Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ua1nkbjb6cNSvWSpMiFytBxLIXE.cer
File: Ua1nkbjb6cNSvWSpMiFytBxLIXE.cer (raw, json)
Hash identifier: V9TdYm+G2oKiY9PR3dsoeQxSrlpGePCnzuX3JhOxud4=
Subject key identifier: 51:AD:67:91:B8:DB:E9:C3:52:BD:64:A9:32:21:72:B4:1C:4B:21:71
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942368F5B25F61CCA9DBF4A93918FF3163
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/Ua1nkbjb6cNSvWSpMiFytBxLIXE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:47:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 47790
IP: 91.206.210.0/23
IP: 91.224.216.0/23
IP: 91.226.196.0/23
IP: 91.230.8.0/23
IP: 185.48.28.0/22
IP: 185.142.160.0/22
IP: 185.152.120.0/22
IP: 2a14:7a80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:68:f5:b2:5f:61:cc:a9:db:f4:a9:39:18:ff:31:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51ad6791b8dbe9c352bd64a9322172b41c4b2171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2b:df:3a:17:83:60:f3:3f:42:bc:c7:61:f0:
91:98:82:19:0d:1e:35:db:50:09:88:a9:03:78:2f:
bd:77:95:2c:c2:89:59:72:f0:6d:66:13:14:16:07:
1f:e3:45:0b:f4:d3:d7:e5:1e:b8:47:64:15:3f:85:
7b:53:0f:93:5d:da:40:0e:4f:5d:5b:41:ae:14:fd:
50:2a:a0:da:25:64:37:2b:ab:8e:fe:1d:7c:4a:95:
85:9c:38:31:0b:30:dc:5c:37:7a:ac:d3:77:31:37:
3b:10:c7:8c:54:d4:21:88:5d:08:d4:b3:91:82:26:
1f:1c:d9:14:b8:b2:b4:c0:67:d6:dd:75:ce:f7:ad:
dd:1d:0d:eb:f2:53:28:7c:99:11:4e:30:8e:90:f9:
ea:d3:1a:55:cc:a8:28:50:2b:41:3d:63:68:f0:3f:
2c:0c:93:76:1b:c7:80:5f:b2:7c:71:ca:f9:16:13:
18:35:fb:f7:0d:a1:f9:49:86:a3:0e:8e:de:43:dd:
84:b4:a5:cc:38:59:4b:53:5f:5a:7f:75:ca:9c:dc:
02:8f:c5:6a:14:07:ae:01:a0:05:f1:03:37:04:34:
de:e8:8a:56:9d:54:1a:1e:16:49:48:7d:20:df:09:
16:6f:aa:d8:bb:6c:c8:82:5f:74:8d:e2:74:46:80:
40:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:AD:67:91:B8:DB:E9:C3:52:BD:64:A9:32:21:72:B4:1C:4B:21:71
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3f6178-5fd3-403f-8fec-1a89ff11965e/1/Ua1nkbjb6cNSvWSpMiFytBxLIXE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.210.0/23
91.224.216.0/23
91.226.196.0/23
91.230.8.0/23
185.48.28.0/22
185.142.160.0/22
185.152.120.0/22
IPv6:
2a14:7a80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47790
Signature Algorithm: sha256WithRSAEncryption
09:6c:2f:6d:c4:14:77:18:c8:f0:6f:ce:03:c7:36:6f:23:3d:
