Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer
File: buuvFSM9mOuO8GLCRfkXNi5jJlY.cer (raw, json)
Hash identifier: w235YDfThVcVvhDd6/gZ7xft7oWwCjWWgmxEpsDpQK0=
Subject key identifier: 6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194258FCA59537138FDBCA831509A6B0ACC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 05:49:28 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50630
IP: 2.56.4.0/22
IP: 109.95.56.0/22
IP: 193.41.249.0/24
IP: 195.8.194.0/24
IP: 2a0d:4d40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:ca:59:53:71:38:fd:bc:a8:31:50:9a:6b:0a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 05:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6eebaf15233d98eb8ef062c245f917362e632656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:56:0f:2c:dc:88:73:58:94:66:bf:46:c7:e7:
0f:5f:e0:85:0d:7c:39:59:2d:73:09:85:25:1e:a6:
cf:a8:9b:6e:2a:79:58:00:d9:47:d7:68:34:7a:fe:
cf:46:cb:a8:73:3d:96:4a:8f:df:19:3a:d6:fa:33:
0e:0d:33:a4:61:c8:bd:1b:23:9e:ee:0c:5f:55:b6:
89:24:d7:36:79:d3:98:1a:9a:fc:14:35:5f:2f:52:
7f:6b:fe:6f:de:2f:cb:f2:69:01:93:7a:f6:27:7c:
5c:f8:1e:f2:9f:93:f7:28:45:f1:77:cf:1d:fb:15:
ba:22:8b:1a:29:a9:d3:8b:1f:56:88:f2:05:cd:03:
d7:48:31:05:13:c0:de:d9:d1:21:e4:8d:db:59:37:
59:13:62:de:fe:9d:be:0a:6d:99:b8:33:62:ad:91:
84:14:ef:a4:89:36:f6:69:05:e1:39:33:10:cd:08:
ad:54:6b:a1:a4:73:5b:ac:4e:05:e9:9c:e1:8a:35:
eb:51:3a:63:09:e6:b2:88:0d:16:c0:58:f1:e0:5c:
3b:2d:81:2e:f6:e7:ad:38:fb:90:e4:e9:3d:69:3f:
a9:2a:49:f1:f7:b5:3b:2e:9f:32:68:c6:02:65:70:
75:87:fa:c9:1d:c0:41:fe:0b:24:12:c2:ac:9d:bf:
f8:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.4.0/22
109.95.56.0/22
193.41.249.0/24
195.8.194.0/24
IPv6:
2a0d:4d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50630
Signature Algorithm: sha256WithRSAEncryption
51:41:cb:57:21:41:90:6a:21:d7:68:34:53:2a:2f:c1:95:73:
02:93:ee:13:0a:17:b5:e1:d5:6e:76:c0:8c:a4:7b:a5:74:f2:
d8:a6:2e:30:bc:52:92:74:de:4c:ce:f6:a3:51:19:5f:f9:c7:
9c:f6:d1:4a:50:22:c0:1c:bf:d3:e5:02:6b:aa:9b:eb:89:d6:
b4:ee:81:b8:cc:4c:a9:c3:e0:a2:ea:49:e2:4f:73:13:24:56:
a2:e5:c6:0e:32:b4:f7:20:f2:89:2c:48:35:85:28:36:c9:cf:
29:b8:c7:c2:b8:b2:6c:72:4c:83:a6:5d:a9:99:0f:cf:33:46:
b4:7e:62:ee:b9:3a:cf:e0:7b:44:39:3e:95:fc:86:f3:c7:35:
79:aa:5f:4a:74:6b:c6:56:d9:b7:51:c3:1c:44:0a:24:1f:3e:
2c:62:3a:bb:8f:74:3f:b7:a7:71:c1:89:aa:b1:c4:fe:89:18:
3c:6f:5a:76:7c:af:96:12:b4:1a:25:c5:d5:a8:04:d9:3b:71:
90:c1:73:5d:82:e4:e5:3e:fa:4f:7e:6d:60:7c:14:58:04:04:
5e:a0:f9:8a:58:36:7f:a5:79:61:cb:f6:a3:22:9b:ec:bf:6f:
cb:7b:ad:59:fb:87:56:c3:ea:c1:bd:ab:93:5d:04:50:bc:1e:
e6:56:ec:50
-----BEGIN CERTIFICATE-----
MIIFtTCCBJ2gAwIBAgISAZQlj8pZU3E4/byoMVCaawrMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMDU0OTI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWViYWYxNTIzM2Q5OGViOGVmMDYyYzI0NWY5MTczNjJlNjMyNjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VYPLNyIc1iUZr9Gx+cPX+CFDXw5
WS1zCYUlHqbPqJtuKnlYANlH12g0ev7PRsuocz2WSo/fGTrW+jMODTOkYci9GyOe
7gxfVbaJJNc2edOYGpr8FDVfL1J/a/5v3i/L8mkBk3r2J3xc+B7yn5P3KEXxd88d
+xW6IosaKanTix9WiPIFzQPXSDEFE8De2dEh5I3bWTdZE2Le/p2+Cm2ZuDNirZGE
FO+kiTb2aQXhOTMQzQitVGuhpHNbrE4F6ZzhijXrUTpjCeayiA0WwFjx4Fw7LYEu
9uetOPuQ5Ok9aT+pKknx97U7Lp8yaMYCZXB1h/rJHcBB/gskEsKsnb/4MwIDAQAB
o4ICwTCCAr0wHQYDVR0OBBYEFG7rrxUjPZjrjvBiwkX5FzYuYyZWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1LzI3MTNl
ZC1jYjMyLTQwN2UtODYyOC0wZTQ2N2U1MWJhMDYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvMjcxM2Vk
LWNiMzItNDA3ZS04NjI4LTBlNDY3ZTUxYmEwNi8xL2J1dXZGU005bU91TzhHTENS
ZmtYTmk1akpsWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF
BwEHAQH/BDEwLzAeBAIAATAYAwQCAjgEAwQCbV84AwQAwSn5AwQAwwjCMA0EAgAC
MAcDBQMqDU1AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDFxjANBgkqhkiG9w0B
AQsFAAOCAQEAUUHLVyFBkGoh12g0UyovwZVzApPuEwoXteHVbnbAjKR7pXTy2KYu
MLxSknTeTM72o1EZX/nHnPbRSlAiwBy/0+UCa6qb64nWtO6BuMxMqcPgoupJ4k9z
EyRWouXGDjK09yDyiSxINYUoNsnPKbjHwriybHJMg6ZdqZkPzzNGtH5i7rk6z+B7
RDk+lfyG88c1eapfSnRrxlbZt1HDHEQKJB8+LGI6u490P7enccGJqrHE/okYPG9a
dnyvlhK0GiXF1agE2TtxkMFzXYLk5T76T35tYHwUWAQEXqD5ilg2f6V5Ycv2oyKb
7L9vy3utWfuHVsPqwb2rk10EULwe5lbsUA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 02:11:15 2025 by rpki-client