Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
File: Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer (raw, json)
Hash identifier: +5WACZYS/JX5sKf0UBkBzEonXMk+I07moi/dcx5mkrY=
Subject key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B60EDBBC4F82C0476B8322AC479207
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:30 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 35145
IP: 5.181.224.0/22
IP: 194.53.200.0/22
IP: 194.61.236.0/22
IP: 2a0e:800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 12 Apr 2025 02:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:0e:db:bc:4f:82:c0:47:6b:83:22:ac:47:92:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:e4:8b:2a:c9:e6:14:67:4a:fd:8d:30:ed:
eb:e5:11:73:86:35:13:e2:25:43:15:21:19:f2:69:
bd:72:da:4b:51:f5:e4:a1:58:07:52:74:d8:db:d3:
f4:43:c2:67:20:1c:78:be:82:21:5c:70:90:30:34:
b8:10:b3:b8:1f:d0:91:bc:b4:8a:0a:58:b7:bd:42:
ec:37:8c:b3:17:68:55:b2:f8:d3:ad:53:79:b2:7e:
23:5f:1b:7e:c3:af:4b:24:e2:91:a1:98:4c:a5:bb:
77:ba:27:39:a8:55:76:c3:2e:5e:7e:ba:e3:e2:68:
5a:7a:ae:59:e7:9d:46:08:b2:34:5d:92:ce:34:14:
ba:5b:2f:82:6a:d8:8a:e1:03:5b:97:57:df:6d:2b:
5b:06:2a:8d:0c:12:eb:39:c9:b1:d4:1c:cd:22:61:
71:a7:1d:43:fe:80:d4:ae:3b:1d:d0:40:bd:fc:79:
3f:78:f7:49:4c:77:7f:4b:ed:86:bc:d2:86:36:29:
b8:22:be:40:b8:89:3c:c9:b8:96:7c:96:0b:64:d6:
27:7b:56:24:76:51:30:a5:10:68:a0:bf:72:09:9f:
fa:be:d7:95:85:3e:1c:67:91:8b:88:09:65:8c:16:
23:0b:63:e1:95:20:5f:63:1f:dd:d6:ef:2e:8b:2f:
b7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.224.0/22
194.53.200.0/22
194.61.236.0/22
IPv6:
2a0e:800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35145
Signature Algorithm: sha256WithRSAEncryption
4e:81:3a:d8:f5:63:c7:5d:a6:6b:51:4b:2c:41:9f:78:bf:84:
29:65:8e:52:f0:e9:9c:20:76:f0:50:61:47:60:ef:81:88:a6:
14:11:19:bd:e7:0a:33:d4:c6:e8:c6:5c:03:b8:be:67:3a:e9:
fd:28:d3:c6:da:9d:73:4b:bb:e4:34:f6:fb:e1:3c:f9:fa:05:
eb:21:6e:f5:8e:02:82:bc:62:f1:ed:de:44:2d:a3:6c:6b:19:
10:62:84:82:df:7a:61:67:18:0b:21:9c:3d:43:7c:2a:ba:04:
e9:e2:e8:90:14:35:46:f5:d1:37:59:b4:85:54:ed:a1:d6:31:
2c:aa:4c:be:50:05:71:2a:75:5a:5a:41:a0:2e:b6:bc:2a:24:
a2:88:4e:3e:fa:46:22:bd:61:95:6a:a0:45:81:62:f4:ca:61:
b1:4f:5a:75:6f:70:a5:8e:3f:ee:e3:86:6c:b0:bb:38:df:9d:
5a:3b:fc:c3:b0:3a:5c:29:8f:fd:e6:2a:95:56:f7:22:f0:31:
f1:60:92:cc:3a:38:61:79:a0:c9:40:e5:7b:20:3a:ac:07:0b:
6d:66:db:4c:62:f4:0f:e1:38:6b:ae:e1:3a:4b:23:df:4c:50:
2c:48:c8:6d:05:12:f9:23:8b:3e:6c:7c:9a:7b:71:2e:80:b2:
0c:fe:4f:92
-----BEGIN CERTIFICATE-----
MIIFrzCCBJegAwIBAgISAZQntg7bvE+CwEdrgyKsR5IHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTU1MDMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmNlNzU5MzIwMTk1YjljYzE4Y2NmY2IxYjUzMmFlYTk0OTI1OGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArljkiyrJ5hRnSv2NMO3r5RFzhjUT
4iVDFSEZ8mm9ctpLUfXkoVgHUnTY29P0Q8JnIBx4voIhXHCQMDS4ELO4H9CRvLSK
Cli3vULsN4yzF2hVsvjTrVN5sn4jXxt+w69LJOKRoZhMpbt3uic5qFV2wy5efrrj
4mhaeq5Z551GCLI0XZLONBS6Wy+CatiK4QNbl1ffbStbBiqNDBLrOcmx1BzNImFx
px1D/oDUrjsd0EC9/Hk/ePdJTHd/S+2GvNKGNim4Ir5AuIk8ybiWfJYLZNYne1Yk
dlEwpRBooL9yCZ/6vteVhT4cZ5GLiAlljBYjC2PhlSBfYx/d1u8uiy+3lwIDAQAB
o4ICuzCCArcwHQYDVR0OBBYEFELOdZMgGVucwYzPyxtTKuqUkljxMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI0L2E1MjA0
OC0xMmNhLTRhMDMtOTViZS02OTc5NDhlYTcxZjUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQvYTUyMDQ4
LTEyY2EtNGEwMy05NWJlLTY5Nzk0OGVhNzFmNS8xL1FzNTFreUFaVzV6QmpNX0xH
MU1xNnBTU1dQRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF
BwEHAQH/BCswKTAYBAIAATASAwQCBbXgAwQCwjXIAwQCwj3sMA0EAgACMAcDBQMq
DggAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCJSTANBgkqhkiG9w0BAQsFAAOC
AQEAToE62PVjx12ma1FLLEGfeL+EKWWOUvDpnCB28FBhR2DvgYimFBEZvecKM9TG
6MZcA7i+Zzrp/SjTxtqdc0u75DT2++E8+foF6yFu9Y4Cgrxi8e3eRC2jbGsZEGKE
gt96YWcYCyGcPUN8KroE6eLokBQ1RvXRN1m0hVTtodYxLKpMvlAFcSp1WlpBoC62
vCokoohOPvpGIr1hlWqgRYFi9MphsU9adW9wpY4/7uOGbLC7ON+dWjv8w7A6XCmP
/eYqlVb3IvAx8WCSzDo4YXmgyUDleyA6rAcLbWbbTGL0D+E4a67hOksj30xQLEjI
bQUS+SOLPmx8mntxLoCyDP5Pkg==
-----END CERTIFICATE-----
Generated at Fri Apr 11 11:37:44 2025 by rpki-client