Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mBLkkaqmVbYyTbzAz_AKjWMZEHY.cer
File: mBLkkaqmVbYyTbzAz_AKjWMZEHY.cer (raw, json)
Hash identifier: 4aGAyHN1R58cugqi+hNW3FIj16maihVTGtmVFCeW35k=
Subject key identifier: 98:12:E4:91:AA:A6:55:B6:32:4D:BC:C0:CF:F0:0A:8D:63:19:10:76
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196D86E795060C6F8326A45A513D0800639
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/mBLkkaqmVbYyTbzAz_AKjWMZEHY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 16 May 2025 09:30:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 8362
IP: 5.158.240.0/20
IP: 5.183.212.0/22
IP: 37.72.192.0/18
IP: 37.220.48.0/20
IP: 46.22.80.0/20
IP: 46.162.128.0/18
IP: 62.64.32.0/19
IP: 79.141.192.0/20
IP: 81.20.208.0/20
IP: 95.170.32.0/19
IP: 109.106.64.0/19
IP: 178.73.128.0/18
IP: 185.9.96.0/22
IP: 185.72.248.0/22
IP: 195.146.224.0/19
IP: 213.138.0.0/19
IP: 213.151.176.0/20
IP: 2a01:8e80::/29
IP: 2a03:3540::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d8:6e:79:50:60:c6:f8:32:6a:45:a5:13:d0:80:06:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 16 09:30:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9812e491aaa655b6324dbcc0cff00a8d63191076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2f:32:70:50:cd:32:57:b2:e1:13:97:94:f2:
c0:fd:5b:78:d2:29:42:ae:1c:08:c4:c6:1f:22:82:
f4:72:7f:e8:38:13:71:c8:d6:1c:ab:1d:a3:00:01:
84:db:b3:df:66:08:db:fe:99:95:bd:32:32:59:53:
af:91:9c:63:26:e8:84:1f:0a:2b:14:3a:e9:6b:08:
bc:82:55:03:b1:0c:10:c9:ae:f2:76:2b:3a:27:e6:
df:4f:a0:99:da:b2:cd:d1:1f:7e:d9:ca:2c:f9:29:
70:a3:65:e8:81:44:4b:52:76:ee:a8:1b:86:bd:ee:
a0:97:c7:92:4f:ad:b1:30:c1:b8:07:7e:f3:a9:1d:
be:2b:64:79:05:37:5b:01:ce:7a:84:3f:a7:4a:ba:
bd:af:91:f6:1a:a5:89:a5:ef:96:4a:52:4e:80:99:
f0:d6:a2:a3:be:c4:37:27:02:63:8a:67:ce:fe:30:
5b:62:32:c6:30:46:d8:f0:11:69:d8:11:18:0a:21:
39:68:24:38:df:49:cd:5c:30:45:37:19:9e:12:19:
ad:11:92:ce:fa:14:dc:da:eb:7e:32:69:f2:d8:08:
52:b2:31:20:d2:60:62:72:f3:b5:b3:2d:9f:ff:60:
cb:64:6d:74:21:13:87:c3:1e:3b:80:b0:8b:8d:10:
22:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:12:E4:91:AA:A6:55:B6:32:4D:BC:C0:CF:F0:0A:8D:63:19:10:76
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/0e7ed3-48cb-4afe-8d15-dffe17f3db54/1/mBLkkaqmVbYyTbzAz_AKjWMZEHY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.158.240.0/20
5.183.212.0/22
37.72.192.0/18
37.220.48.0/20
46.22.80.0/20
46.162.128.0/18
62.64.32.0/19
79.141.192.0/20
81.20.208.0/20
95.170.32.0/19
109.106.64.0/19
178.73.128.0/18
185.9.96.0/22
185.72.248.0/22
195.146.224.0/19
213.138.0.0/19
213.151.176.0/20
IPv6:
2a01:8e80::/29
2a03:3540::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8362
Signature Algorithm: sha256WithRSAEncryption
82:c4:94:21:92:97:d5:20:52:b4:83:fd:9c:29:54:ef:fc:c1:
5d:82:c4:b8:f7:ac:1b:10:1f:9a:be:d3:1e:d6:e1:9d:60:34:
aa:9f:7d:83:39:c2:8b:d3:2c:f6:94:03:68:c4:81:12:c6:b1:
f2:07:90:9f:df:fb:c7:e2:b7:3b:83:ba:05:7b:74:4d:b9:0c:
7e:4d:cd:a4:d8:a8:4f:24:b7:d8:ec:10:cc:9c:a6:99:59:91:
d3:94:e4:bf:a1:76:05:e4:ee:11:8d:69:95:bd:dd:b1:11:54:
d9:f4:ce:72:de:fc:49:ba:5c:03:6d:2f:d7:3b:8b:90:b3:dd:
8e:77:a0:46:04:81:03:9b:b8:55:00:e3:ad:dc:67:19:b8:0d:
3f:9e:cb:b0:9e:7b:71:ff:03:60:ac:1c:30:31:f1:1f:5d:1c:
58:68:24:12:e1:68:c8:7c:48:f3:2f:8b:98:54:b8:2f:93:0b:
45:a3:93:8b:06:15:7e:fc:4a:74:77:33:e7:f0:aa:58:50:37:
53:09:53:12:7e:4f:60:72:69:17:e9:ba:5e:f1:86:8a:47:2f:
6d:0d:0f:65:e5:e8:c5:e6:aa:be:00:e9:05:44:fc:0c:6d:2d:
c4:a8:a5:d8:4f:13:7e:a2:9e:ff:02:cc:9c:3c:9b:b2:1c:2f:
aa:9b:83:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:34:42 2025 by rpki-client