Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.cer
File: Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.cer (raw, json)
Hash identifier: e+Y0EM+f4yjEUy3JqJgLKqESJl4FYd5oD6uqYCiXSkg=
Subject key identifier: 51:BF:B4:63:53:BF:CC:CF:F9:41:2D:CB:DD:48:0F:19:B4:C9:83:97
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195F1CF0F1D3A45805BD135F4A8A0E5A80D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 01 Apr 2025 14:43:53 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 57305
IP: 88.135.188.0/22
IP: 91.201.152.0/22
IP: 91.227.212.0/22
IP: 109.197.33.0 -- 109.197.34.255
IP: 109.197.38.0/24
IP: 195.149.100.0/24
IP: 195.200.206.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 14 Apr 2025 17:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f1:cf:0f:1d:3a:45:80:5b:d1:35:f4:a8:a0:e5:a8:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 1 14:43:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=51bfb46353bfcccff9412dcbdd480f19b4c98397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1d:47:c1:bb:6e:1d:c7:7c:d2:12:95:48:6e:
05:64:68:a1:6c:7e:76:2a:95:73:0d:77:84:d0:65:
ad:44:8b:6a:3b:03:58:cc:10:a4:8e:a3:b5:98:c0:
b2:18:7b:1a:c4:cc:b2:cd:d4:96:7a:61:65:a9:ba:
b7:0f:3f:6c:bd:f0:b9:f3:04:c3:d1:96:2b:17:5f:
7f:22:d9:b5:cf:96:db:96:40:4f:eb:b9:12:74:55:
89:8e:50:af:5b:68:4b:9f:1b:ea:d1:d9:ba:36:9d:
1f:9e:c5:bd:f1:e9:a5:ad:b2:2c:4f:15:0b:c7:b4:
51:2a:80:b3:13:41:a5:b2:74:89:9c:9e:f4:02:d7:
56:c7:c2:bf:dc:eb:5e:e3:f0:f9:94:38:56:8b:6b:
38:1a:a9:5c:74:96:41:44:9d:b0:07:eb:da:5c:88:
78:98:1a:b1:5a:95:19:36:c4:c8:04:b5:7a:fa:1e:
46:aa:fd:50:23:e4:8c:e6:15:df:dc:da:3c:aa:42:
6f:66:50:69:da:67:3a:ee:5f:31:51:39:2a:30:eb:
e3:5f:52:ff:94:47:9d:c5:71:bf:b8:95:85:33:81:
82:45:df:2d:2b:b6:14:3b:88:ee:b8:1b:b4:09:ff:
09:ec:db:da:4c:24:1a:63:58:e8:a3:da:58:22:e6:
cb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:BF:B4:63:53:BF:CC:CF:F9:41:2D:CB:DD:48:0F:19:B4:C9:83:97
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d92557-8c46-482c-91a8-c1e974bed12e/1/Ub-0Y1O_zM_5QS3L3UgPGbTJg5c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.135.188.0/22
91.201.152.0/22
91.227.212.0/22
109.197.33.0-109.197.34.255
109.197.38.0/24
195.149.100.0/24
195.200.206.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57305
Signature Algorithm: sha256WithRSAEncryption
b1:26:04:1c:c7:5b:ca:1c:10:25:4a:f5:0a:e2:83:01:7e:9c:
2e:0b:c6:6b:de:8c:63:b0:6a:c9:03:68:0a:1e:29:05:b5:58:
c5:07:e6:da:ea:ce:4f:9b:e5:65:36:1a:8d:b2:01:6b:ed:01:
fe:ce:42:03:f6:b9:5b:c6:d5:b7:39:47:25:ec:e1:8a:ae:7f:
46:8d:79:b4:49:b0:11:26:19:af:71:d8:c4:6a:4f:56:b6:ff:
db:bd:a4:1f:3b:95:72:eb:e9:79:85:3c:46:55:e4:93:7f:1b:
d9:1e:fd:39:fe:15:99:48:9e:97:c8:0b:03:14:bf:30:0e:be:
cb:46:dd:c3:83:01:e2:15:84:22:58:1b:b6:5f:dc:55:44:d1:
f8:42:f9:ae:d6:d8:7f:58:c2:23:ef:6d:2d:85:d0:a1:b7:10:
80:68:7d:84:a6:4e:32:68:81:b2:62:7a:2c:a7:be:34:99:28:
4f:87:81:74:46:60:d7:1b:17:3e:26:94:fc:d7:ad:a9:b7:07:
45:6b:fd:1e:c8:ca:06:ea:d6:0a:14:24:ae:5d:d7:ed:56:85:
f6:1b:e3:03:94:b2:5a:93:5d:5f:16:f3:aa:25:a3:f2:9d:2b:
c9:e3:c8:41:8d:2d:6e:ae:2d:d6:3c:51:7e:8b:c1:97:9c:3b:
2a:a3:ce:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 23:05:22 2025 by rpki-client