d8:a1:fb:c1:89:5e:1e:5a:a7:41:73:92:b4:0b:93:4d:82:19:
ad:42:18:66:6b:e4:e0:06:0e:18:82:47:84:78:01:1b:c9:b3:
5c:fd:5a:d1:95:4c:ec:c5:90:18:31:a6:cf:c3:c8:a5:1d:6d:
2f:61:34:f5:b7:a1:e8:0a:93:de:6c:63:7b:cd:f1:3d:37:c9:
c7:80:6c:36:73:80:59:95:0b:a7:eb:4d:18:bd:be:78:7b:88:
55:16:bf:af:10:41:e7:db:6f:89:f4:e8:c5:da:77:82:69:d6:
0b:9f:6c:1c:9e:b3:e1:90:87:db:87:50:cd:97:42:2e:71:64:
a0:be:e1:f5:36:07:07:c6:b0:a3:96:8e:96:fb:4e:cf:05:5a:
70:c5:9c:a0:a1:c4:f3:11:6e:40:97:0a:58:a2:18:7f:4a:31:
c7:2f:bf:05:03:60:b8:58:e1:6a:0d:9c:56:07:91:54:19:e7:
92:3d:fb:b4:db:17:09:2f:40:ab:c5:c4:2e:4f:4c:c5:25:06:
86:27:b3:67:e5:f7:82:fb:7b:c1:40:80:4a:aa:f7:09:cb:44:
86:e7:20:e8:28:1c:b5:da:3e:1a:cd:e9:db:b6:f0:64:de:21:
45:5f:b8:d3
-----BEGIN CERTIFICATE-----
MIIFxzCCBK+gAwIBAgISAZQjaPWyX2HMqdv0qTkY/zFjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTk0NzQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MWFkNjc5MWI4ZGJlOWMzNTJiZDY0YTkzMjIxNzJiNDFjNGIyMTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0yvfOheDYPM/QrzHYfCRmIIZDR41
21AJiKkDeC+9d5UswolZcvBtZhMUFgcf40UL9NPX5R64R2QVP4V7Uw+TXdpADk9d
W0GuFP1QKqDaJWQ3K6uO/h18SpWFnDgxCzDcXDd6rNN3MTc7EMeMVNQhiF0I1LOR
giYfHNkUuLK0wGfW3XXO963dHQ3r8lMofJkRTjCOkPnq0xpVzKgoUCtBPWNo8D8s
DJN2G8eAX7J8ccr5FhMYNfv3DaH5SYajDo7eQ92EtKXMOFlLU19af3XKnNwCj8Vq
FAeuAaAF8QM3BDTe6IpWnVQaHhZJSH0g3wkWb6rYu2zIgl90jeJ0RoBALwIDAQAB
o4IC0zCCAs8wHQYDVR0OBBYEFFGtZ5G42+nDUr1kqTIhcrQcSyFxMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBlLzNmNjE3
OC01ZmQzLTQwM2YtOGZlYy0xYTg5ZmYxMTk2NWUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUvM2Y2MTc4
LTVmZDMtNDAzZi04ZmVjLTFhODlmZjExOTY1ZS8xL1VhMW5rYmpiNmNOU3ZXU3BN
aUZ5dEJ4TElYRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFIGCCsGAQUF
BwEHAQH/BEMwQTAwBAIAATAqAwQBW87SAwQBW+DYAwQBW+LEAwQBW+YIAwQCuTAc
AwQCuY6gAwQCuZh4MA0EAgACMAcDBQMqFHqAMBoGCCsGAQUFBwEIAQH/BAswCaAH
MAUCAwC6rjANBgkqhkiG9w0BAQsFAAOCAQEACWwvbcQUdxjI8G/OA8c2byM92KH7
wYleHlqnQXOStAuTTYIZrUIYZmvk4AYOGIJHhHgBG8mzXP1a0ZVM7MWQGDGmz8PI
pR1tL2E09beh6AqT3mxje83xPTfJx4BsNnOAWZULp+tNGL2+eHuIVRa/rxBB59tv
ifToxdp3gmnWC59sHJ6z4ZCH24dQzZdCLnFkoL7h9TYHB8awo5aOlvtOzwVacMWc
oKHE8xFuQJcKWKIYf0oxxy+/BQNguFjhag2cVgeRVBnnkj37tNsXCS9Aq8XELk9M
xSUGhiezZ+X3gvt7wUCASqr3CctEhucg6Cgctdo+Gs3p27bwZN4hRV+40w==
-----END CERTIFICATE-----
Generated at Sun Apr 20 00:17:28 2025 by rpki-client