Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jAz2W63ZqIrMwydQC1_ynR_wkZY.cer
File: jAz2W63ZqIrMwydQC1_ynR_wkZY.cer (raw, json)
Hash identifier: IztQ3OoJE4ewQ96JdQqSeutwoI/VnZBShrPu5w4/gLo=
Subject key identifier: 8C:0C:F6:5B:AD:D9:A8:8A:CC:C3:27:50:0B:5F:F2:9D:1F:F0:91:96
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196F2C3AF8C6440CC7BF2AA0A836441DA60
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/jAz2W63ZqIrMwydQC1_ynR_wkZY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 21 May 2025 12:13:52 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 212916
IP: 5.180.72.0/22
IP: 2a09:fa40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f2:c3:af:8c:64:40:cc:7b:f2:aa:0a:83:64:41:da:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 21 12:13:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8c0cf65badd9a88accc327500b5ff29d1ff09196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:75:dd:a2:78:8f:30:9a:a9:ee:c6:35:99:a3:
1c:f7:92:22:f5:83:09:b0:86:f6:ad:70:0f:0a:dc:
d7:d7:34:4d:ee:71:48:6d:a5:8d:48:2f:19:33:6e:
8e:9e:e5:11:c5:1f:ac:7c:f2:00:94:57:56:74:34:
a7:d1:22:0f:65:de:fd:d3:b6:70:7d:37:f4:19:e5:
18:d8:88:be:4b:9e:f5:c6:79:ee:b2:e9:f5:d9:91:
45:ff:00:87:e3:da:54:dd:23:6d:85:28:5d:c6:82:
42:e8:58:1d:81:2d:5e:2d:27:48:a1:a6:1a:ff:fe:
ae:9f:f0:9c:6a:11:a2:1e:06:55:3b:34:98:65:ae:
9e:a9:5b:5d:73:37:b5:0e:3f:68:f4:5c:fe:96:14:
e0:86:d3:1a:46:7b:45:04:d9:59:0a:52:1a:a5:43:
a6:85:89:d5:ff:09:7b:d2:10:0e:74:3c:aa:82:72:
09:ee:5d:ac:f3:5c:7e:37:2a:12:ff:3a:ab:ab:8f:
38:21:c4:66:df:55:5d:30:d4:4c:7a:97:a4:67:4e:
9b:0f:9b:66:0c:65:be:08:dc:7a:a2:56:db:98:b3:
d3:0d:33:4d:c0:52:d7:e0:22:d7:ed:e3:80:fc:b4:
23:57:c0:67:d2:75:11:83:1b:94:8e:3b:7e:5b:1d:
50:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0C:F6:5B:AD:D9:A8:8A:CC:C3:27:50:0B:5F:F2:9D:1F:F0:91:96
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/jAz2W63ZqIrMwydQC1_ynR_wkZY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.72.0/22
IPv6:
2a09:fa40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212916
Signature Algorithm: sha256WithRSAEncryption
3f:cd:81:23:a1:87:95:12:2a:d0:34:0b:e5:fc:fd:71:6b:3b:
04:75:30:ba:65:66:08:1c:84:db:8b:95:85:8c:45:b3:3b:5e:
33:e0:57:91:84:17:68:d8:8f:d8:4f:51:c4:90:bb:6f:f8:15:
06:e4:41:ea:73:0b:45:37:b4:69:55:e0:74:d8:e8:fe:60:23:
3c:fd:47:de:fb:0b:86:c2:18:1e:8b:9b:b9:ea:cf:91:22:5f:
34:49:47:84:e0:90:ef:39:5f:b1:37:84:b8:e9:85:9f:68:9c:
62:3e:b9:ef:0f:13:9b:8b:c2:ab:e6:78:a6:b5:f7:74:b5:5d:
17:c8:19:f2:d4:84:33:f5:6a:11:0f:77:fb:28:81:cb:6a:64:
50:53:02:7a:83:51:20:4e:1d:09:a0:04:f6:55:93:92:cf:1b:
67:e6:e0:50:43:5d:25:64:63:49:fc:80:14:ca:78:31:1e:5c:
78:cb:e0:c5:01:bd:cb:97:82:c9:d2:08:c0:51:8e:93:09:a7:
05:6c:99:be:e4:91:2e:50:5c:72:33:bc:6c:c0:ee:7a:a8:88:
48:fb:63:16:e5:95:60:19:19:d8:d8:d4:31:5c:84:40:c6:d4:
b9:3b:d3:a2:da:84:1a:2a:90:a7:53:34:f7:71:c4:88:96:37:
33:0c:ba:e1
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZbyw6+MZEDMe/KqCoNkQdpgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwNTIxMTIxMzUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzBjZjY1YmFkZDlhODhhY2NjMzI3NTAwYjVmZjI5ZDFmZjA5MTk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3XdoniPMJqp7sY1maMc95Ii9YMJ
sIb2rXAPCtzX1zRN7nFIbaWNSC8ZM26OnuURxR+sfPIAlFdWdDSn0SIPZd7907Zw
fTf0GeUY2Ii+S571xnnusun12ZFF/wCH49pU3SNthShdxoJC6FgdgS1eLSdIoaYa
//6un/CcahGiHgZVOzSYZa6eqVtdcze1Dj9o9Fz+lhTghtMaRntFBNlZClIapUOm
hYnV/wl70hAOdDyqgnIJ7l2s81x+NyoS/zqrq484IcRm31VdMNRMepekZ06bD5tm
DGW+CNx6olbbmLPTDTNNwFLX4CLX7eOA/LQjV8Bn0nURgxuUjjt+Wx1QvQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFIwM9lut2aiKzMMnUAtf8p0f8JGWMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2RmZDhj
MC1kN2FmLTRkYjEtOWUwNC05NzVhODBkMGQ5M2YvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvZGZkOGMw
LWQ3YWYtNGRiMS05ZTA0LTk3NWE4MGQwZDkzZi8xL2pBejJXNjNacUlyTXd5ZFFD
MV95blJfd2taWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCBbRIMA0EAgACMAcDBQMqCfpAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM/tDANBgkqhkiG9w0BAQsFAAOCAQEAP82BI6GHlRIq
0DQL5fz9cWs7BHUwumVmCByE24uVhYxFszteM+BXkYQXaNiP2E9RxJC7b/gVBuRB
6nMLRTe0aVXgdNjo/mAjPP1H3vsLhsIYHoubuerPkSJfNElHhOCQ7zlfsTeEuOmF
n2icYj657w8Tm4vCq+Z4prX3dLVdF8gZ8tSEM/VqEQ93+yiBy2pkUFMCeoNRIE4d
CaAE9lWTks8bZ+bgUENdJWRjSfyAFMp4MR5ceMvgxQG9y5eCydIIwFGOkwmnBWyZ
vuSRLlBccjO8bMDueqiISPtjFuWVYBkZ2NjUMVyEQMbUuTvTotqEGiqQp1M093HE
iJY3Mwy64Q==
-----END CERTIFICATE-----
Generated at Fri Jun 6 12:38:19 2025 by rpki-client