Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.cer
File: U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.cer (raw, json)
Hash identifier: xHSz7obyXqleygzmLFr235R803vvPbCf9cPn+27FPpg=
Subject key identifier: 53:D0:35:9F:9F:8B:20:81:5C:E4:D9:88:E1:09:BF:82:30:6E:4C:74
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194274757A944FD15DC8C0003337D090195
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:49:34 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205842
AS: 207096
IP: 185.166.40.0/22
IP: 185.176.204.0/22
IP: 185.202.72.0/22
IP: 185.239.188.0/22
IP: 2a0a:7600::/29
IP: 2a0a:d2c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:57:a9:44:fd:15:dc:8c:00:03:33:7d:09:01:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:49:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53d0359f9f8b20815ce4d988e109bf82306e4c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8a:06:62:c5:7a:77:cf:1d:63:0f:06:82:86:
53:3d:dd:46:3c:61:f3:8b:8e:4d:86:16:f1:07:73:
d3:91:aa:53:f2:2e:61:4b:4f:61:23:3f:7a:fe:4b:
af:3c:54:43:f2:c3:e8:47:7c:8b:2e:99:c3:de:e9:
cb:4a:10:b4:6e:dd:43:6b:00:c5:3e:0d:bb:63:72:
e8:a5:6b:de:0a:38:a5:23:a1:e1:78:c9:bc:82:5b:
7d:d7:63:52:d4:1f:7e:f0:b6:11:bb:e1:89:43:32:
b7:5b:37:cc:e1:50:80:bd:82:5a:72:65:c5:d1:80:
8c:d3:a0:34:44:2b:72:7a:39:fe:d8:f6:36:23:3b:
7a:df:4f:e6:cf:87:35:d7:b2:17:ed:bb:82:35:f6:
8a:6e:4e:88:55:ea:73:0a:07:6a:40:73:bc:5a:62:
66:75:89:c3:6a:ff:f7:03:50:2a:9c:78:42:59:31:
9a:ac:d1:d7:7b:c9:95:0a:be:de:ff:7e:33:20:55:
a6:37:35:e6:a4:a2:18:ac:e7:3b:73:9d:5f:91:6d:
b4:4d:0b:a2:8f:77:60:3b:51:e1:9e:13:5a:96:0e:
36:73:96:3b:fb:b9:45:d7:be:4c:c4:56:c2:dd:2e:
36:fe:fb:3f:c4:89:b4:d4:49:75:7c:a9:cd:25:a1:
4f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D0:35:9F:9F:8B:20:81:5C:E4:D9:88:E1:09:BF:82:30:6E:4C:74
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.40.0/22
185.176.204.0/22
185.202.72.0/22
185.239.188.0/22
IPv6:
2a0a:7600::/29
2a0a:d2c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205842
207096
Signature Algorithm: sha256WithRSAEncryption
64:4c:b3:4b:f7:88:dd:3b:3e:ea:77:8b:80:9b:7c:49:49:35:
46:f4:d6:fe:66:a1:b9:85:c1:7d:f6:6d:e9:60:fb:5f:90:4c:
0b:f9:93:a2:53:c9:95:30:6f:f9:9e:4e:b1:f9:10:e8:61:d1:
bd:60:2d:0f:bc:6c:7e:23:0d:16:95:db:13:cc:00:4e:cd:01:
58:1e:8e:01:e4:9a:14:2d:50:93:18:af:b9:76:12:c5:71:3c:
6f:f3:0e:ff:cd:c3:f2:f7:f2:57:5d:34:2b:f0:3d:cd:78:5a:
ac:cc:d3:fd:e8:03:6b:ef:2d:54:c1:42:e8:37:b1:e7:7b:54:
4f:04:ca:34:e6:6d:b4:02:42:b5:0b:4b:a7:00:07:6a:1e:1a:
24:f5:80:44:ed:34:a3:74:61:0e:4c:3f:bb:3d:db:72:9d:01:
92:43:b5:18:c6:13:b7:79:b2:29:0f:d0:57:c6:6e:3e:48:ca:
1c:50:46:87:71:5d:29:65:50:7b:2b:15:f3:23:ee:e1:7b:3d:
98:67:ec:6c:8c:8b:50:d9:80:02:d1:a5:d6:0a:c4:08:41:ea:
75:cc:1f:39:a1:c7:da:3e:3f:d6:5f:9d:b5:f3:6c:e7:cf:4c:
75:8f:e3:c6:18:8c:48:86:c1:1e:d6:c0:03:de:d7:fa:ae:2a:
7e:fd:17:76
-----BEGIN CERTIFICATE-----
MIIFwTCCBKmgAwIBAgISAZQnR1epRP0V3IwAAzN9CQGVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTM0OTM0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2QwMzU5ZjlmOGIyMDgxNWNlNGQ5ODhlMTA5YmY4MjMwNmU0Yzc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlooGYsV6d88dYw8GgoZTPd1GPGHz
i45NhhbxB3PTkapT8i5hS09hIz96/kuvPFRD8sPoR3yLLpnD3unLShC0bt1DawDF
Pg27Y3LopWveCjilI6HheMm8glt912NS1B9+8LYRu+GJQzK3WzfM4VCAvYJacmXF
0YCM06A0RCtyejn+2PY2Izt630/mz4c117IX7buCNfaKbk6IVepzCgdqQHO8WmJm
dYnDav/3A1AqnHhCWTGarNHXe8mVCr7e/34zIFWmNzXmpKIYrOc7c51fkW20TQui
j3dgO1HhnhNalg42c5Y7+7lF175MxFbC3S42/vs/xIm01El1fKnNJaFPBwIDAQAB
o4ICzTCCAskwHQYDVR0OBBYEFFPQNZ+fiyCBXOTZiOEJv4Iwbkx0MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q0LzQ5MzU3
MS0yMTBlLTRkMWEtODgxOS1hNmM0OWNlOTA3NTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQvNDkzNTcx
LTIxMGUtNGQxYS04ODE5LWE2YzQ5Y2U5MDc1Ni8xL1U5QTFuNS1MSUlGYzVObUk0
UW1fZ2pCdVRIUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEcGCCsGAQUF
BwEHAQH/BDgwNjAeBAIAATAYAwQCuaYoAwQCubDMAwQCucpIAwQCue+8MBQEAgAC
MA4DBQMqCnYAAwUDKgrSwDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDJBICAwMo
+DANBgkqhkiG9w0BAQsFAAOCAQEAZEyzS/eI3Ts+6neLgJt8SUk1RvTW/mahuYXB
ffZt6WD7X5BMC/mTolPJlTBv+Z5OsfkQ6GHRvWAtD7xsfiMNFpXbE8wATs0BWB6O
AeSaFC1QkxivuXYSxXE8b/MO/83D8vfyV100K/A9zXharMzT/egDa+8tVMFC6Dex
53tUTwTKNOZttAJCtQtLpwAHah4aJPWARO00o3RhDkw/uz3bcp0BkkO1GMYTt3my
KQ/QV8ZuPkjKHFBGh3FdKWVQeysV8yPu4Xs9mGfsbIyLUNmAAtGl1grECEHqdcwf
OaHH2j4/1l+dtfNs589MdY/jxhiMSIbBHtbAA97X+q4qfv0Xdg==
-----END CERTIFICATE-----
Generated at Fri Apr 18 04:35:04 2025 by rpki-client