Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nS2GwCi_w46HVFXPgmiaNiZTAsI.cer
File: nS2GwCi_w46HVFXPgmiaNiZTAsI.cer (raw, json)
Hash identifier: v7jA3Qxt7GI7nMv5gN3uZtO3bE7Fy7nJd3Sgp2usu3w=
Subject key identifier: 9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C0D514F61B404B4C57EA4377752C9
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:39 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205321
IP: 185.217.248.0/22
IP: 2a0c:af00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:0d:51:4f:61:b4:04:b4:c5:7e:a4:37:77:52:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9d2d86c028bfc38e875455cf82689a36265302c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:1c:ad:60:a1:a6:23:42:69:d5:36:4a:b0:65:
0a:d9:6d:07:8e:f2:e5:30:28:59:01:fa:a4:41:54:
f2:a5:94:e4:88:b2:6f:25:5e:89:c5:dd:79:a6:31:
96:ee:2c:82:2f:98:c8:3c:2b:94:d8:ea:cb:87:39:
15:10:31:67:de:61:2b:6b:7d:91:be:b3:f2:98:3b:
65:71:77:a3:32:7c:9d:ab:8b:0e:1e:5c:30:ac:92:
a4:1c:5a:c3:56:43:3a:c7:a6:37:05:02:04:8a:cd:
ba:3f:cc:66:a0:49:d4:8a:22:9f:06:d3:24:41:9e:
63:c7:ce:0f:46:8a:2e:93:eb:d1:07:43:26:f7:74:
34:87:81:ed:65:3e:bf:f4:11:77:52:9f:04:6b:e7:
23:7a:bc:30:37:b9:d9:f9:78:2b:e7:cc:93:09:03:
bd:29:e0:65:0a:06:a5:0d:09:14:2e:15:dd:07:54:
b1:e4:0f:13:33:8b:ef:9a:5c:66:17:b4:d9:d7:3c:
2c:c3:f8:b8:c9:50:14:ab:9b:af:ca:54:b8:a1:9f:
6b:a6:9a:5b:5d:a9:ef:95:17:a2:0c:96:39:46:cd:
fe:97:4b:40:4e:ac:36:ac:f1:b7:ff:85:1d:5f:f9:
12:fc:14:64:dc:ea:ce:6f:51:5c:98:24:05:78:96:
62:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2D:86:C0:28:BF:C3:8E:87:54:55:CF:82:68:9A:36:26:53:02:C2
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c078fd-d2b6-46ba-a6ba-44c3b75d3f33/1/nS2GwCi_w46HVFXPgmiaNiZTAsI.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.248.0/22
IPv6:
2a0c:af00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205321
Signature Algorithm: sha256WithRSAEncryption
a3:98:81:3f:bd:4a:42:7c:12:0f:07:8c:49:de:e4:9d:f7:1e:
c4:59:8b:a5:1a:3c:cd:29:8d:e5:f1:fb:80:90:d7:b4:5e:22:
10:e4:08:e9:8a:0e:50:f0:21:e3:b7:c0:cf:0f:17:d2:e6:ff:
a4:ca:d4:79:3f:bc:db:8c:7c:b7:3e:fb:f7:32:60:b6:1a:47:
39:a1:c4:49:42:a3:d2:96:05:82:c1:cc:52:0e:81:17:15:d3:
c7:16:37:e4:f2:ff:79:b5:bb:a2:f5:a8:cf:cd:7b:01:63:36:
23:25:5e:9e:a1:14:98:dc:e8:0e:43:1d:d6:de:c0:0a:45:c9:
ca:52:fd:7e:aa:33:de:98:b8:10:50:aa:f9:a3:cd:b8:a9:e4:
37:0c:56:87:11:f0:fd:0f:2f:58:58:24:a5:30:95:f0:a7:da:
a7:c7:be:05:00:74:58:4c:1d:56:ff:b5:67:11:b2:a8:21:70:
69:70:bf:fe:fd:eb:b1:9d:42:fa:b5:c6:44:2c:a5:b4:0a:0d:
e3:62:cb:60:d1:c8:89:54:76:26:85:ec:67:aa:ae:ef:78:64:
02:d7:4e:e5:87:4d:94:f3:c5:dc:26:c0:0a:47:c8:54:2a:b9:
e7:e0:5c:55:41:b5:2d:4a:3f:98:e7:e8:3d:d0:cd:32:0e:5e:
7e:e3:ab:7e
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQfjA1RT2G0BLTFfqQ3d1LJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDE0NzM5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDJkODZjMDI4YmZjMzhlODc1NDU1Y2Y4MjY4OWEzNjI2NTMwMmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BytYKGmI0Jp1TZKsGUK2W0HjvLl
MChZAfqkQVTypZTkiLJvJV6Jxd15pjGW7iyCL5jIPCuU2OrLhzkVEDFn3mEra32R
vrPymDtlcXejMnydq4sOHlwwrJKkHFrDVkM6x6Y3BQIEis26P8xmoEnUiiKfBtMk
QZ5jx84PRoouk+vRB0Mm93Q0h4HtZT6/9BF3Up8Ea+cjerwwN7nZ+Xgr58yTCQO9
KeBlCgalDQkULhXdB1Sx5A8TM4vvmlxmF7TZ1zwsw/i4yVAUq5uvylS4oZ9rpppb
XanvlReiDJY5Rs3+l0tATqw2rPG3/4UdX/kS/BRk3OrOb1FcmCQFeJZi8wIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFJ0thsAov8OOh1RVz4JomjYmUwLCMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I2L2MwNzhm
ZC1kMmI2LTQ2YmEtYTZiYS00NGMzYjc1ZDNmMzMvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjYvYzA3OGZk
LWQyYjYtNDZiYS1hNmJhLTQ0YzNiNzVkM2YzMy8xL25TMkd3Q2lfdzQ2SFZGWFBn
bWlhTmlaVEFzSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCudn4MA0EAgACMAcDBQMqDK8AMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwMiCTANBgkqhkiG9w0BAQsFAAOCAQEAo5iBP71KQnwS
DweMSd7knfcexFmLpRo8zSmN5fH7gJDXtF4iEOQI6YoOUPAh47fAzw8X0ub/pMrU
eT+824x8tz779zJgthpHOaHESUKj0pYFgsHMUg6BFxXTxxY35PL/ebW7ovWoz817
AWM2IyVenqEUmNzoDkMd1t7ACkXJylL9fqoz3pi4EFCq+aPNuKnkNwxWhxHw/Q8v
WFgkpTCV8Kfap8e+BQB0WEwdVv+1ZxGyqCFwaXC//v3rsZ1C+rXGRCyltAoN42LL
YNHIiVR2JoXsZ6qu73hkAtdO5YdNlPPF3CbACkfIVCq55+BcVUG1LUo/mOfoPdDN
Mg5efuOrfg==
-----END CERTIFICATE-----
Generated at Tue Apr 22 02:36:54 2025 by rpki-client