Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nQp0muJcHLtlhx1BanmrSohKxGg.cer
File: nQp0muJcHLtlhx1BanmrSohKxGg.cer (raw, json)
Hash identifier: fQGQUHlDTDg+sX9x6f7/1zuxYGHonajP4wLZaPNcaiA=
Subject key identifier: 9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941FFA264CB9486C04BDBAC43A4E910FFF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 03:47:55 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 35266
IP: 46.30.8.0/21
IP: 185.69.13.0 -- 185.69.15.255
IP: 185.81.188.0/22
IP: 2a01:b000::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 23:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:26:4c:b9:48:6c:04:bd:ba:c4:3a:4e:91:0f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 03:47:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d0a749ae25c1cbb65871d416a79ab4a884ac468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:20:a6:d2:a4:f5:54:27:c3:b3:f3:e3:e5:
59:6a:8c:4f:c6:e0:00:4f:d5:17:e5:fb:81:f7:33:
b9:e9:32:00:8c:c7:07:56:07:fb:e1:6e:0b:80:e4:
42:ea:b9:00:23:41:05:ee:66:a1:dd:38:fd:db:d9:
ce:22:20:a8:ab:58:64:56:05:dc:51:49:19:f4:16:
ea:3d:01:bd:92:60:91:46:8e:b7:b4:2d:c5:3b:94:
a1:de:87:17:65:af:46:26:8d:6a:b4:c7:6a:13:2d:
10:18:e9:8c:68:4d:a9:83:8e:c8:06:fa:bc:6e:c4:
e8:b4:73:b1:25:43:b1:32:fc:6d:9f:1e:66:d5:de:
90:f2:f1:1f:7a:4b:37:12:52:c5:8d:86:3f:06:00:
2a:c4:62:bd:f6:d5:95:ae:e7:60:d4:52:18:39:05:
55:5d:59:ce:39:04:99:46:f5:ce:97:ed:0d:43:2a:
bc:47:d9:a4:15:6f:ca:b2:3d:bb:c4:e8:28:dd:f3:
6e:60:0f:af:c3:6b:7e:ff:09:96:2f:84:c2:36:40:
d8:7e:b3:c7:9c:df:41:6b:5c:ae:ae:2a:4e:6b:5d:
ea:7e:d5:dc:7f:c8:5f:84:7c:28:dd:4a:28:19:7a:
c9:6c:91:b3:f5:cc:6a:87:ef:3c:33:cf:85:4c:55:
c4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:0A:74:9A:E2:5C:1C:BB:65:87:1D:41:6A:79:AB:4A:88:4A:C4:68
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/85d0a7-d802-41c4-81af-1a6d3c99dc48/1/nQp0muJcHLtlhx1BanmrSohKxGg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.30.8.0/21
185.69.13.0-185.69.15.255
185.81.188.0/22
IPv6:
2a01:b000::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35266
Signature Algorithm: sha256WithRSAEncryption
9c:a9:71:1b:15:bc:eb:ad:a1:b8:d8:9d:f0:2d:32:82:0f:f1:
f7:aa:db:29:18:1a:6b:46:f1:03:2d:e3:3d:59:13:d7:4b:90:
a1:78:c0:27:58:b4:73:0e:35:1c:65:ec:50:46:ff:7c:97:75:
f1:b1:8f:36:29:8e:f6:99:c3:24:71:99:c1:5a:46:b4:c5:8a:
28:df:69:02:04:2b:73:90:36:6f:ee:5f:78:87:86:3e:e4:bf:
42:84:51:f2:3f:18:b6:07:52:5c:e6:4f:97:fc:2d:2c:7a:61:
11:c1:19:37:b3:f5:53:75:99:ec:53:5a:80:b0:79:69:9d:23:
8c:95:f9:8e:5f:82:51:62:d3:d5:8c:0b:62:0b:96:a6:19:2e:
55:10:f3:d4:f2:e0:07:16:33:0b:1c:c5:d7:6c:db:5c:19:71:
55:95:f1:36:a0:b3:08:c5:c2:74:7e:e7:04:79:4f:45:b6:8d:
cc:1a:3a:f8:c4:3d:46:8e:89:17:6a:a8:0f:23:6e:1b:c2:b4:
32:ae:06:2f:40:0b:97:21:34:3a:7c:ed:67:70:a0:d6:e5:68:
b9:f4:94:45:cf:f4:d2:69:0b:27:cb:d3:cf:e8:0a:d0:76:bd:
bb:0b:b7:67:a2:c9:73:68:06:88:8e:75:06:95:48:59:cc:ac:
fc:17:d9:96
-----BEGIN CERTIFICATE-----
MIIFtzCCBJ+gAwIBAgISAZQf+iZMuUhsBL26xDpOkQ//MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDM0NzU1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDBhNzQ5YWUyNWMxY2JiNjU4NzFkNDE2YTc5YWI0YTg4NGFjNDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu54gptKk9VQnw7Pz4+VZaoxPxuAA
T9UX5fuB9zO56TIAjMcHVgf74W4LgORC6rkAI0EF7mah3Tj929nOIiCoq1hkVgXc
UUkZ9BbqPQG9kmCRRo63tC3FO5Sh3ocXZa9GJo1qtMdqEy0QGOmMaE2pg47IBvq8
bsTotHOxJUOxMvxtnx5m1d6Q8vEfeks3ElLFjYY/BgAqxGK99tWVrudg1FIYOQVV
XVnOOQSZRvXOl+0NQyq8R9mkFW/Ksj27xOgo3fNuYA+vw2t+/wmWL4TCNkDYfrPH
nN9Ba1yuripOa13qftXcf8hfhHwo3UooGXrJbJGz9cxqh+88M8+FTFXEnQIDAQAB
o4ICwzCCAr8wHQYDVR0OBBYEFJ0KdJriXBy7ZYcdQWp5q0qISsRoMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q1Lzg1ZDBh
Ny1kODAyLTQxYzQtODFhZi0xYTZkM2M5OWRjNDgvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUvODVkMGE3
LWQ4MDItNDFjNC04MWFmLTFhNmQzYzk5ZGM0OC8xL25RcDBtdUpjSEx0bGh4MUJh
bm1yU29oS3hHZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUF
BwEHAQH/BDMwMTAgBAIAATAaAwQDLh4IMAwDBAC5RQ0DBAS5RQADBAK5UbwwDQQC
AAIwBwMFACoBsAAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAInCMA0GCSqGSIb3
DQEBCwUAA4IBAQCcqXEbFbzrraG42J3wLTKCD/H3qtspGBprRvEDLeM9WRPXS5Ch
eMAnWLRzDjUcZexQRv98l3XxsY82KY72mcMkcZnBWka0xYoo32kCBCtzkDZv7l94
h4Y+5L9ChFHyPxi2B1Jc5k+X/C0semERwRk3s/VTdZnsU1qAsHlpnSOMlfmOX4JR
YtPVjAtiC5amGS5VEPPU8uAHFjMLHMXXbNtcGXFVlfE2oLMIxcJ0fucEeU9Fto3M
Gjr4xD1GjokXaqgPI24bwrQyrgYvQAuXITQ6fO1ncKDW5Wi59JRFz/TSaQsny9PP
6ArQdr27C7dnoslzaAaIjnUGlUhZzKz8F9mW
-----END CERTIFICATE-----
Generated at Wed Apr 23 05:51:56 2025 by rpki-client