Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ILpx5Gx1kWuOXeGTzH-BBp34b3M.cer
File: ILpx5Gx1kWuOXeGTzH-BBp34b3M.cer (raw, json)
Hash identifier: 7BvsAayNqUyIVtoRLud60zKsUMXheTC9/HLKto5A6kQ=
Subject key identifier: 20:BA:71:E4:6C:75:91:6B:8E:5D:E1:93:CC:7F:81:06:9D:F8:6F:73
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420684B23A53CF9D288F2C475A3D2DE64
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/ILpx5Gx1kWuOXeGTzH-BBp34b3M.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 05:48:13 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206616
IP: 185.149.92.0/22
IP: 212.15.88.0/21
IP: 2a07:7a80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:4b:23:a5:3c:f9:d2:88:f2:c4:75:a3:d2:de:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 05:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=20ba71e46c75916b8e5de193cc7f81069df86f73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ff:49:88:80:1f:da:c0:a5:f8:d0:0c:c6:6f:
97:6e:83:29:b0:a4:9a:07:24:6a:26:c1:d3:7e:de:
85:b3:48:e3:23:9f:3e:51:39:fe:1b:ad:bd:14:ab:
e8:96:cd:09:97:be:fc:89:03:a4:1e:39:a6:d2:fe:
1d:a8:ff:1c:b4:14:7d:9d:37:02:fd:7b:5c:5a:60:
27:29:2a:62:11:e3:1c:ef:28:7d:1c:84:29:73:29:
86:e5:12:29:52:19:db:22:2e:56:ca:a5:60:20:bc:
83:db:24:01:0e:04:34:87:50:b6:c4:3f:16:3c:61:
2e:49:27:56:85:fc:2f:22:41:99:b2:fe:2c:2c:93:
d9:8d:7d:14:82:d1:19:ba:a2:49:b1:45:8b:16:9e:
04:89:29:9d:05:2d:ea:c7:54:ac:e6:e0:40:b6:51:
60:72:69:91:50:f0:5b:fa:71:78:99:3f:78:5a:11:
fb:da:cf:97:49:65:78:a5:a8:26:1e:2c:04:85:6f:
26:22:aa:76:4a:8e:5e:4f:bc:a7:ec:e2:87:72:7f:
fa:41:17:f6:a8:b4:a3:06:6b:e5:a0:dd:08:97:e4:
a5:1a:c8:47:e2:71:a1:0f:a6:76:44:31:dc:33:7f:
18:0b:b9:62:ee:0b:68:a1:1d:11:47:45:49:a8:24:
e8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BA:71:E4:6C:75:91:6B:8E:5D:E1:93:CC:7F:81:06:9D:F8:6F:73
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/ILpx5Gx1kWuOXeGTzH-BBp34b3M.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.92.0/22
212.15.88.0/21
IPv6:
2a07:7a80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206616
Signature Algorithm: sha256WithRSAEncryption
55:76:e2:45:76:3f:1b:93:c5:22:06:fb:9a:12:a6:da:fe:5a:
ec:ec:7d:b9:56:cf:a6:19:93:3f:39:49:fe:d6:c5:44:49:01:
28:a7:5b:ca:63:5f:3b:74:77:3c:d3:1d:fd:fc:72:c4:fb:58:
34:f6:c5:22:ff:9d:3d:bc:ea:36:c7:c7:86:f8:fc:16:30:08:
42:3a:e0:76:0b:d8:7e:6b:5d:96:ea:97:22:1a:d9:a0:44:cd:
aa:12:f5:7b:24:4e:6e:be:8f:cd:a0:b0:ef:cc:22:58:60:0c:
01:da:72:bb:32:4b:a3:35:29:d0:8f:2c:1d:9e:8e:be:30:d3:
02:0f:db:5a:75:f3:f0:34:3d:99:f0:c6:d0:39:c5:bf:60:f8:
a3:b7:77:f4:8c:07:3b:e4:ab:a5:de:69:58:d3:d0:8c:ec:10:
69:2e:bb:5a:1a:74:98:55:ff:4f:34:06:3f:3c:ea:dd:50:d3:
21:94:15:26:06:36:e3:49:0e:7d:49:56:6b:a8:17:ea:6a:58:
28:ae:c0:39:69:7b:d0:bb:de:07:a2:97:8d:79:e8:e1:f0:e3:
ba:6e:fa:19:93:32:fe:92:af:b5:27:2c:f0:98:47:7c:d5:ae:
18:54:71:ed:18:9f:e4:f7:1f:87:29:a3:3c:71:4e:ce:24:5a:
61:c0:ad:9d
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZQgaEsjpTz50ojyxHWj0t5kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDU0ODEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMGJhNzFlNDZjNzU5MTZiOGU1ZGUxOTNjYzdmODEwNjlkZjg2ZjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhv9JiIAf2sCl+NAMxm+XboMpsKSa
ByRqJsHTft6Fs0jjI58+UTn+G629FKvols0Jl778iQOkHjmm0v4dqP8ctBR9nTcC
/XtcWmAnKSpiEeMc7yh9HIQpcymG5RIpUhnbIi5WyqVgILyD2yQBDgQ0h1C2xD8W
PGEuSSdWhfwvIkGZsv4sLJPZjX0UgtEZuqJJsUWLFp4EiSmdBS3qx1Ss5uBAtlFg
cmmRUPBb+nF4mT94WhH72s+XSWV4pagmHiwEhW8mIqp2So5eT7yn7OKHcn/6QRf2
qLSjBmvloN0Il+SlGshH4nGhD6Z2RDHcM38YC7li7gtooR0RR0VJqCToqQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFCC6ceRsdZFrjl3hk8x/gQad+G9zMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2QwNjQy
Yy04NGU2LTQyOTAtYWZiMS00ODQ1MDBiY2ZiMDcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvZDA2NDJj
LTg0ZTYtNDI5MC1hZmIxLTQ4NDUwMGJjZmIwNy8xL0lMcHg1R3gxa1d1T1hlR1R6
SC1CQnAzNGIzTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCuZVcAwQD1A9YMA0EAgACMAcDBQMqB3qAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMnGDANBgkqhkiG9w0BAQsFAAOCAQEAVXbi
RXY/G5PFIgb7mhKm2v5a7Ox9uVbPphmTPzlJ/tbFREkBKKdbymNfO3R3PNMd/fxy
xPtYNPbFIv+dPbzqNsfHhvj8FjAIQjrgdgvYfmtdluqXIhrZoETNqhL1eyRObr6P
zaCw78wiWGAMAdpyuzJLozUp0I8sHZ6OvjDTAg/bWnXz8DQ9mfDG0DnFv2D4o7d3
9IwHO+Srpd5pWNPQjOwQaS67Whp0mFX/TzQGPzzq3VDTIZQVJgY240kOfUlWa6gX
6mpYKK7AOWl70LveB6KXjXno4fDjum76GZMy/pKvtScs8JhHfNWuGFRx7Rif5Pcf
hymjPHFOziRaYcCtnQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:53:04 2025 by rpki-client