Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lWhmVi2fJYMewKzoqdjNDllNcfw.cer
File: lWhmVi2fJYMewKzoqdjNDllNcfw.cer (raw, json)
Hash identifier: QlCUtIgTvrHHKc+YKMmiMjMTySwkZYbvTy258j05pcs=
Subject key identifier: 95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194222038A7C6D08DDDA3F9C9BB86A13CF3
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:44 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 59807
IP: 164.10.0.0/16
IP: 185.181.88.0/22
IP: 2a03:2520::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 14:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:38:a7:c6:d0:8d:dd:a3:f9:c9:bb:86:a1:3c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=956866562d9f25831ec0ace8a9d8cd0e594d71fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:cd:e7:f2:3e:fc:98:bf:bc:ba:d6:2b:c8:
9c:fb:ca:86:9c:4a:80:f9:f5:43:6c:79:58:80:d3:
9b:16:66:50:ee:ac:26:71:a9:de:a8:91:a8:59:d0:
2f:32:8a:f3:e7:9e:46:e3:a2:37:46:5a:cd:5f:28:
c6:57:08:af:ea:f3:ab:51:cc:a1:33:3b:fb:cb:3c:
df:83:d9:34:ac:05:f7:32:d2:86:11:4e:25:d5:25:
6e:e1:93:17:1e:ca:21:32:99:f6:6c:7e:71:65:ff:
cb:d5:c4:ef:c8:c5:2f:3e:29:f0:e3:f8:1d:bc:97:
00:25:76:03:17:b6:6f:a5:99:88:b7:51:8a:d8:2e:
f4:fe:fd:9d:e9:40:39:64:19:2c:a4:57:79:5f:35:
18:c1:47:25:e9:20:fa:f0:bc:f4:7d:45:3b:9c:57:
82:94:4d:8a:0a:6e:ec:f0:4e:02:f2:2b:97:41:7c:
9e:54:c1:f1:4e:3d:b1:a9:ff:97:0e:e3:23:bc:87:
23:b7:49:65:d1:7c:5d:a1:01:ff:56:3a:1e:0b:c1:
82:b7:38:00:d7:f7:2a:71:75:70:93:6d:75:1c:fc:
6e:f3:2d:25:7a:dc:b3:a7:cc:cd:8c:30:63:6d:bb:
dc:38:d5:a2:2d:8f:11:aa:2d:cc:1e:81:25:90:65:
7a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:68:66:56:2D:9F:25:83:1E:C0:AC:E8:A9:D8:CD:0E:59:4D:71:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/cb2ee8-8782-4af4-8f6b-9d7f86f0d477/1/lWhmVi2fJYMewKzoqdjNDllNcfw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.10.0.0/16
185.181.88.0/22
IPv6:
2a03:2520::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59807
Signature Algorithm: sha256WithRSAEncryption
87:53:d0:be:50:22:c7:5e:b4:59:f2:9b:3e:1a:bd:b9:a4:8b:
d7:c0:9c:67:72:ca:a2:a5:9b:aa:1c:bb:cb:cc:99:4c:45:f1:
0a:42:46:e2:da:0f:8d:04:63:81:1f:05:50:9a:06:35:ae:0f:
98:20:6f:ea:7c:f0:32:69:25:a9:6a:16:bd:6e:8c:46:c7:06:
76:a0:eb:a6:ff:41:46:1b:c5:9a:0f:b7:56:46:a0:79:51:c5:
21:ee:c5:18:c5:ae:26:ee:55:9f:11:0c:ab:b0:a8:1b:2b:74:
69:e7:b6:aa:3f:05:1a:7c:dd:fc:f6:55:5d:b6:33:33:5d:2e:
96:c2:56:9e:44:e9:45:48:aa:05:d7:2d:5a:68:43:25:34:09:
e4:af:a2:06:dd:21:24:ad:dd:c0:f2:72:df:df:62:bd:16:c0:
c1:6e:83:34:ff:c4:3e:9e:e9:d6:8e:95:35:69:18:17:7a:45:
bf:65:3f:dd:bf:3a:94:d2:9f:cc:9d:3f:a6:d7:2b:65:53:a3:
d2:95:0a:82:40:fe:64:2e:b4:a1:7d:60:b3:ac:d1:90:d7:46:
33:8e:7b:48:f3:f7:41:d9:c1:8f:9d:5a:3d:ed:d6:df:c9:65:
62:b0:30:9a:c6:fe:2a:81:5e:e3:a9:5f:4c:94:19:7a:38:7d:
7e:33:3f:de
-----BEGIN CERTIFICATE-----
MIIFqDCCBJCgAwIBAgISAZQiIDinxtCN3aP5ybuGoTzzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTM0ODQ0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTY4NjY1NjJkOWYyNTgzMWVjMGFjZThhOWQ4Y2QwZTU5NGQ3MWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzwjN5/I+/Ji/vLrWK8ic+8qGnEqA
+fVDbHlYgNObFmZQ7qwmcaneqJGoWdAvMorz555G46I3RlrNXyjGVwiv6vOrUcyh
Mzv7yzzfg9k0rAX3MtKGEU4l1SVu4ZMXHsohMpn2bH5xZf/L1cTvyMUvPinw4/gd
vJcAJXYDF7ZvpZmIt1GK2C70/v2d6UA5ZBkspFd5XzUYwUcl6SD68Lz0fUU7nFeC
lE2KCm7s8E4C8iuXQXyeVMHxTj2xqf+XDuMjvIcjt0ll0XxdoQH/VjoeC8GCtzgA
1/cqcXVwk211HPxu8y0letyzp8zNjDBjbbvcONWiLY8Rqi3MHoElkGV6QwIDAQAB
o4ICtDCCArAwHQYDVR0OBBYEFJVoZlYtnyWDHsCs6KnYzQ5ZTXH8MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JlL2NiMmVl
OC04NzgyLTRhZjQtOGY2Yi05ZDdmODZmMGQ0NzcvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUvY2IyZWU4
LTg3ODItNGFmNC04ZjZiLTlkN2Y4NmYwZDQ3Ny8xL2xXaG1WaTJmSllNZXdLem9x
ZGpORGxsTmNmdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDMGCCsGAQUF
BwEHAQH/BCQwIjARBAIAATALAwMApAoDBAK5tVgwDQQCAAIwBwMFACoDJSAwGgYI
KwYBBQUHAQgBAf8ECzAJoAcwBQIDAOmfMA0GCSqGSIb3DQEBCwUAA4IBAQCHU9C+
UCLHXrRZ8ps+Gr25pIvXwJxncsqipZuqHLvLzJlMRfEKQkbi2g+NBGOBHwVQmgY1
rg+YIG/qfPAyaSWpaha9boxGxwZ2oOum/0FGG8WaD7dWRqB5UcUh7sUYxa4m7lWf
EQyrsKgbK3Rp57aqPwUafN389lVdtjMzXS6WwlaeROlFSKoF1y1aaEMlNAnkr6IG
3SEkrd3A8nLf32K9FsDBboM0/8Q+nunWjpU1aRgXekW/ZT/dvzqU0p/MnT+m1ytl
U6PSlQqCQP5kLrShfWCzrNGQ10YzjntI8/dB2cGPnVo97dbfyWVisDCaxv4qgV7j
qV9MlBl6OH1+Mz/e
-----END CERTIFICATE-----
Generated at Sat Apr 12 22:21:13 2025 by rpki-client