Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/R78v_to4HlSBjfBwUs9n4iJRX4k.cer
File: R78v_to4HlSBjfBwUs9n4iJRX4k.cer (raw, json)
Hash identifier: 3sofpxuQi7M/PW1UuajAI2v2R2WPO/tbIZ4I1VVhMF8=
Subject key identifier: 47:BF:2F:FE:DA:38:1E:54:81:8D:F0:70:52:CF:67:E2:22:51:5F:89
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194228E0711D302A0DBDD56510966E11948
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/R78v_to4HlSBjfBwUs9n4iJRX4k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 15:48:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 21201
AS: 24819
IP: 80.91.224.0/20
IP: 91.216.7.0/24
IP: 193.111.104.0/22
IP: 2001:67c:1778::/48
IP: 2a0a:3dc0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:07:11:d3:02:a0:db:dd:56:51:09:66:e1:19:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 15:48:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47bf2ffeda381e54818df07052cf67e222515f89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b4:62:21:33:d2:61:c4:c8:1e:49:c7:a3:99:
d5:97:4f:e0:ab:4d:84:31:50:82:ac:fb:01:a9:84:
b2:03:01:bf:02:c6:dc:83:60:30:96:59:5a:5d:ab:
4f:25:d6:f0:0f:36:ad:0b:f7:b7:16:97:92:06:78:
61:34:06:15:ba:ca:62:09:ba:eb:1e:cc:f3:2d:4a:
b0:f2:92:c6:1b:d4:15:a1:e4:f9:17:61:51:91:fe:
6c:55:62:33:cc:97:dd:28:55:7d:b5:25:47:51:c2:
42:46:c3:fb:5f:6c:5f:32:92:fb:fb:1b:7e:2c:7f:
cf:26:79:55:e7:88:66:be:70:b8:dc:62:7d:9a:98:
5c:cb:87:c7:3b:72:75:af:c8:09:83:f6:4b:4d:a3:
14:d5:74:c6:36:06:df:82:79:7d:40:dc:f9:89:a8:
40:57:16:f4:e9:69:0d:a2:06:c4:36:e9:aa:a9:fe:
27:d8:e7:50:e2:2d:d5:94:d3:64:c4:47:64:83:89:
bb:4a:04:15:47:1f:5e:46:2f:05:60:5f:98:f0:5d:
50:18:ae:5f:f9:89:43:b1:7b:e1:73:27:e8:ec:84:
f6:0b:23:10:e0:d6:f2:47:57:db:d8:2d:ff:4a:e4:
39:6e:6d:80:34:0f:fe:c1:55:0c:c3:89:3a:e3:ef:
2d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:BF:2F:FE:DA:38:1E:54:81:8D:F0:70:52:CF:67:E2:22:51:5F:89
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/R78v_to4HlSBjfBwUs9n4iJRX4k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.224.0/20
91.216.7.0/24
193.111.104.0/22
IPv6:
2001:67c:1778::/48
2a0a:3dc0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21201
24819
Signature Algorithm: sha256WithRSAEncryption
3a:a4:0a:86:63:89:77:bb:51:08:74:cd:29:b6:70:8d:9e:88:
c3:e9:6e:6c:cd:ef:dd:40:20:3e:89:b9:ca:54:88:bb:f5:f8:
de:5f:76:cd:a8:fa:8f:62:c6:0d:e5:83:9a:83:71:a4:49:5c:
10:4e:59:57:c0:f5:b6:2b:ba:1c:48:7a:08:bc:4b:b3:70:45:
8c:2c:7e:4d:02:c2:d0:3b:6a:6a:65:a6:18:0c:b2:14:ed:6f:
4c:9e:a4:28:8a:ee:ae:29:89:bb:cf:45:bf:32:d9:8c:8b:19:
4a:95:65:5e:31:d1:0c:1c:65:21:65:b8:cc:fb:82:1a:4e:60:
ae:c7:4d:b1:4d:cf:f0:7e:e2:e9:f8:a8:3e:90:f4:01:08:0d:
52:be:78:22:2a:bd:6c:c8:02:ad:c5:40:b5:45:3a:a7:17:d3:
db:57:2b:96:61:ba:6e:02:fa:7b:f4:62:af:59:8d:3d:53:6e:
4c:56:0f:12:2e:f8:24:2a:de:2c:b8:27:23:4b:88:ba:de:7d:
22:47:04:f3:d2:b3:d7:68:7e:eb:8f:d1:10:b4:d7:55:d2:02:
92:31:9e:6b:17:93:52:24:24:4b:5f:79:1b:77:7a:d3:d8:bd:
3b:6f:44:03:e3:cf:49:ed:23:fe:4d:ae:9b:9f:22:ef:c0:ee:
7c:c5:a4:80
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgISAZQijgcR0wKg291WUQlm4RlIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTU0ODQwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0N2JmMmZmZWRhMzgxZTU0ODE4ZGYwNzA1MmNmNjdlMjIyNTE1Zjg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybRiITPSYcTIHknHo5nVl0/gq02E
MVCCrPsBqYSyAwG/Asbcg2AwlllaXatPJdbwDzatC/e3FpeSBnhhNAYVuspiCbrr
HszzLUqw8pLGG9QVoeT5F2FRkf5sVWIzzJfdKFV9tSVHUcJCRsP7X2xfMpL7+xt+
LH/PJnlV54hmvnC43GJ9mphcy4fHO3J1r8gJg/ZLTaMU1XTGNgbfgnl9QNz5iahA
Vxb06WkNogbENumqqf4n2OdQ4i3VlNNkxEdkg4m7SgQVRx9eRi8FYF+Y8F1QGK5f
+YlDsXvhcyfo7IT2CyMQ4NbyR1fb2C3/SuQ5bm2ANA/+wVUMw4k64+8tCQIDAQAB
o4ICxzCCAsMwHQYDVR0OBBYEFEe/L/7aOB5UgY3wcFLPZ+IiUV+JMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JjLzI0NmQw
My1lMDkwLTQzMjUtODJmMS0wYmQwOTVkYTc4ZWYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvMjQ2ZDAz
LWUwOTAtNDMyNS04MmYxLTBiZDA5NWRhNzhlZi8xL1I3OHZfdG80SGxTQmpmQndV
czluNGlKUlg0ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUF
BwEHAQH/BDQwMjAYBAIAATASAwQEUFvgAwQAW9gHAwQCwW9oMBYEAgACMBADBwAg
AQZ8F3gDBQAqCj3AMB0GCCsGAQUFBwEIAQH/BA4wDKAKMAgCAlLRAgJg8zANBgkq
hkiG9w0BAQsFAAOCAQEAOqQKhmOJd7tRCHTNKbZwjZ6Iw+lubM3v3UAgPom5ylSI
u/X43l92zaj6j2LGDeWDmoNxpElcEE5ZV8D1tiu6HEh6CLxLs3BFjCx+TQLC0Dtq
amWmGAyyFO1vTJ6kKIrurimJu89FvzLZjIsZSpVlXjHRDBxlIWW4zPuCGk5grsdN
sU3P8H7i6fioPpD0AQgNUr54Iiq9bMgCrcVAtUU6pxfT21crlmG6bgL6e/Rir1mN
PVNuTFYPEi74JCreLLgnI0uIut59IkcE89Kz12h+64/RELTXVdICkjGeaxeTUiQk
S195G3d609i9O29EA+PPSe0j/k2um58i78DufMWkgA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:09:10 2025 by rpki-client