Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/syj-JYobm_YUimzg6KcS8YhAkEw.cer
File: syj-JYobm_YUimzg6KcS8YhAkEw.cer (raw, json)
Hash identifier: GKX9WAKyFPa6w5N4O8W0tU+eR6jhHf6OS3yVoXqBPTY=
Subject key identifier: B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196C8C47CA44B5A2D6946E34DE2F339DD88
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 13 May 2025 08:30:42 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: IP: 83.172.128.0 -- 83.172.133.255
IP: 83.172.160.0 -- 83.172.165.255
IP: 83.172.180.0/22
IP: 83.172.188.0/23
IP: 2a02:cec0::/30
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c8:c4:7c:a4:4b:5a:2d:69:46:e3:4d:e2:f3:39:dd:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 13 08:30:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b328fe258a1b9bf6148a6ce0e8a712f18840904c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:22:c1:de:5c:3a:2b:32:40:20:d9:b6:22:2b:
29:61:9f:c8:03:f0:50:69:95:42:07:de:a5:32:17:
7d:eb:d7:a0:ab:8a:24:de:27:36:07:3f:ab:dd:e3:
d0:ab:2d:d2:98:39:d8:be:ca:69:6e:ef:73:27:b9:
cb:32:c3:09:a9:de:2e:82:a3:5f:b3:58:bc:6f:dd:
0f:8f:50:de:c4:ce:ad:69:34:e9:31:51:01:2e:ec:
01:4f:7a:76:f9:f6:f6:1a:fc:0d:00:e5:c9:bd:0a:
12:8f:06:9c:60:eb:cc:9d:56:50:9c:5a:31:64:e5:
9d:96:c9:bd:f9:91:4a:58:31:29:73:75:e1:e1:76:
a2:30:d2:c9:5c:be:9e:c5:26:7f:28:9c:b4:7b:6b:
dc:03:6f:e2:04:0b:a0:44:73:9f:87:cc:8c:30:57:
e4:bd:50:69:3e:a6:4f:9a:46:94:e9:75:ac:35:fd:
ab:16:da:b6:c8:f0:c5:4e:46:24:ea:16:ae:68:76:
42:02:e3:28:8c:51:5a:e3:da:fe:ba:3b:f4:b9:d2:
cd:95:fb:16:cd:74:bf:03:4c:a0:84:3e:75:11:26:
bc:2e:49:3d:6f:10:60:ec:3e:80:4a:b7:97:ad:02:
8d:71:03:69:21:fc:19:f5:da:2c:b3:60:59:01:da:
fb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:28:FE:25:8A:1B:9B:F6:14:8A:6C:E0:E8:A7:12:F1:88:40:90:4C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a188bc-deee-42ec-8289-ed84a0058a9f/1/syj-JYobm_YUimzg6KcS8YhAkEw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.172.128.0-83.172.133.255
83.172.160.0-83.172.165.255
83.172.180.0/22
83.172.188.0/23
IPv6:
2a02:cec0::/30
Signature Algorithm: sha256WithRSAEncryption
66:0c:e9:ed:89:52:c0:c9:07:e1:76:25:34:12:01:d0:aa:55:
b2:83:dd:9b:5b:3a:f5:2e:27:3b:0d:10:db:3b:20:65:bc:41:
84:47:29:19:04:ff:37:2d:f7:e5:32:71:3f:ae:94:9b:17:65:
e8:3b:75:ea:e7:9f:db:a7:e6:2e:02:d9:25:ef:65:3b:a2:9b:
08:54:49:3a:b2:ae:56:bd:ad:5f:22:ad:20:6a:55:b0:9f:6a:
95:0f:1d:b4:e0:8b:c7:e8:b6:95:c5:29:07:2a:9f:ec:05:83:
08:87:b2:53:21:05:b6:55:08:2f:da:d2:00:76:c4:8c:ff:bd:
d7:a7:1b:9b:62:55:39:0d:9d:7a:43:13:fe:96:0a:2e:a8:79:
4d:72:db:d1:db:4d:e3:8c:ba:70:58:27:38:24:27:15:44:e4:
d8:97:22:bf:55:8c:9f:7d:ea:e4:79:19:3a:8b:75:a7:02:b8:
fe:f7:64:d9:7f:f7:1d:6e:da:e7:f9:eb:04:42:91:76:be:b4:
e2:ef:04:e4:52:bd:f0:fd:5d:26:c5:f6:d5:20:a3:a6:a4:76:
3b:08:dc:ef:5d:ea:7e:bf:2a:bf:2a:92:31:2d:34:ed:49:af:
81:b4:4b:8b:c7:72:83:5c:5a:04:b9:6e:4e:db:8d:b9:b0:b6:
f3:f3:af:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 12:34:11 2025 by rpki-client