Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MVlVxK8-sajTQAqGYl42XCYpjWo.cer
File: MVlVxK8-sajTQAqGYl42XCYpjWo.cer (raw, json)
Hash identifier: gtpMPL+h/R5DRjhLwxi12JaRmSgAeiRMhfJCHeiEpy0=
Subject key identifier: 31:59:55:C4:AF:3E:B1:A8:D3:40:0A:86:62:5E:36:5C:26:29:8D:6A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B365A4CA8856BD4FFD5AB370121C76
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:47:35 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210057
IP: 45.147.208.0/22
IP: 176.124.40.0/22
IP: 2a0f:3400::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b3:65:a4:ca:88:56:bd:4f:fd:5a:b3:70:12:1c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:47:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=315955c4af3eb1a8d3400a86625e365c26298d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:07:4e:d2:f9:9b:fa:ed:06:dd:a7:01:98:f1:
a4:4c:dd:76:c7:37:22:d5:97:33:90:57:62:1b:c7:
d9:b5:b5:3e:03:36:2c:49:c7:fc:5b:95:cf:2b:5b:
7b:86:96:fb:8e:a4:06:46:9f:98:f4:03:b3:c8:ec:
bb:fb:57:91:fc:01:10:2a:26:3c:2e:16:36:ac:a8:
fc:23:b9:65:0b:54:48:3a:41:6a:e8:a6:f8:26:cb:
31:ca:bb:2b:61:2d:a6:7b:ec:2f:e0:5b:ed:36:b8:
99:f9:27:17:59:a0:b8:66:c1:8f:fb:ff:6b:6e:c1:
84:8e:a8:70:03:f9:ee:55:06:83:10:0a:eb:74:3a:
73:55:a7:3d:55:ec:fe:a8:88:d0:17:f0:87:94:9d:
1a:46:70:c8:e6:48:ad:ab:30:54:78:e4:67:46:9d:
5c:0d:d3:10:c8:f0:7d:7c:df:91:a2:36:30:85:39:
c9:c3:81:04:aa:23:05:54:e1:1f:04:11:20:65:6e:
18:9b:42:bd:7e:0b:57:24:4a:90:d1:db:84:4d:3e:
6b:cb:e3:2e:63:11:14:1f:63:15:cf:9b:e5:97:b2:
41:c6:bf:15:1d:3e:67:00:b1:85:49:eb:cf:b9:13:
3a:fd:9a:ce:19:6b:e4:a8:51:55:8c:15:54:4c:60:
db:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:59:55:C4:AF:3E:B1:A8:D3:40:0A:86:62:5E:36:5C:26:29:8D:6A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/21c61a-d6b1-4aca-9782-97348336f33a/1/MVlVxK8-sajTQAqGYl42XCYpjWo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.208.0/22
176.124.40.0/22
IPv6:
2a0f:3400::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210057
Signature Algorithm: sha256WithRSAEncryption
66:b0:25:e8:18:48:a2:87:54:7d:f8:36:6b:19:9c:5c:9e:ff:
18:f2:96:b1:8d:53:b2:a7:40:26:3d:23:e1:ca:16:63:b3:aa:
a5:20:47:f4:1a:34:a4:31:b8:c8:04:6d:6a:bf:a0:4f:0b:c3:
68:51:12:7f:ba:9a:05:91:c3:0d:74:27:ad:bc:f9:d4:a7:0d:
6b:f5:1d:64:3d:a6:cf:2d:80:64:b3:9b:6c:25:00:48:91:51:
a5:a5:5f:98:47:3e:a0:fa:92:a3:96:68:dd:f5:e3:52:0c:61:
1b:04:be:e4:54:c6:5d:10:a9:fb:32:16:85:39:98:8a:b9:8d:
a5:80:b0:0b:33:c3:4d:a3:00:b7:e8:7b:f1:4b:44:d3:a0:ae:
56:5a:1e:a9:8c:1d:8c:ba:20:bd:07:e6:48:91:2d:9b:c4:15:
09:59:13:f1:8d:ce:f2:26:fd:7d:bf:05:b5:1e:7b:43:97:48:
ab:40:e0:1a:72:60:57:4a:10:70:4f:d0:96:37:35:5a:2f:ef:
60:68:ae:40:0c:b5:e0:3e:97:36:93:50:95:b9:02:3b:38:5c:
f9:0b:86:05:92:f6:8c:3a:e1:10:43:2d:8b:69:a0:8a:99:db:
1e:1d:5e:66:99:3c:54:b6:cf:31:46:5d:6d:57:70:28:58:d7:
85:fc:93:03
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZQns2WkyohWvU/9WrNwEhx2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTU0NzM1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMTU5NTVjNGFmM2ViMWE4ZDM0MDBhODY2MjVlMzY1YzI2Mjk4ZDZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAdO0vmb+u0G3acBmPGkTN12xzci
1ZczkFdiG8fZtbU+AzYsScf8W5XPK1t7hpb7jqQGRp+Y9AOzyOy7+1eR/AEQKiY8
LhY2rKj8I7llC1RIOkFq6Kb4JssxyrsrYS2me+wv4FvtNriZ+ScXWaC4ZsGP+/9r
bsGEjqhwA/nuVQaDEArrdDpzVac9Vez+qIjQF/CHlJ0aRnDI5kitqzBUeORnRp1c
DdMQyPB9fN+RojYwhTnJw4EEqiMFVOEfBBEgZW4Ym0K9fgtXJEqQ0duETT5ry+Mu
YxEUH2MVz5vll7JBxr8VHT5nALGFSevPuRM6/ZrOGWvkqFFVjBVUTGDbMQIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFDFZVcSvPrGo00AKhmJeNlwmKY1qMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljLzIxYzYx
YS1kNmIxLTRhY2EtOTc4Mi05NzM0ODMzNmYzM2EvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvMjFjNjFh
LWQ2YjEtNGFjYS05NzgyLTk3MzQ4MzM2ZjMzYS8xL01WbFZ4Szgtc2FqVFFBcUdZ
bDQyWENZcGpXby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQCLZPQAwQCsHwoMA0EAgACMAcDBQMqDzQAMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwM0iTANBgkqhkiG9w0BAQsFAAOCAQEAZrAl
6BhIoodUffg2axmcXJ7/GPKWsY1TsqdAJj0j4coWY7OqpSBH9Bo0pDG4yARtar+g
TwvDaFESf7qaBZHDDXQnrbz51KcNa/UdZD2mzy2AZLObbCUASJFRpaVfmEc+oPqS
o5Zo3fXjUgxhGwS+5FTGXRCp+zIWhTmYirmNpYCwCzPDTaMAt+h78UtE06CuVloe
qYwdjLogvQfmSJEtm8QVCVkT8Y3O8ib9fb8FtR57Q5dIq0DgGnJgV0oQcE/Qljc1
Wi/vYGiuQAy14D6XNpNQlbkCOzhc+QuGBZL2jDrhEEMti2mgipnbHh1eZpk8VLbP
MUZdbVdwKFjXhfyTAw==
-----END CERTIFICATE-----
Generated at Wed Apr 23 06:46:13 2025 by rpki-client