Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
File: B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer (raw, json)
Hash identifier: 5OzPcaDZ9v2n0IBP30jJaqidCzs7BE7ZSEYs96G5DFE=
Subject key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258EC9DF3CDFCC211E65B6EA7673DD24
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:48:22 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50941
AS: 206192
IP: 31.169.91.0/24
IP: 178.18.192.0/20
IP: 185.21.4.0/24
IP: 185.21.6.0/23
IP: 185.33.61.0/24
IP: 185.88.132.0/24
IP: 185.93.249.0 -- 185.93.251.255
IP: 185.193.4.0/22
IP: 2a00:54a0::/32
IP: 2a05:c9c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 16:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8e:c9:df:3c:df:cc:21:1e:65:b6:ea:76:73:dd:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:48:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=079d9053717a16a76c10ae838f5625055be0481f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:ed:32:d8:68:28:6c:f5:b9:e8:8f:ef:d8:
c2:0b:53:af:9e:49:09:b0:59:28:63:82:d0:0f:ae:
73:78:9b:67:d2:1a:42:d2:9e:73:48:5f:00:de:67:
40:21:7d:06:fd:d1:9e:55:ef:5f:d3:b5:3c:db:a1:
26:87:7b:5f:4e:7f:a8:bd:ba:94:e9:15:1d:65:ca:
75:1a:05:cd:be:78:4e:50:6d:a9:6f:c1:7b:2c:60:
98:eb:e1:f2:25:c0:5a:58:f8:2e:d6:34:f1:07:73:
2d:47:ee:43:1d:ae:9a:d6:48:d4:2b:01:2b:90:ed:
db:65:ed:c7:2a:93:56:0c:1e:9c:b1:39:54:4b:27:
63:e7:b0:d6:4e:08:98:f4:89:7b:4e:f4:ff:0d:e1:
1e:00:c9:4b:67:09:83:97:18:44:b5:84:38:d3:c0:
5b:a8:ff:13:5c:6b:65:bf:3e:7e:46:28:b8:ef:65:
5a:2e:2c:6d:f7:f1:07:03:64:ef:43:02:62:6d:75:
d5:71:8e:90:d0:82:70:42:93:b1:94:0f:7e:4c:24:
29:b4:a1:87:62:d0:1c:3b:be:16:ec:63:06:ae:56:
12:28:a2:f4:0c:be:42:2d:c1:02:43:4a:c9:96:57:
72:ef:cf:f1:52:9d:58:60:b5:0f:2c:b6:a1:d7:2e:
04:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.91.0/24
178.18.192.0/20
185.21.4.0/24
185.21.6.0/23
185.33.61.0/24
185.88.132.0/24
185.93.249.0-185.93.251.255
185.193.4.0/22
IPv6:
2a00:54a0::/32
2a05:c9c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50941
206192
Signature Algorithm: sha256WithRSAEncryption
83:b1:2a:05:b3:9e:90:90:46:84:7c:53:aa:c9:7b:04:c4:88:
5b:04:3c:12:1c:7f:58:76:83:e0:2b:58:33:42:90:48:fa:c1:
55:c3:52:66:bc:14:36:2c:d6:ea:cc:29:35:8d:c4:15:fd:e1:
b5:5c:9e:52:cb:da:71:e8:7b:f9:72:77:3c:33:bd:f8:b6:ec:
35:4d:f0:a6:a3:4c:6d:f6:ed:2b:67:65:71:20:95:99:a4:92:
ff:e9:1c:c5:74:95:0a:2b:2a:ea:01:1e:68:d4:43:2e:41:93:
29:35:de:b2:8f:13:5a:5e:ea:6d:61:98:4d:bb:bf:1e:01:30:
2d:71:8a:4a:ee:b9:1f:ed:c7:61:fa:c0:91:e5:49:1c:f0:3c:
49:d3:72:fb:90:be:43:8f:ba:59:2e:f0:57:39:47:7e:99:99:
7c:ea:a8:f0:f7:1b:5e:b7:d1:89:99:99:66:cc:85:cd:51:d9:
19:1f:4a:ef:18:6a:62:f4:4a:56:d0:3d:d8:0d:a2:cf:27:b1:
4d:f1:69:04:b0:21:c1:31:57:0a:7d:2d:95:ce:c2:aa:ae:9e:
bb:7d:00:41:65:98:99:b6:94:f8:d0:31:89:2a:ea:92:94:91:
55:56:ea:31:6b:25:7c:26:00:d5:e8:56:96:0b:de:48:22:1a:
d8:e4:c0:cd
-----BEGIN CERTIFICATE-----
MIIF4TCCBMmgAwIBAgISAZQljsnfPN/MIR5ltup2c90kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDU0ODIyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzlkOTA1MzcxN2ExNmE3NmMxMGFlODM4ZjU2MjUwNTViZTA0ODFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAXtMthoKGz1ueiP79jCC1OvnkkJ
sFkoY4LQD65zeJtn0hpC0p5zSF8A3mdAIX0G/dGeVe9f07U826Emh3tfTn+ovbqU
6RUdZcp1GgXNvnhOUG2pb8F7LGCY6+HyJcBaWPgu1jTxB3MtR+5DHa6a1kjUKwEr
kO3bZe3HKpNWDB6csTlUSydj57DWTgiY9Il7TvT/DeEeAMlLZwmDlxhEtYQ408Bb
qP8TXGtlvz5+Rii472VaLixt9/EHA2TvQwJibXXVcY6Q0IJwQpOxlA9+TCQptKGH
YtAcO74W7GMGrlYSKKL0DL5CLcECQ0rJlldy78/xUp1YYLUPLLah1y4EfQIDAQAB
o4IC7TCCAukwHQYDVR0OBBYEFAedkFNxehanbBCug49WJQVb4EgfMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1LzY4ZDE2
YS04MmU1LTRmNGEtODczMC0yN2QwM2UzOTNmYjcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvNjhkMTZh
LTgyZTUtNGY0YS04NzMwLTI3ZDAzZTM5M2ZiNy8xL0I1MlFVM0Y2RnFkc0VLNkRq
MVlsQlZ2Z1NCOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGcGCCsGAQUF
BwEHAQH/BFgwVjA+BAIAATA4AwQAH6lbAwQEshLAAwQAuRUEAwQBuRUGAwQAuSE9
AwQAuViEMAwDBAC5XfkDBAK5XfgDBAK5wQQwFAQCAAIwDgMFACoAVKADBQMqBcnA
MB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDG/QIDAyVwMA0GCSqGSIb3DQEBCwUA
A4IBAQCDsSoFs56QkEaEfFOqyXsExIhbBDwSHH9YdoPgK1gzQpBI+sFVw1JmvBQ2
LNbqzCk1jcQV/eG1XJ5Sy9px6Hv5cnc8M734tuw1TfCmo0xt9u0rZ2VxIJWZpJL/
6RzFdJUKKyrqAR5o1EMuQZMpNd6yjxNaXuptYZhNu78eATAtcYpK7rkf7cdh+sCR
5Ukc8DxJ03L7kL5Dj7pZLvBXOUd+mZl86qjw9xtet9GJmZlmzIXNUdkZH0rvGGpi
9EpW0D3YDaLPJ7FN8WkEsCHBMVcKfS2VzsKqrp67fQBBZZiZtpT40DGJKuqSlJFV
VuoxayV8JgDV6FaWC95IIhrY5MDN
-----END CERTIFICATE-----
Generated at Mon Apr 7 00:42:18 2025 by rpki-client