Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/YKhR1ZNWypXUrnj6aTa6G4orHHo.cer
File: YKhR1ZNWypXUrnj6aTa6G4orHHo.cer (raw, json)
Hash identifier: tJjZPZTRj8iiA08d3+QxdUpSNw2aFRogS7O1JqENTcI=
Subject key identifier: 60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5C135D9DB7B85807E7FFC2CC239CB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/YKhR1ZNWypXUrnj6aTa6G4orHHo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:10 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 44973
AS: 59474
IP: 93.88.224.0/22
IP: 185.130.8.0/22
IP: 185.253.110.0/24
IP: 2a02:218::/29
IP: 2a10:adc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:c1:35:d9:db:7b:85:80:7e:7f:fc:2c:c2:39:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=60a851d59356ca95d4ae78fa6936ba1b8a2b1c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:77:db:2e:45:05:f1:ad:f6:d0:4a:24:89:
2e:21:fb:67:b1:da:2c:2b:bc:8a:d6:21:e7:3a:ea:
2d:4d:f7:c3:3a:ab:6f:be:32:33:a1:7b:a2:1d:18:
c3:26:fb:b1:f2:78:98:f5:b2:8c:6e:c3:c0:30:91:
57:2d:fe:af:f0:f5:0d:10:3d:28:a0:51:ca:c1:fd:
1c:5c:4a:ff:ba:02:85:f3:5e:c4:e7:45:55:29:05:
3d:0d:23:24:d4:8a:89:8d:0a:fd:4a:68:95:89:34:
50:b0:75:b0:43:1e:5f:dc:5f:5a:3b:f3:0f:9f:30:
c9:7c:70:0b:36:96:30:59:e1:e2:3b:4c:11:db:37:
56:77:dd:62:d2:19:cf:8c:d8:ea:c5:2d:14:6e:52:
99:71:d2:4b:57:fc:1c:aa:97:2d:fd:91:48:16:f8:
18:ac:74:6b:d1:3e:8c:bb:20:b1:52:d1:01:83:13:
f3:f1:c2:5d:77:cd:95:63:5a:be:7f:80:a4:79:7c:
b6:d2:5d:8a:1f:97:92:b4:a2:37:45:97:8b:30:1d:
bf:2a:36:33:69:13:3b:f0:36:4d:09:00:58:11:09:
a3:8e:c8:e9:60:4e:c4:cb:ed:f2:bb:c9:42:76:88:
3f:7c:ef:26:03:a5:ac:09:35:97:f5:ba:dd:02:8a:
ed:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A8:51:D5:93:56:CA:95:D4:AE:78:FA:69:36:BA:1B:8A:2B:1C:7A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/c97898-5e72-454a-be2f-548e7b7fa4e1/1/YKhR1ZNWypXUrnj6aTa6G4orHHo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.88.224.0/22
185.130.8.0/22
185.253.110.0/24
IPv6:
2a02:218::/29
2a10:adc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44973
59474
Signature Algorithm: sha256WithRSAEncryption
1d:b4:8c:8f:46:d2:a7:3d:1e:1c:09:3b:73:31:f2:5b:9c:dc:
21:07:f9:89:a5:04:e8:dc:c7:ef:93:cd:da:bd:a9:41:99:80:
c8:33:f8:3c:de:49:59:d8:8b:20:a5:39:30:6f:a8:dc:2b:d4:
09:0a:25:e3:f1:92:15:30:5e:20:cb:25:1b:fe:1a:46:02:a5:
66:e9:3a:c0:dc:3b:76:42:dd:32:47:3c:a4:f8:79:2f:4f:fe:
9f:a0:78:79:c1:bf:f0:0f:b6:54:f1:e1:ab:92:56:09:32:43:
29:2d:8c:45:19:a7:43:fd:46:c2:cc:e8:f7:5f:f3:25:d0:94:
95:6a:c6:e1:32:96:35:c9:7e:21:4b:ab:c3:d1:08:af:4d:02:
20:fd:a0:e2:f8:47:5d:40:ba:2a:81:3f:48:bc:fb:a5:ec:46:
1b:3e:54:a2:c4:a0:95:90:1e:9c:1b:5b:48:6a:30:f1:11:ad:
10:d4:03:e8:87:8d:79:ae:e3:3c:14:45:8d:f3:85:f8:21:9a:
1e:87:72:3b:41:fe:45:b3:03:0f:ac:0b:79:31:81:99:56:b2:
0b:18:c5:cb:7d:26:95:52:2f:fc:7d:14:26:fd:2f:fc:b8:98:
81:8b:9d:24:c9:c8:35:9f:46:1e:40:d3:c0:8a:86:2e:3a:54:
9f:fc:5b:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 05:18:48 2025 by rpki-client