Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/et9j43Wwt4UIG1lFsdGNnehuDvw.cer
File: et9j43Wwt4UIG1lFsdGNnehuDvw.cer (raw, json)
Hash identifier: CcqhpU6CoELkLbumVJV/G2syasYt4patFvfJqDSTmH0=
Subject key identifier: 7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196D829CBAF12C6B1563BBF75BCD3F80927
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Fri 16 May 2025 08:15:39 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50530
IP: 109.110.160.0/19
IP: 185.4.220.0/22
IP: 185.205.220.0/22
IP: 185.222.184.0/22
IP: 193.246.160.0/23
IP: 193.246.164.0/23
IP: 217.65.70.0/24
IP: 2a00:1ce0::/32
IP: 2a0b:ac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Jun 2025 16:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d8:29:cb:af:12:c6:b1:56:3b:bf:75:bc:d3:f8:09:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 16 08:15:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7adf63e375b0b785081b5945b1d18d9de86e0efc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:63:11:78:3c:6c:8b:ff:04:96:40:b2:f0:40:
a2:4c:32:65:3c:fa:e0:c8:a5:63:dc:89:8d:49:b5:
40:86:4c:5d:f6:67:08:ba:08:9f:ad:90:b0:51:77:
28:da:f1:31:1d:a9:7b:fd:fe:ef:2e:93:48:80:5e:
2c:81:24:f4:a6:f1:50:db:79:76:f8:9f:6d:16:b4:
c0:80:3b:98:4f:9e:77:01:cd:23:08:c4:9f:d2:52:
c2:79:e5:36:b2:3d:82:1e:37:f3:0e:10:73:bd:c6:
ac:78:36:9d:75:b3:c4:d3:c2:16:58:d5:06:b8:23:
62:9b:1c:ab:cd:0f:8e:69:b8:8e:1f:d7:4b:08:47:
14:5b:15:b8:d3:68:9a:c7:0b:4f:ef:18:9e:ef:85:
9c:8b:04:ad:33:49:c7:7e:d2:f6:f2:40:9f:23:2f:
a9:ba:43:e9:60:ac:18:97:cf:72:e5:36:ce:55:53:
37:fe:a5:13:f6:e7:e1:c1:66:e8:04:c7:c4:93:63:
c6:84:aa:49:ce:33:ed:7c:b3:4b:2c:a1:bb:75:d3:
a7:71:3a:14:8c:d4:2e:e1:49:0c:6d:c9:74:64:5b:
27:a0:a3:48:f7:8b:0e:2c:7f:14:57:94:a9:c0:c1:
81:e7:88:ec:47:08:19:16:71:3f:13:1d:0e:3d:58:
79:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:DF:63:E3:75:B0:B7:85:08:1B:59:45:B1:D1:8D:9D:E8:6E:0E:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/aee3d58d-904a-4375-bf93-8b5f38cab002/0/7ADF63E375B0B785081B5945B1D18D9DE86E0EFC.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.110.160.0/19
185.4.220.0/22
185.205.220.0/22
185.222.184.0/22
193.246.160.0/23
193.246.164.0/23
217.65.70.0/24
IPv6:
2a00:1ce0::/32
2a0b:ac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50530
Signature Algorithm: sha256WithRSAEncryption
a3:29:c4:a5:d7:86:f6:9e:9b:3d:5f:7a:96:c7:4f:eb:f0:a0:
71:3b:d7:2f:7f:d0:0a:bf:88:d1:96:c8:d9:0a:8d:03:0e:de:
75:a2:e8:10:3c:15:ec:0b:13:a2:0b:03:45:aa:9b:14:f9:0f:
b1:89:c0:ea:74:86:9d:b3:02:10:93:d1:a8:64:8b:d5:a5:2a:
b6:00:2c:0e:62:4e:ef:86:f6:73:cc:5b:43:60:73:50:4b:01:
0b:9f:74:07:25:62:8e:c8:27:15:c6:0e:29:97:8e:ed:aa:1f:
cf:a6:fb:b1:ca:11:76:fd:f1:da:40:e9:7a:a1:09:cc:5f:0a:
08:f9:62:50:66:07:cc:a2:13:c0:ff:a7:10:ca:76:a0:77:55:
12:44:09:21:5e:27:8d:81:bb:e0:55:77:d2:d3:cf:1a:4d:8f:
c4:60:43:c6:25:d1:62:19:87:f4:1a:fb:d1:71:35:88:01:8e:
16:c3:6c:5a:b2:7f:5c:82:09:d4:80:0c:44:48:97:f9:81:bd:
4f:50:36:9c:c3:50:a4:3f:b1:b7:25:4c:b0:6b:16:86:48:3f:
71:2a:2b:9d:31:8a:c1:ae:30:c6:c5:48:18:f2:de:0e:55:30:
e6:27:00:34:55:b5:6f:3c:bd:74:b8:19:52:63:bf:e9:dd:68:
09:4d:5c:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 1 21:22:11 2025 by rpki-client