Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bzycduKvxzzO28ngKS_7mfZec1I.cer
File: bzycduKvxzzO28ngKS_7mfZec1I.cer (raw, json)
Hash identifier: UVugj+3dW3BXLyWs8ZIvtG2Zyne5C8rrDaGpKRKP0SY=
Subject key identifier: 6F:3C:9C:76:E2:AF:C7:3C:CE:DB:C9:E0:29:2F:FB:99:F6:5E:73:52
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942825DACB10F746920A634652AE836DF8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/bzycduKvxzzO28ngKS_7mfZec1I.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:52:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 203730
IP: 185.106.116.0/22
IP: 2a0d:9f80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Mar 2025 12:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:da:cb:10:f7:46:92:0a:63:46:52:ae:83:6d:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:52:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6f3c9c76e2afc73ccedbc9e0292ffb99f65e7352
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:60:2b:50:cf:0c:9d:84:f8:f5:f5:92:a4:ce:
23:ec:52:77:42:dc:49:fe:37:91:f3:12:a6:89:f1:
2e:4b:83:01:22:5c:8f:d0:23:9c:42:f1:39:e3:dd:
c3:a9:f2:c5:80:c0:7a:fb:78:37:86:d5:49:96:0d:
3d:ff:f3:08:51:9d:53:87:8b:1c:89:e0:b5:88:5b:
35:c0:48:fd:7a:5b:99:48:ce:f6:24:f9:19:d8:d7:
77:30:2d:73:8a:6d:8d:8f:71:5a:3f:f0:d3:f4:cf:
73:4f:34:68:9d:36:f7:df:55:8d:58:0c:0a:7d:7c:
8b:d1:33:55:cb:20:c1:f8:38:f5:33:31:54:98:47:
3b:8d:c1:62:af:2e:f6:fb:64:b3:e5:5b:88:3c:ec:
1a:7b:ff:d0:02:25:17:e2:4f:13:e8:08:78:c1:37:
33:a6:5a:24:fb:cc:8b:2b:89:22:26:e0:12:45:32:
4d:3d:f7:91:db:5b:f1:c6:0a:31:c3:e1:d6:1c:e9:
c3:a5:51:cf:5b:d0:52:e6:25:03:6c:c7:2c:84:6f:
bf:30:21:17:75:fb:29:48:1d:09:c7:04:bb:d9:f9:
e1:20:2a:2f:bc:07:2d:5c:d6:50:9d:fc:f6:b2:0a:
97:96:87:71:bd:af:51:49:47:e3:d5:31:e1:fa:75:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:3C:9C:76:E2:AF:C7:3C:CE:DB:C9:E0:29:2F:FB:99:F6:5E:73:52
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e5dfe6-18bb-48a5-8622-59207d8420d0/1/bzycduKvxzzO28ngKS_7mfZec1I.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.106.116.0/22
IPv6:
2a0d:9f80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203730
Signature Algorithm: sha256WithRSAEncryption
1c:68:a8:3a:31:fd:9e:1a:14:dd:22:9d:75:97:d8:d4:13:17:
e1:44:a9:f3:2c:26:a2:cd:59:99:5d:0d:78:92:81:40:5f:c7:
c7:4a:c4:b6:1d:bd:27:40:bb:c9:1b:b0:79:4c:73:3a:f1:d0:
56:70:a0:6a:8f:f7:b7:1b:d2:1e:f0:ef:d9:e7:7b:05:6f:90:
40:74:75:7a:7e:67:a1:62:a6:94:09:24:08:34:ac:65:6d:fd:
5e:b4:5a:91:ed:3b:66:f7:1b:fb:e2:9c:02:e5:99:6b:3c:8d:
b3:fc:67:6d:41:c5:13:2c:69:a4:05:72:c1:6f:ba:d5:67:71:
a4:9c:85:ac:82:d1:66:bf:f7:41:33:73:a7:c0:0f:77:a6:7e:
6f:8d:3c:8e:6b:17:af:8e:2b:bd:0c:6d:68:2c:aa:79:82:bf:
14:56:49:dd:87:19:2d:d6:1f:f0:30:8b:67:94:39:8c:78:a9:
f8:fb:a6:4b:77:5d:b2:e9:85:99:73:13:6f:02:cc:4d:a4:be:
e2:04:96:73:c3:de:0e:26:bb:b7:db:d8:3e:43:97:6e:83:ae:
4c:58:12:a1:05:38:b8:57:53:fe:1f:72:fc:d5:1f:22:07:b2:
f5:a3:6d:dc:bd:c5:b6:0b:95:9c:0f:a7:9e:9c:0e:bb:88:bd:
c0:cb:54:a9
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQoJdrLEPdGkgpjRlKug234MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTc1MjM3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZjNjOWM3NmUyYWZjNzNjY2VkYmM5ZTAyOTJmZmI5OWY2NWU3MzUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWArUM8MnYT49fWSpM4j7FJ3QtxJ
/jeR8xKmifEuS4MBIlyP0COcQvE5493DqfLFgMB6+3g3htVJlg09//MIUZ1Th4sc
ieC1iFs1wEj9eluZSM72JPkZ2Nd3MC1zim2Nj3FaP/DT9M9zTzRonTb331WNWAwK
fXyL0TNVyyDB+Dj1MzFUmEc7jcFiry72+2Sz5VuIPOwae//QAiUX4k8T6Ah4wTcz
plok+8yLK4kiJuASRTJNPfeR21vxxgoxw+HWHOnDpVHPW9BS5iUDbMcshG+/MCEX
dfspSB0JxwS72fnhICovvActXNZQnfz2sgqXlodxva9RSUfj1THh+nX9dQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFG88nHbir8c8ztvJ4Ckv+5n2XnNSMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgwL2U1ZGZl
Ni0xOGJiLTQ4YTUtODYyMi01OTIwN2Q4NDIwZDAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAvZTVkZmU2
LTE4YmItNDhhNS04NjIyLTU5MjA3ZDg0MjBkMC8xL2J6eWNkdUt2eHp6TzI4bmdL
U183bWZaZWMxSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuWp0MA0EAgACMAcDBQMqDZ+AMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMb0jANBgkqhkiG9w0BAQsFAAOCAQEAHGioOjH9nhoU
3SKddZfY1BMX4USp8ywmos1ZmV0NeJKBQF/Hx0rEth29J0C7yRuweUxzOvHQVnCg
ao/3txvSHvDv2ed7BW+QQHR1en5noWKmlAkkCDSsZW39XrRake07Zvcb++KcAuWZ
azyNs/xnbUHFEyxppAVywW+61WdxpJyFrILRZr/3QTNzp8APd6Z+b408jmsXr44r
vQxtaCyqeYK/FFZJ3YcZLdYf8DCLZ5Q5jHip+PumS3ddsumFmXMTbwLMTaS+4gSW
c8PeDia7t9vYPkOXboOuTFgSoQU4uFdT/h9y/NUfIgey9aNt3L3FtguVnA+nnpwO
u4i9wMtUqQ==
-----END CERTIFICATE-----
Generated at Sat Mar 8 22:13:43 2025 by rpki-client