Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_tPwXKP9-ef5nGXMagpnJPWTGnA.cer
File: _tPwXKP9-ef5nGXMagpnJPWTGnA.cer (raw, json)
Hash identifier: wGYtTU3zAepAWCqqo64KtPS985IFYuA1mKlhf3+Pg0I=
Subject key identifier: FE:D3:F0:5C:A3:FD:F9:E7:F9:9C:65:CC:6A:0A:67:24:F5:93:1A:70
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942444C567FA0C5F1B2DC9D2737EEC568C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/_tPwXKP9-ef5nGXMagpnJPWTGnA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:47:54 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 206299
IP: 185.55.168.0/22
IP: 2a02:4ce0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:c5:67:fa:0c:5f:1b:2d:c9:d2:73:7e:ec:56:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=fed3f05ca3fdf9e7f99c65cc6a0a6724f5931a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:04:73:c7:eb:c4:3b:bc:c0:a0:69:ef:ee:c3:
4a:49:e4:4f:08:d0:cb:c8:05:df:d9:b8:9c:3b:af:
34:0f:88:65:d3:e6:23:3f:b2:b4:f0:4c:7c:aa:03:
4c:bf:1f:c3:45:00:26:e8:6e:60:ba:2a:f2:1b:1b:
76:5e:81:8d:0f:0a:4d:73:81:04:14:c2:db:f8:3f:
d4:92:fb:bd:94:38:38:02:30:16:5c:00:57:91:0d:
1a:1e:42:57:37:c9:6d:9c:37:ce:d5:54:97:75:13:
12:3a:60:12:8f:30:96:56:f0:44:51:37:8b:fa:53:
fd:49:1e:46:d2:23:f5:02:0d:6f:e7:e1:d7:ec:30:
7f:19:4a:d9:07:a9:cf:47:7e:b3:6e:ae:e0:01:6c:
57:23:01:f2:8b:f8:fc:66:39:7d:12:74:e9:d0:46:
d8:88:14:41:73:a7:7b:27:9b:a1:74:06:93:22:83:
00:6a:df:a8:c7:d0:0f:e6:0f:88:38:fa:72:e8:f5:
13:e9:8d:e9:2f:42:10:37:48:76:41:12:fb:3b:f1:
3a:c7:5d:0e:5d:e6:5c:55:ee:3b:ca:04:d8:b8:80:
5b:8e:c0:f6:ec:4e:10:19:16:dc:0a:20:51:77:30:
98:ff:28:db:51:a6:44:a4:7f:cb:e8:bf:32:14:a5:
8a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D3:F0:5C:A3:FD:F9:E7:F9:9C:65:CC:6A:0A:67:24:F5:93:1A:70
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/c95639-722a-4021-beeb-ac5ee625babc/1/_tPwXKP9-ef5nGXMagpnJPWTGnA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.168.0/22
IPv6:
2a02:4ce0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
206299
Signature Algorithm: sha256WithRSAEncryption
92:44:ea:be:a0:94:b5:69:87:2b:ef:5c:e3:27:2f:44:89:bb:
ef:21:14:57:9b:09:30:6e:42:e7:0d:72:8d:c4:13:b8:7e:7d:
6f:e4:c8:4b:20:28:87:93:a1:db:53:05:d4:fb:78:fc:84:b5:
b0:f7:6f:d3:68:e3:80:88:99:ed:25:fc:38:88:21:be:3e:48:
0f:3b:09:11:c1:ef:02:6f:c2:aa:75:27:88:f8:20:e5:b5:f6:
6b:6b:9f:a5:1e:0b:99:89:da:cb:b0:90:76:19:84:b2:c2:97:
61:91:bf:11:ff:95:d3:3f:25:76:a9:17:88:e1:c7:d5:1c:8b:
45:13:ee:bb:ab:31:a5:d8:ae:01:f5:ee:37:a3:4a:9f:97:2c:
89:c7:e6:83:ba:ec:24:ba:75:55:17:ce:d0:1a:65:9b:10:94:
ef:0c:0c:a8:e3:0a:a7:e7:21:91:b7:d7:1d:6c:f7:0a:1c:26:
5d:ec:bb:a8:0e:1d:36:1d:a7:ef:48:c9:50:5f:9b:95:25:75:
64:e8:5d:6b:ba:d7:4d:70:73:f3:63:27:ba:78:45:77:fb:d5:
83:95:f9:09:c2:cb:23:3c:91:a7:73:a0:c2:0d:cf:bd:5d:a9:
2b:b6:2e:67:65:5a:8d:bb:40:15:86:1e:68:08:d9:cf:96:6e:
8a:8a:ae:bf
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQkRMVn+gxfGy3J0nN+7FaMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMjM0NzU0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZWQzZjA1Y2EzZmRmOWU3Zjk5YzY1Y2M2YTBhNjcyNGY1OTMxYTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwRzx+vEO7zAoGnv7sNKSeRPCNDL
yAXf2bicO680D4hl0+YjP7K08Ex8qgNMvx/DRQAm6G5guiryGxt2XoGNDwpNc4EE
FMLb+D/Ukvu9lDg4AjAWXABXkQ0aHkJXN8ltnDfO1VSXdRMSOmASjzCWVvBEUTeL
+lP9SR5G0iP1Ag1v5+HX7DB/GUrZB6nPR36zbq7gAWxXIwHyi/j8Zjl9EnTp0EbY
iBRBc6d7J5uhdAaTIoMAat+ox9AP5g+IOPpy6PUT6Y3pL0IQN0h2QRL7O/E6x10O
XeZcVe47ygTYuIBbjsD27E4QGRbcCiBRdzCY/yjbUaZEpH/L6L8yFKWKKwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFP7T8Fyj/fnn+ZxlzGoKZyT1kxpwMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUwL2M5NTYz
OS03MjJhLTQwMjEtYmVlYi1hYzVlZTYyNWJhYmMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTAvYzk1NjM5
LTcyMmEtNDAyMS1iZWViLWFjNWVlNjI1YmFiYy8xL190UHdYS1A5LWVmNW5HWE1h
Z3BuSlBXVEduQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuTeoMA0EAgACMAcDBQAqAkzgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMl2zANBgkqhkiG9w0BAQsFAAOCAQEAkkTqvqCUtWmH
K+9c4ycvRIm77yEUV5sJMG5C5w1yjcQTuH59b+TISyAoh5Oh21MF1Pt4/IS1sPdv
02jjgIiZ7SX8OIghvj5IDzsJEcHvAm/CqnUniPgg5bX2a2ufpR4LmYnay7CQdhmE
ssKXYZG/Ef+V0z8ldqkXiOHH1RyLRRPuu6sxpdiuAfXuN6NKn5csicfmg7rsJLp1
VRfO0BplmxCU7wwMqOMKp+chkbfXHWz3ChwmXey7qA4dNh2n70jJUF+blSV1ZOhd
a7rXTXBz82MnunhFd/vVg5X5CcLLIzyRp3Ogwg3PvV2pK7YuZ2VajbtAFYYeaAjZ
z5Zuioquvw==
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:44:18 2025 by rpki-client