Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/l9I64ozYYMjt_WGDVvizH15NySg.cer
File: l9I64ozYYMjt_WGDVvizH15NySg.cer (raw, json)
Hash identifier: 06A0snH/XjV2hca3+LJYZSXT+wR4vEvojt+FgmRNAlE=
Subject key identifier: 97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA104DB29CF1F7ACC34795956D17E5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:47:49 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201409
IP: 78.41.139.0/24
IP: 2a13:29c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 22:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:10:4d:b2:9c:f1:f7:ac:c3:47:95:95:6d:17:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=97d23ae28cd860c8edfd618356f8b31f5e4dc928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c7:41:c3:6c:5d:c2:4b:25:96:61:e9:13:60:
3f:cb:7e:96:82:04:82:94:54:85:10:35:dc:45:84:
08:48:c5:48:fd:83:eb:f7:2c:52:e6:cd:c0:5d:2c:
3f:18:7f:aa:b9:ca:79:bf:67:cc:59:76:2a:bb:ba:
eb:5f:ba:dd:f0:71:20:79:57:96:86:31:7b:73:32:
87:32:cc:de:9b:bf:b6:c7:05:3e:85:27:ab:a9:08:
81:46:0b:9c:62:80:25:ba:3e:a3:43:28:7b:1b:2a:
3a:74:41:f4:3a:96:0c:a0:de:49:62:d0:8e:09:84:
68:f0:15:c9:7a:cd:c0:03:d2:6c:87:62:07:f8:5f:
ab:c8:1a:c6:87:e0:63:0c:af:bb:3f:b2:d1:63:0c:
fb:5e:24:e4:c9:5d:8f:fc:38:a4:54:7c:e4:60:38:
99:7c:ad:36:e7:69:16:9f:03:3e:48:a5:b7:33:c0:
fa:45:2b:d9:04:e4:52:b5:49:b9:5f:58:81:fa:1c:
82:94:95:f3:5b:1b:53:85:a4:08:25:b1:13:b8:1b:
42:0f:99:0c:10:0e:69:2d:d2:ee:27:08:c4:16:e8:
d6:f1:04:e1:47:8f:a9:38:72:78:2b:d5:a4:a4:3b:
84:31:59:3d:44:6b:1b:56:d9:8d:7d:78:c9:96:4a:
82:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D2:3A:E2:8C:D8:60:C8:ED:FD:61:83:56:F8:B3:1F:5E:4D:C9:28
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/ca641f-db3a-4f64-a25b-cfa6a91481e2/1/l9I64ozYYMjt_WGDVvizH15NySg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.41.139.0/24
IPv6:
2a13:29c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201409
Signature Algorithm: sha256WithRSAEncryption
3d:c1:08:de:1e:f3:5d:ff:2f:9a:b2:d6:90:c9:5f:d4:b4:b8:
86:f9:97:83:24:59:1d:b2:c5:dd:fd:e8:30:c3:c7:5e:88:6a:
45:a1:48:82:f2:d8:44:a7:4f:89:e5:d8:9d:9f:12:48:99:1c:
2e:9b:3f:df:dc:21:c9:21:5e:5e:4d:6b:30:47:49:f0:b7:e5:
1e:e0:28:d9:d6:54:f0:1c:c5:4f:44:6e:55:ab:bb:cf:3d:81:
ae:de:30:ae:be:8c:3e:de:92:61:87:5c:81:80:07:57:8d:8f:
d0:df:88:f6:4a:77:29:80:c7:4d:50:d3:22:20:08:5a:f8:88:
21:32:ef:9e:1a:f9:ff:80:ff:e2:ee:0c:25:12:f3:46:cd:4c:
57:33:47:c7:c4:3a:59:ad:d7:aa:8c:a6:1e:a9:0c:9a:11:a4:
ca:b2:45:ff:79:65:aa:ef:97:87:d5:d0:4c:97:ff:92:56:d1:
15:31:b4:1f:04:b5:a6:76:6d:11:64:f5:3b:b1:43:3b:69:53:
51:37:95:62:80:64:8c:2b:e6:9d:db:70:8f:0e:e8:52:90:3d:
60:0c:4e:a5:12:9c:1d:6d:48:8f:5f:49:a0:2b:80:08:17:9a:
3d:56:f5:c6:f2:5c:f8:75:79:5b:69:fb:ed:e1:20:a9:6b:f3:
85:b1:43:b4
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQf+hBNspzx96zDR5WVbRflMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDM0NzQ5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2QyM2FlMjhjZDg2MGM4ZWRmZDYxODM1NmY4YjMxZjVlNGRjOTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcdBw2xdwksllmHpE2A/y36WggSC
lFSFEDXcRYQISMVI/YPr9yxS5s3AXSw/GH+qucp5v2fMWXYqu7rrX7rd8HEgeVeW
hjF7czKHMszem7+2xwU+hSerqQiBRgucYoAluj6jQyh7Gyo6dEH0OpYMoN5JYtCO
CYRo8BXJes3AA9Jsh2IH+F+ryBrGh+BjDK+7P7LRYwz7XiTkyV2P/DikVHzkYDiZ
fK0252kWnwM+SKW3M8D6RSvZBORStUm5X1iB+hyClJXzWxtThaQIJbETuBtCD5kM
EA5pLdLuJwjEFujW8QThR4+pOHJ4K9WkpDuEMVk9RGsbVtmNfXjJlkqC/QIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFJfSOuKM2GDI7f1hg1b4sx9eTckoMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IwL2NhNjQx
Zi1kYjNhLTRmNjQtYTI1Yi1jZmE2YTkxNDgxZTIvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAvY2E2NDFm
LWRiM2EtNGY2NC1hMjViLWNmYTZhOTE0ODFlMi8xL2w5STY0b3pZWU1qdF9XR0RW
dml6SDE1TnlTZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQATimLMA0EAgACMAcDBQMqEynAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMSwTANBgkqhkiG9w0BAQsFAAOCAQEAPcEI3h7zXf8v
mrLWkMlf1LS4hvmXgyRZHbLF3f3oMMPHXohqRaFIgvLYRKdPieXYnZ8SSJkcLps/
39whySFeXk1rMEdJ8LflHuAo2dZU8BzFT0RuVau7zz2Brt4wrr6MPt6SYYdcgYAH
V42P0N+I9kp3KYDHTVDTIiAIWviIITLvnhr5/4D/4u4MJRLzRs1MVzNHx8Q6Wa3X
qoymHqkMmhGkyrJF/3llqu+Xh9XQTJf/klbRFTG0HwS1pnZtEWT1O7FDO2lTUTeV
YoBkjCvmndtwjw7oUpA9YAxOpRKcHW1Ij19JoCuACBeaPVb1xvJc+HV5W2n77eEg
qWvzhbFDtA==
-----END CERTIFICATE-----
Generated at Wed Apr 9 01:13:33 2025 by rpki-client