Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ykp_JQf8rb7NPStimOcPXUv-BLQ.cer
File: Ykp_JQf8rb7NPStimOcPXUv-BLQ.cer (raw, json)
Hash identifier: GrBb53445zW34fmN2GL1omckUFNXCtNTmG7ByvYpj9g=
Subject key identifier: 62:4A:7F:25:07:FC:AD:BE:CD:3D:2B:62:98:E7:0F:5D:4B:FE:04:B4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D61FB1B5470A7AAE58D71CF0967DD7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c6/270e1a-089a-4090-8a9b-c822c838dfe9/1/Ykp_JQf8rb7NPStimOcPXUv-BLQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c6/270e1a-089a-4090-8a9b-c822c838dfe9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:11 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 48607
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:1f:b1:b5:47:0a:7a:ae:58:d7:1c:f0:96:7d:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=624a7f2507fcadbecd3d2b6298e70f5d4bfe04b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:68:e5:22:c0:b7:70:21:1b:61:86:d1:66:06:
cb:86:20:86:5b:9c:0b:14:49:e5:d5:37:60:91:d5:
6a:db:06:81:12:3d:65:4d:8c:22:40:fd:c2:e0:9f:
ad:9c:2c:3f:30:f9:b2:ef:ea:4b:9a:a1:96:51:2c:
92:fc:ad:e3:d6:0e:be:c0:94:e8:1b:7d:89:6e:31:
2e:19:58:08:b7:45:34:50:c3:71:5f:3c:9d:3f:8a:
93:bc:94:aa:f8:ac:b4:ec:1e:0c:bf:31:bd:7c:a3:
59:c4:f8:78:38:8b:5c:33:f9:7b:09:db:27:38:7e:
80:88:39:d3:37:53:72:ff:d3:53:da:3b:91:d5:e5:
28:0c:29:f1:fa:87:26:8a:10:f4:f8:f5:46:99:6d:
54:05:e4:4c:83:53:e3:60:a7:65:31:d8:aa:f5:94:
26:db:13:ae:f2:aa:8e:8a:cf:72:72:ef:52:5e:69:
9f:a1:e9:be:6e:07:e6:35:5c:f9:d5:f5:3a:d0:da:
f4:78:c1:eb:68:0a:2a:8a:e9:d6:46:b9:46:d1:7b:
81:4d:b3:df:bc:dc:98:a4:cf:f3:4a:33:8b:39:a1:
f7:98:01:49:a9:2c:21:89:b7:02:b5:74:d3:28:08:
21:84:6d:52:68:6e:26:ef:6d:a1:28:bc:d5:a2:2b:
83:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:4A:7F:25:07:FC:AD:BE:CD:3D:2B:62:98:E7:0F:5D:4B:FE:04:B4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/270e1a-089a-4090-8a9b-c822c838dfe9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/270e1a-089a-4090-8a9b-c822c838dfe9/1/Ykp_JQf8rb7NPStimOcPXUv-BLQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48607
Signature Algorithm: sha256WithRSAEncryption
35:62:76:15:2d:a3:c3:e8:d3:f3:cf:79:70:f3:7d:4d:7f:4f:
24:6c:26:58:06:a8:5c:36:0f:37:ed:b7:69:80:d7:64:a3:5c:
69:3d:19:ec:0e:6a:f7:6c:8d:7a:28:5b:8e:06:26:94:c4:cc:
30:fd:01:39:74:f9:05:f4:3f:03:ae:60:ff:2f:80:e0:87:38:
9c:41:1b:2d:5c:23:a0:fd:eb:cc:d2:44:bd:12:6b:89:8c:8a:
3c:cb:34:d7:28:75:2e:2f:40:b1:98:f8:81:d1:f5:b4:30:74:
8c:ae:d3:c4:4b:51:27:b2:4b:b0:0d:88:69:ea:79:17:d3:9e:
e4:8c:53:3c:13:76:12:b5:76:58:fd:9e:66:54:aa:f4:ab:1a:
8c:52:24:f4:86:1c:e7:fa:30:15:31:10:54:a2:f1:78:89:83:
67:bf:34:e4:32:e5:f4:3b:51:91:ec:f1:4c:82:5c:87:39:49:
1e:3c:d5:df:d4:0e:8b:34:4d:a1:31:c6:94:98:eb:db:bc:b9:
99:63:53:b4:b6:3f:5a:13:23:dc:88:38:33:5d:ef:60:55:87:
59:63:c3:53:ef:be:6a:56:f6:d3:46:c8:e3:55:13:3a:5c:d8:
a1:61:a3:ea:16:21:b0:b5:6e:33:79:8c:a8:20:86:16:f8:c2:
8d:a3:6e:2a
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAZQg1h+xtUcKeq5Y1xzwln3XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDc0ODExWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjRhN2YyNTA3ZmNhZGJlY2QzZDJiNjI5OGU3MGY1ZDRiZmUwNGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4GjlIsC3cCEbYYbRZgbLhiCGW5wL
FEnl1TdgkdVq2waBEj1lTYwiQP3C4J+tnCw/MPmy7+pLmqGWUSyS/K3j1g6+wJTo
G32JbjEuGVgIt0U0UMNxXzydP4qTvJSq+Ky07B4MvzG9fKNZxPh4OItcM/l7Cdsn
OH6AiDnTN1Ny/9NT2juR1eUoDCnx+ocmihD0+PVGmW1UBeRMg1PjYKdlMdiq9ZQm
2xOu8qqOis9ycu9SXmmfoem+bgfmNVz51fU60Nr0eMHraAoqiunWRrlG0XuBTbPf
vNyYpM/zSjOLOaH3mAFJqSwhibcCtXTTKAghhG1SaG4m722hKLzVoiuDXwIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFGJKfyUH/K2+zT0rYpjnD11L/gS0MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M2LzI3MGUx
YS0wODlhLTQwOTAtOGE5Yi1jODIyYzgzOGRmZTkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzYvMjcwZTFh
LTA4OWEtNDA5MC04YTliLWM4MjJjODM4ZGZlOS8xL1lrcF9KUWY4cmI3TlBTdGlt
T2NQWFV2LUJMUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwC93zANBgkqhkiG9w0BAQsFAAOCAQEANWJ2FS2jw+jT
8895cPN9TX9PJGwmWAaoXDYPN+23aYDXZKNcaT0Z7A5q92yNeihbjgYmlMTMMP0B
OXT5BfQ/A65g/y+A4Ic4nEEbLVwjoP3rzNJEvRJriYyKPMs01yh1Li9AsZj4gdH1
tDB0jK7TxEtRJ7JLsA2Iaep5F9Oe5IxTPBN2ErV2WP2eZlSq9KsajFIk9IYc5/ow
FTEQVKLxeImDZ7805DLl9DtRkezxTIJchzlJHjzV39QOizRNoTHGlJjr27y5mWNT
tLY/WhMj3Ig4M13vYFWHWWPDU+++alb200bI41UTOlzYoWGj6hYhsLVuM3mMqCCG
FvjCjaNuKg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:56:42 2025 by rpki-client