Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JfpfxGJ07c3lzc6wqUjbEg4zkhk.cer
File: JfpfxGJ07c3lzc6wqUjbEg4zkhk.cer (raw, json)
Hash identifier: STsWTF2Fitbry8E3deXsK39mZuN2vhzQRV0Ivw4C6Nw=
Subject key identifier: 25:FA:5F:C4:62:74:ED:CD:E5:CD:CE:B0:A9:48:DB:12:0E:33:92:19
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196AEE190361DFB288A85F83EABCA3B63B7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fa/53f263-cf40-4dc5-8865-7dff48c11db6/1/JfpfxGJ07c3lzc6wqUjbEg4zkhk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fa/53f263-cf40-4dc5-8865-7dff48c11db6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 08 May 2025 07:52:20 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 213199
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:ae:e1:90:36:1d:fb:28:8a:85:f8:3e:ab:ca:3b:63:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 8 07:52:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=25fa5fc46274edcde5cdceb0a948db120e339219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b5:d1:f5:5e:b9:b8:2d:35:b6:53:50:20:bd:
ed:f4:bb:6c:f2:30:19:ca:46:ef:4c:df:09:ce:e9:
3c:bf:a7:6b:d6:69:eb:8d:cd:47:06:fe:67:6d:a3:
1b:54:3d:34:d2:35:ef:bb:9f:10:ee:f5:bb:79:58:
dc:7a:3f:0b:89:c8:d9:0d:8e:05:09:06:5e:47:3f:
53:bd:ce:86:8a:5d:04:86:14:90:6e:01:3e:30:dd:
a2:ff:88:22:2d:b8:b1:1d:ce:a1:66:50:72:f1:d7:
bb:54:49:6f:f5:15:ae:3c:df:55:79:cc:ef:13:45:
f9:73:d2:dd:19:ca:f9:5c:c3:7b:35:c1:b0:d3:84:
17:15:94:17:0d:95:77:c9:39:9d:bf:7e:20:88:31:
6c:45:7f:9c:77:d2:28:40:9c:6c:66:21:45:45:d1:
49:b6:58:61:99:33:07:9e:20:72:01:04:49:08:66:
4e:d0:b8:c0:96:8c:50:fa:84:65:55:e4:e5:2d:40:
bd:87:05:70:e0:90:f2:2d:76:d8:8d:fb:bb:9c:f8:
de:37:6a:12:f9:a5:68:d8:9e:9d:7e:48:4d:35:be:
8c:31:af:f1:00:e6:0c:12:c4:dc:6f:a2:4c:0b:44:
68:1e:03:0c:8d:3a:fb:f0:3c:dc:23:d1:fd:b7:89:
78:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FA:5F:C4:62:74:ED:CD:E5:CD:CE:B0:A9:48:DB:12:0E:33:92:19
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/53f263-cf40-4dc5-8865-7dff48c11db6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/53f263-cf40-4dc5-8865-7dff48c11db6/1/JfpfxGJ07c3lzc6wqUjbEg4zkhk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213199
Signature Algorithm: sha256WithRSAEncryption
a7:b0:0d:ba:39:f5:0e:04:51:e0:35:35:00:1d:63:4c:c5:66:
1b:2e:67:2d:ee:1c:c4:c3:bb:4e:79:bf:bf:11:89:ca:a4:6f:
9e:44:d5:a3:50:1d:ba:c7:d5:db:1a:88:48:f0:bf:e9:ac:30:
95:8f:de:8d:a9:b6:60:31:6b:01:a4:af:50:bc:9b:3a:a9:f0:
a4:5a:e1:e9:e6:5c:68:50:8b:81:31:df:94:c5:dc:e3:b1:2b:
74:2c:fb:c3:ca:80:0b:31:dd:9c:85:18:d6:5d:52:73:a5:a0:
e0:bc:7a:3a:30:82:34:3c:16:6a:0f:18:55:24:f8:ba:3c:76:
07:37:6c:4e:cb:d4:41:04:77:6b:4b:cb:dc:49:75:3d:7a:13:
b4:96:33:f7:3e:95:d0:91:4f:c3:4a:fc:44:ca:61:c5:97:ab:
2e:86:db:ea:ea:ce:2d:2c:a5:5e:34:52:89:17:58:c7:77:58:
c9:2c:26:ec:32:a7:67:d6:de:6a:22:ec:97:20:1a:ab:a7:8a:
29:93:06:0d:77:c8:3a:c0:0e:bc:16:91:8c:c7:d5:a7:dd:a6:
dd:2a:6a:e2:bf:02:93:f0:1e:eb:98:6b:8f:c3:43:a8:e0:cb:
8f:95:53:8d:f3:8a:57:03:bd:04:42:ec:52:f6:b0:69:6d:96:
52:a5:fd:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 23:24:05 2025 by rpki-client