/Jo68Edy
7rqsRo+p8eNlqBJqvjvRWeZ87uM0NDR4khObz7HCbLCd4CZZ+/yN5GWynZ0zPX0w
9ZXK3klDINpswMiCzy9BiIzfc4cSEZQ6sl/s6pY9FTaTsAZKaEcpPBl1tugVFgvW
UGdFAMRdlt4bV8yRYJe1/F1PqgpmsxILbi8WL+eXqjZF2gIRaXaychX39wIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFIpVKobjG2nl1TIO3oHTS7EopFzuMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FhL2U5NTRi
OS04NzM4LTQ0OTYtODlhZC03OGExMjZiZjBhZGMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWEvZTk1NGI5
LTg3MzgtNDQ5Ni04OWFkLTc4YTEyNmJmMGFkYy8xL2lsVXFodU1iYWVYVk1nN2Vn
ZE5Mc1Npa1hPNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCuRcYAwQCuWSAMA0EAgACMAcDBQAqAGlgMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDuFjANBgkqhkiG9w0BAQsFAAOCAQEAFbRG
Js4JgnTIuIL/VlkDxtfOwsxYUCkHBiX4emvTDVkUCLT/JZR69pchj8VERyRN1f96
ZP9zcb3zdxdsc7dDZc3lAOr5Z/lh8TYUttu7qJPCYvToR2amiiQil9WEoqYh530P
8xzrLqGafWs1ufDemFZtnOfm1kt3/bHC4p7YMODQXlE+bXhl1Zv1p9xhjv3K+A5E
YVn0yIzJrrEp6cinJEAieElfbKsCfCfb7ydtKC2+ohyDegg+OGyS2OQj5sSUySBR
/6g3rPPm2veLwGTHapzCFwROLXPIQJ6wigZb50Yc6YjsrgDBNGYfONuAwYCyrWkh
54DUn1V7I4XzHaR/Qw==
-----END CERTIFICATE-----
Generated at Sun Apr 20 20:51:29 2025 by rpki-client