Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
File: jRrIPuOj-WjWatL99GFue7Hk0dc.cer (raw, json)
Hash identifier: uNiWrS4e/Jh28PjLS6cihjw0RnuI6wwTeQqaJQaNoDg=
Subject key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942826080476B7E37F9AB4F26B593EF913
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:52:48 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 62.233.59.0/24
IP: 91.225.224.0/22
IP: 185.164.175.0/24
IP: 185.227.7.0/24
IP: 188.191.96.0/20
IP: 193.3.20.0/24
IP: 2a0f:a100::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:08:04:76:b7:e3:7f:9a:b4:f2:6b:59:3e:f9:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:52:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:de:f4:7e:da:c1:15:97:3e:e8:58:95:1d:80:
99:8d:de:26:a5:a1:51:9d:bd:87:3d:e6:7a:d2:8a:
ea:70:bf:42:8e:8a:15:ef:72:00:1d:d7:8f:ba:be:
7c:bb:c9:dc:c3:68:93:84:8e:61:51:ce:b6:b8:97:
78:ae:79:1a:c7:6e:8a:c4:52:bd:72:01:c2:ca:14:
92:1f:af:d6:9d:3a:e1:a3:7b:be:ba:5c:02:54:5c:
57:12:b1:d9:4a:28:9d:c5:e6:bd:07:38:64:db:3b:
38:f8:71:67:30:1f:d1:a5:74:fd:6e:c9:6a:c2:ca:
c9:a4:0e:d4:78:1b:96:17:af:2c:53:53:4e:f1:c1:
78:a8:1a:1d:48:88:88:63:fe:e4:99:5d:2a:40:57:
00:ed:27:a8:5a:8e:8e:9d:72:b0:de:0d:19:6c:66:
e7:2e:7c:64:bc:fd:2a:e3:d8:21:e3:59:a7:ba:e7:
6f:b4:c3:25:9c:e6:bd:4b:83:6b:19:5b:61:b2:40:
9a:56:40:0e:06:c8:92:7e:dc:1f:94:6b:47:e7:ec:
f1:88:b2:07:70:b4:e3:7d:a8:cc:1e:82:b1:e7:97:
5a:e2:7f:30:7c:65:91:c8:6c:ea:dc:7a:21:ff:ba:
93:a6:10:dd:b8:07:c5:1d:8c:cb:d0:0b:4a:9e:57:
a9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.233.59.0/24
91.225.224.0/22
185.164.175.0/24
185.227.7.0/24
188.191.96.0/20
193.3.20.0/24
IPv6:
2a0f:a100::/29
Signature Algorithm: sha256WithRSAEncryption
05:cd:28:ca:fd:72:58:8e:f6:e7:7c:b0:8a:c7:89:48:1c:75:
05:d6:78:9b:4c:15:ef:87:81:cf:44:57:58:e9:38:54:b2:3b:
36:54:3d:21:f9:41:ed:2f:3a:b8:fe:8a:6b:f6:ee:7e:61:0a:
b2:92:2e:d9:54:eb:92:37:45:01:b4:74:df:3d:74:4c:03:de:
47:d4:cf:92:c5:70:f3:18:a5:25:13:01:41:f5:f4:a9:ac:b2:
a0:22:96:e4:9d:d2:07:b0:ac:27:04:13:60:81:82:27:e1:a1:
86:fa:ac:c8:31:c8:e8:45:3a:5c:dd:f0:3c:52:a5:73:b1:ae:
46:be:82:b2:a9:a4:92:fb:21:8d:94:76:fc:9e:20:41:05:ce:
55:12:d3:d0:92:f2:14:53:6a:de:4f:25:2e:95:ff:13:26:c8:
e1:55:04:29:0f:5c:96:30:1a:da:10:ed:9b:f6:93:49:4c:99:
a4:7a:cd:da:e8:2a:b9:12:20:57:38:f5:fb:96:79:1b:6e:b1:
b8:63:8b:f7:e9:60:89:37:e7:cc:c2:5c:0f:54:16:b8:42:24:
19:30:2d:be:2e:8f:d9:50:28:00:5a:5c:fd:25:e4:59:3f:ef:
15:a4:e2:bc:03:18:17:6f:3e:66:84:d5:4e:0a:35:f2:65:c8:
82:1d:15:b4
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgISAZQoJggEdrfjf5q08mtZPvkTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTc1MjQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZDFhYzgzZWUzYTNmOTY4ZDY2YWQyZmRmNDYxNmU3YmIxZTRkMWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjt70ftrBFZc+6FiVHYCZjd4mpaFR
nb2HPeZ60orqcL9CjooV73IAHdePur58u8ncw2iThI5hUc62uJd4rnkax26KxFK9
cgHCyhSSH6/WnTrho3u+ulwCVFxXErHZSiidxea9Bzhk2zs4+HFnMB/RpXT9bslq
wsrJpA7UeBuWF68sU1NO8cF4qBodSIiIY/7kmV0qQFcA7SeoWo6OnXKw3g0ZbGbn
LnxkvP0q49gh41mnuudvtMMlnOa9S4NrGVthskCaVkAOBsiSftwflGtH5+zxiLIH
cLTjfajMHoKx55da4n8wfGWRyGzq3Hoh/7qTphDduAfFHYzL0AtKnlepZwIDAQAB
o4ICsTCCAq0wHQYDVR0OBBYEFI0ayD7jo/lo1mrS/fRhbnux5NHXMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzViLzRhYmYz
Zi0xNThmLTRmNjItYTllYi1kZGY1NjdlZGVkMDMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIvNGFiZjNm
LTE1OGYtNGY2Mi1hOWViLWRkZjU2N2VkZWQwMy8xL2pScklQdU9qLVdqV2F0TDk5
R0Z1ZTdIazBkYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEwGCCsGAQUF
BwEHAQH/BD0wOzAqBAIAATAkAwQAPuk7AwQCW+HgAwQAuaSvAwQAueMHAwQEvL9g
AwQAwQMUMA0EAgACMAcDBQMqD6EAMA0GCSqGSIb3DQEBCwUAA4IBAQAFzSjK/XJY
jvbnfLCKx4lIHHUF1nibTBXvh4HPRFdY6ThUsjs2VD0h+UHtLzq4/opr9u5+YQqy
ki7ZVOuSN0UBtHTfPXRMA95H1M+SxXDzGKUlEwFB9fSprLKgIpbkndIHsKwnBBNg
gYIn4aGG+qzIMcjoRTpc3fA8UqVzsa5GvoKyqaSS+yGNlHb8niBBBc5VEtPQkvIU
U2reTyUulf8TJsjhVQQpD1yWMBraEO2b9pNJTJmkes3a6Cq5EiBXOPX7lnkbbrG4
Y4v36WCJN+fMwlwPVBa4QiQZMC2+Lo/ZUCgAWlz9JeRZP+8VpOK8AxgXbz5mhNVO
CjXyZciCHRW0
-----END CERTIFICATE-----
Generated at Sat Apr 5 08:39:51 2025 by rpki-client