Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DS7-O2P6myp5MsW17IVLcMPxiDk.cer
File: DS7-O2P6myp5MsW17IVLcMPxiDk.cer (raw, json)
Hash identifier: 3XEiAgF85w240HjHKq50WSIE/gIe9bviQ0rzMIMN7U8=
Subject key identifier: 0D:2E:FE:3B:63:FA:9B:2A:79:32:C5:B5:EC:85:4B:70:C3:F1:88:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019541C0482C9AD9A8840231B7F33747B17A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/DS7-O2P6myp5MsW17IVLcMPxiDk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 26 Feb 2025 10:14:35 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 215120
IP: 91.227.33.0/24
IP: 91.244.70.0/23
IP: 93.157.138.0/23
IP: 93.157.142.0/24
IP: 193.178.186.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:c0:48:2c:9a:d9:a8:84:02:31:b7:f3:37:47:b1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 26 10:14:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0d2efe3b63fa9b2a7932c5b5ec854b70c3f18839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e2:4a:3d:66:69:d6:51:a5:96:15:f9:d9:b5:
6a:bc:7c:94:b0:4a:bd:7f:e7:04:de:96:62:ed:f6:
71:72:0c:6d:b9:88:3d:d9:43:8b:53:17:cf:b0:99:
84:66:5e:71:81:01:74:e6:ca:d2:45:83:ef:c9:76:
04:91:9f:e0:d6:fa:5c:29:10:9e:bb:44:37:a8:70:
8c:f8:a1:61:3f:38:77:e6:0b:e0:c6:f0:59:0f:12:
87:ac:73:59:d8:3d:b0:df:db:c5:2a:bf:65:79:ca:
10:69:07:22:f1:c5:97:a8:be:89:52:64:4d:69:d5:
0d:55:b8:43:cb:b5:81:e4:ce:f5:21:5f:e1:48:fc:
a3:dc:92:e6:39:f3:25:b6:fe:93:15:9f:0f:18:15:
61:60:6d:1d:be:14:e2:3a:bc:8d:a2:4c:a2:5a:9e:
a4:29:df:1a:fb:49:34:24:06:d6:e7:8f:44:f2:33:
f8:31:00:9b:9c:5c:90:96:dd:1a:5d:56:f4:bc:f5:
40:3f:d9:df:e3:5f:5f:5b:10:81:c6:5a:6e:d7:b4:
67:52:8f:9d:f2:cd:60:71:cc:6b:9b:9b:7c:1b:87:
a2:23:fa:a7:06:23:95:8a:dc:e2:1a:d1:b0:fc:ff:
1b:97:0d:9c:e6:a7:10:3c:5c:f8:37:6c:2b:49:99:
bc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2E:FE:3B:63:FA:9B:2A:79:32:C5:B5:EC:85:4B:70:C3:F1:88:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/DS7-O2P6myp5MsW17IVLcMPxiDk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.33.0/24
91.244.70.0/23
93.157.138.0/23
93.157.142.0/24
193.178.186.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215120
Signature Algorithm: sha256WithRSAEncryption
0b:dd:d6:c5:fd:fe:ab:c3:f2:7a:e9:14:2b:10:f3:e1:9f:fb:
e9:bf:cf:16:79:69:5d:e2:0e:0b:e3:ea:56:4f:7d:11:08:98:
87:c6:75:7d:b7:f2:ec:23:fb:90:92:0e:e1:bb:2d:20:c9:ae:
11:b6:af:47:c6:c0:52:e3:f2:a4:80:a2:2a:bf:2e:e0:26:76:
8c:e7:9a:ca:31:f4:e6:14:a6:70:54:89:59:ab:2c:e4:3e:dd:
a6:56:f3:af:44:eb:79:58:1a:4a:d6:3a:92:ac:0f:df:6e:18:
37:69:a0:80:b0:cb:11:0c:86:f3:f3:f5:95:ef:79:3a:aa:2f:
85:48:16:df:e9:62:87:82:b5:fd:f6:09:4e:ae:50:4f:c2:95:
9f:c9:f5:0f:4a:12:04:9f:45:c7:a5:39:f9:df:0b:99:57:08:
1a:59:6f:c9:55:54:ef:b4:7f:52:31:36:f3:e5:c4:41:37:e8:
97:73:dc:24:fd:0e:2d:03:2a:61:ec:48:16:a2:88:27:33:5e:
55:35:d3:c5:61:41:8e:36:f9:a5:a8:3a:1e:50:5c:8b:b4:a4:
96:b8:1e:bb:27:c9:c0:65:77:9b:8a:58:e6:5a:87:17:15:35:
80:2f:08:0b:cf:b5:7a:da:e4:81:d4:6f:5c:de:fe:3e:36:44:
19:a1:d0:35
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgISAZVBwEgsmtmohAIxt/M3R7F6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMjI2MTAxNDM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDJlZmUzYjYzZmE5YjJhNzkzMmM1YjVlYzg1NGI3MGMzZjE4ODM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4uJKPWZp1lGllhX52bVqvHyUsEq9
f+cE3pZi7fZxcgxtuYg92UOLUxfPsJmEZl5xgQF05srSRYPvyXYEkZ/g1vpcKRCe
u0Q3qHCM+KFhPzh35gvgxvBZDxKHrHNZ2D2w39vFKr9lecoQaQci8cWXqL6JUmRN
adUNVbhDy7WB5M71IV/hSPyj3JLmOfMltv6TFZ8PGBVhYG0dvhTiOryNokyiWp6k
Kd8a+0k0JAbW549E8jP4MQCbnFyQlt0aXVb0vPVAP9nf419fWxCBxlpu17RnUo+d
8s1gccxrm5t8G4eiI/qnBiOVitziGtGw/P8blw2c5qcQPFz4N2wrSZm81wIDAQAB
o4ICuDCCArQwHQYDVR0OBBYEFA0u/jtj+psqeTLFteyFS3DD8Yg5MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkxL2FlMGE5
My1mNjkwLTRlMzYtYmVmYS05MWEzNDllNzc0NzgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEvYWUwYTkz
LWY2OTAtNGUzNi1iZWZhLTkxYTM0OWU3NzQ3OC8xL0RTNy1PMlA2bXlwNU1zVzE3
SVZMY01QeGlEay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUF
BwEHAQH/BCgwJjAkBAIAATAeAwQAW+MhAwQBW/RGAwQBXZ2KAwQAXZ2OAwQAwbK6
MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwNIUDANBgkqhkiG9w0BAQsFAAOCAQEA
C93Wxf3+q8PyeukUKxDz4Z/76b/PFnlpXeIOC+PqVk99EQiYh8Z1fbfy7CP7kJIO
4bstIMmuEbavR8bAUuPypICiKr8u4CZ2jOeayjH05hSmcFSJWass5D7dplbzr0Tr
eVgaStY6kqwP324YN2mggLDLEQyG8/P1le95OqovhUgW3+lih4K1/fYJTq5QT8KV
n8n1D0oSBJ9Fx6U5+d8LmVcIGllvyVVU77R/UjE28+XEQTfol3PcJP0OLQMqYexI
FqKIJzNeVTXTxWFBjjb5pag6HlBci7SklrgeuyfJwGV3m4pY5lqHFxU1gC8IC8+1
etrkgdRvXN7+PjZEGaHQNQ==
-----END CERTIFICATE-----
Generated at Wed Apr 9 01:09:47 2025 by rpki-client