Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Ze3JFheq3wwsx_H115bb237YWQ0.cer
File: Ze3JFheq3wwsx_H115bb237YWQ0.cer (raw, json)
Hash identifier: kiwAjgVNG5RU2WrOUxgbucT8c2JsM2oh7sQoTz8Mnq8=
Subject key identifier: 65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D6CC3E1645A09BBFD227AA8A71C003
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:47:47 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206088
IP: 185.196.180.0/22
IP: 2a14:1800::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:cc:3e:16:45:a0:9b:bf:d2:27:aa:8a:71:c0:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:47:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=65edc91617aadf0c2cc7f1f5d796dbdb7ed8590d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:32:05:a5:07:60:b5:66:0f:80:dc:1a:de:a3:
e7:c1:73:c6:f5:7d:b3:18:be:6e:b9:c4:d7:52:d9:
79:5d:8e:97:07:2f:d3:f3:da:94:46:e8:2a:4e:87:
9d:58:2f:72:68:4c:e9:73:cc:87:12:c7:b4:a2:70:
8e:21:a5:ea:37:30:38:e8:84:63:6c:58:de:c0:66:
31:9f:f8:e3:8d:8f:ba:e4:ea:46:91:8d:cf:f7:47:
d3:ff:4f:7a:96:50:19:bc:18:68:d3:91:f5:13:0a:
26:18:06:ae:1d:f8:51:bb:bc:0e:82:aa:92:9f:6c:
18:cb:2a:d6:61:48:43:0d:36:bd:06:b5:00:08:9a:
88:13:29:37:17:ab:23:fe:99:22:ce:b5:a7:3e:51:
79:45:b2:6c:9e:e8:02:03:6d:e0:90:5e:ef:55:db:
9e:49:3d:90:c1:95:79:28:c1:74:3b:c7:fa:40:63:
b8:a2:31:b2:d1:9a:85:98:5a:39:80:19:22:9b:a6:
ee:31:3f:85:bc:b2:02:fe:fb:4e:44:3b:1c:4b:2f:
d3:2e:ec:c9:d0:a2:48:d6:59:e3:f4:fd:74:e5:90:
f2:5c:33:35:25:05:15:2d:49:47:5f:29:03:c5:01:
9e:93:bc:a1:3b:2b:c8:2e:f6:73:b1:2e:2e:e8:83:
a9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:ED:C9:16:17:AA:DF:0C:2C:C7:F1:F5:D7:96:DB:DB:7E:D8:59:0D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/7be02f-28f5-4209-935a-82d8ebe99424/1/Ze3JFheq3wwsx_H115bb237YWQ0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.180.0/22
IPv6:
2a14:1800::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206088
Signature Algorithm: sha256WithRSAEncryption
38:75:dd:14:3b:86:aa:8f:d0:87:d8:c7:27:90:31:f5:60:be:
d9:fb:63:0f:04:09:72:c9:55:6f:47:aa:5f:63:bb:ad:4b:12:
b4:db:27:fa:65:6f:71:b9:18:2e:2a:8c:12:05:df:3e:24:8d:
a2:68:b4:38:dd:97:99:69:90:99:d6:5f:4e:2b:cd:56:5c:d7:
34:7a:e8:34:08:c3:2b:68:1d:a0:4f:41:c9:40:20:9a:f3:b8:
8f:09:82:19:14:df:7f:5c:69:43:a1:d8:0d:7e:59:57:7f:02:
e2:38:c1:a3:53:2b:be:cb:5b:4b:ae:7a:7f:ab:0f:ba:51:f2:
da:6d:11:31:5c:ac:ea:bf:87:e5:63:5a:95:3e:bf:18:51:c6:
51:f6:52:52:e1:31:ec:ee:fb:9e:79:20:98:30:7b:9a:86:9c:
07:38:94:40:f3:e2:5f:b1:d1:20:83:0e:7e:73:78:95:b0:b1:
3f:3f:5a:08:99:33:a1:93:92:73:0f:ce:b0:fc:eb:a2:e3:25:
9c:bd:c3:41:4c:e2:b8:26:3f:ba:93:78:65:f2:eb:41:63:f6:
61:45:58:cc:a2:48:af:aa:08:48:0b:5f:cb:06:b7:82:a7:58:
db:7a:40:0c:af:07:ca:98:0f:a6:f6:43:95:f2:a4:ce:58:9e:
4a:db:35:c1
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQj1sw+FkWgm7/SJ6qKccADMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMjE0NzQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWVkYzkxNjE3YWFkZjBjMmNjN2YxZjVkNzk2ZGJkYjdlZDg1OTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDIFpQdgtWYPgNwa3qPnwXPG9X2z
GL5uucTXUtl5XY6XBy/T89qURugqToedWC9yaEzpc8yHEse0onCOIaXqNzA46IRj
bFjewGYxn/jjjY+65OpGkY3P90fT/096llAZvBho05H1EwomGAauHfhRu7wOgqqS
n2wYyyrWYUhDDTa9BrUACJqIEyk3F6sj/pkizrWnPlF5RbJsnugCA23gkF7vVdue
ST2QwZV5KMF0O8f6QGO4ojGy0ZqFmFo5gBkim6buMT+FvLIC/vtORDscSy/TLuzJ
0KJI1lnj9P105ZDyXDM1JQUVLUlHXykDxQGek7yhOyvILvZzsS4u6IOp2QIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFGXtyRYXqt8MLMfx9deW29t+2FkNMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI2LzdiZTAy
Zi0yOGY1LTQyMDktOTM1YS04MmQ4ZWJlOTk0MjQvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvN2JlMDJm
LTI4ZjUtNDIwOS05MzVhLTgyZDhlYmU5OTQyNC8xL1plM0pGaGVxM3d3c3hfSDEx
NWJiMjM3WVdRMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCucS0MA0EAgACMAcDBQMqFBgAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMlCDANBgkqhkiG9w0BAQsFAAOCAQEAOHXdFDuGqo/Q
h9jHJ5Ax9WC+2ftjDwQJcslVb0eqX2O7rUsStNsn+mVvcbkYLiqMEgXfPiSNomi0
ON2XmWmQmdZfTivNVlzXNHroNAjDK2gdoE9ByUAgmvO4jwmCGRTff1xpQ6HYDX5Z
V38C4jjBo1MrvstbS656f6sPulHy2m0RMVys6r+H5WNalT6/GFHGUfZSUuEx7O77
nnkgmDB7moacBziUQPPiX7HRIIMOfnN4lbCxPz9aCJkzoZOScw/OsPzrouMlnL3D
QUziuCY/upN4ZfLrQWP2YUVYzKJIr6oISAtfywa3gqdY23pADK8HypgPpvZDlfKk
zlieSts1wQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:01:16 2025 by rpki-client