Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
File: OwmORe9LtdGNvIbFoTX1fry-AF0.cer (raw, json)
Hash identifier: ccSfSuRwe9FVGgx0y4y7wasmknuprGShWqJnAO8gye0=
Subject key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019593B7089FE880DCAB75051AC0F95C64FC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 14 Mar 2025 08:13:20 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 15736
IP: 82.115.52.0 -- 82.115.59.255
IP: 91.147.116.0 -- 91.147.127.255
IP: 212.116.224.0/19
IP: 2a02:7b60::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:93:b7:08:9f:e8:80:dc:ab:75:05:1a:c0:f9:5c:64:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 14 08:13:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:34:c9:87:fb:84:13:4d:73:f2:c4:40:92:15:
ad:31:3b:8c:7f:b2:4e:ee:6a:cd:c6:57:11:25:77:
6c:e8:e2:13:5b:56:e9:7a:9b:44:29:37:df:09:74:
78:85:4b:60:8f:c2:84:e3:d1:b1:2c:82:12:a8:ca:
ef:46:0b:23:01:56:3c:ab:4d:c7:d1:90:0e:1b:52:
42:29:83:79:de:81:2b:c4:e5:21:87:e8:8b:81:df:
74:f0:a2:47:86:d5:06:e5:0f:af:ec:4b:b7:02:dc:
66:15:ee:df:ce:4f:74:b3:af:8e:4d:9c:dd:83:ae:
9a:8b:08:3b:68:d2:e0:62:f7:a8:d4:38:63:20:29:
d6:88:56:cb:7b:19:35:51:39:4f:63:e6:5d:9d:05:
d4:b9:36:6d:db:13:dd:cb:45:8e:1b:dc:6e:51:ce:
3a:68:a1:fb:f9:c1:53:aa:21:de:6f:8a:41:b9:b0:
69:88:75:40:88:fd:46:fc:df:0f:71:02:e5:12:0f:
2a:07:d8:21:a7:f6:d5:ee:19:52:3b:68:99:9d:39:
a1:4b:38:ae:32:5c:ce:98:2c:a0:16:c2:64:b8:a0:
2b:9a:15:ec:87:da:f9:db:df:7a:70:59:c8:0b:9d:
1f:e0:da:94:98:b5:61:e7:f8:fa:49:df:a5:03:26:
d3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.52.0-82.115.59.255
91.147.116.0-91.147.127.255
212.116.224.0/19
IPv6:
2a02:7b60::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15736
Signature Algorithm: sha256WithRSAEncryption
87:5f:5e:b4:3d:44:e1:eb:1e:ba:15:4f:b8:df:6d:5b:6e:7d:
80:90:2a:fb:55:bd:4a:36:21:15:08:d2:8c:7f:65:e7:59:ef:
63:28:11:22:d4:e5:b8:d2:19:04:e9:e3:a7:d0:95:81:0d:4e:
99:a2:d4:91:7d:6b:38:b9:d9:c0:16:99:e3:e3:cc:8b:19:24:
86:9d:88:1a:bb:a7:0b:34:ad:b5:36:a5:71:fc:90:56:82:53:
79:d0:b3:4e:31:f4:ac:a6:a8:3f:16:34:16:82:19:7d:51:91:
de:2a:8c:66:a9:1a:7f:2d:c2:ed:5e:84:ed:de:c0:76:69:fa:
a6:d2:89:27:12:3f:67:91:b0:e8:1c:57:9e:23:a3:da:e1:46:
24:3c:ba:96:20:f2:ef:e4:b7:17:1c:ff:2d:81:fa:a2:7e:4c:
d0:2a:4f:f1:e4:d2:b5:20:f6:f6:03:03:61:00:0d:57:d3:23:
92:3f:af:30:8a:44:ea:db:b4:2a:c8:ec:3d:fb:3d:53:d4:ae:
28:4b:11:62:5c:e1:b5:83:61:f1:96:61:01:29:6c:cc:fb:84:
a7:ee:b3:02:b3:10:cb:03:8c:1f:fe:5d:7a:7c:f1:09:13:c2:
3a:aa:61:aa:07:79:31:4c:88:00:09:45:f3:b4:37:3e:dd:0a:
f1:fe:f8:c7
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgISAZWTtwif6IDcq3UFGsD5XGT8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMzE0MDgxMzIwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjA5OGU0NWVmNGJiNWQxOGRiYzg2YzVhMTM1ZjU3ZWJjYmUwMDVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zTJh/uEE01z8sRAkhWtMTuMf7JO
7mrNxlcRJXds6OITW1bpeptEKTffCXR4hUtgj8KE49GxLIISqMrvRgsjAVY8q03H
0ZAOG1JCKYN53oErxOUhh+iLgd908KJHhtUG5Q+v7Eu3AtxmFe7fzk90s6+OTZzd
g66aiwg7aNLgYveo1DhjICnWiFbLexk1UTlPY+ZdnQXUuTZt2xPdy0WOG9xuUc46
aKH7+cFTqiHeb4pBubBpiHVAiP1G/N8PcQLlEg8qB9ghp/bV7hlSO2iZnTmhSziu
MlzOmCygFsJkuKArmhXsh9r52996cFnIC50f4NqUmLVh5/j6Sd+lAybT8QIDAQAB
o4ICyjCCAsYwHQYDVR0OBBYEFDsJjkXvS7XRjbyGxaE19X68vgBdMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQyLzk1NGQz
MS1mNzRjLTQ2N2ItOTAxMy1lMTJiMTY0MjE1YjkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDIvOTU0ZDMx
LWY3NGMtNDY3Yi05MDEzLWUxMmIxNjQyMTViOS8xL093bU9SZTlMdGRHTnZJYkZv
VFgxZnJ5LUFGMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEoGCCsGAQUF
BwEHAQH/BDswOTAoBAIAATAiMAwDBAJSczQDBAJSczgwDAMEAluTdAMEB1uTAAME
BdR04DANBAIAAjAHAwUAKgJ7YDAZBggrBgEFBQcBCAEB/wQKMAigBjAEAgI9eDAN
BgkqhkiG9w0BAQsFAAOCAQEAh19etD1E4eseuhVPuN9tW259gJAq+1W9SjYhFQjS
jH9l51nvYygRItTluNIZBOnjp9CVgQ1OmaLUkX1rOLnZwBaZ4+PMixkkhp2IGrun
CzSttTalcfyQVoJTedCzTjH0rKaoPxY0FoIZfVGR3iqMZqkafy3C7V6E7d7Admn6
ptKJJxI/Z5Gw6BxXniOj2uFGJDy6liDy7+S3Fxz/LYH6on5M0CpP8eTStSD29gMD
YQANV9Mjkj+vMIpE6tu0KsjsPfs9U9SuKEsRYlzhtYNh8ZZhASlszPuEp+6zArMQ
ywOMH/5denzxCRPCOqphqgd5MUyIAAlF87Q3Pt0K8f74xw==
-----END CERTIFICATE-----
Generated at Sat Apr 5 01:52:56 2025 by rpki-client