Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yNMivrfjY_TUV14eT-7lzLhOEnU.cer
File: yNMivrfjY_TUV14eT-7lzLhOEnU.cer (raw, json)
Hash identifier: XiUq7h+WLpfgE/i2K5XPNJI94rfyJ1d9sDpETeFZAH0=
Subject key identifier: C8:D3:22:BE:B7:E3:63:F4:D4:57:5E:1E:4F:EE:E5:CC:B8:4E:12:75
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B5F394C355BDB0B8C11F2B8B6F8899
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/ef4db0-b6c9-47aa-84c1-dc3769e8f6a1/1/yNMivrfjY_TUV14eT-7lzLhOEnU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/ef4db0-b6c9-47aa-84c1-dc3769e8f6a1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:23 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200562
IP: 45.159.172.0/22
IP: 146.255.116.0/22
IP: 185.75.144.0/22
IP: 2a05:5300::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:f3:94:c3:55:bd:b0:b8:c1:1f:2b:8b:6f:88:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c8d322beb7e363f4d4575e1e4feee5ccb84e1275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:26:5c:f9:82:d5:3f:b6:08:64:e8:f1:2d:4b:
19:99:08:84:b5:33:0d:31:ae:63:d1:e2:19:59:62:
c5:56:3c:f2:46:8b:83:85:f5:67:72:c6:e2:f2:8f:
9c:b7:9a:2d:b8:a6:84:94:82:40:8f:6c:0d:36:a6:
0f:bc:9f:b2:ea:5c:2b:15:07:d0:b3:45:cd:ad:de:
77:4b:6c:e2:33:51:73:58:77:4d:01:9b:c9:c7:a7:
5a:ae:c0:05:d7:47:ea:ac:35:ec:64:fa:49:e7:ff:
0e:c6:9e:3f:4e:8e:94:18:f0:e7:46:fa:c1:64:22:
c4:f7:40:b0:05:4d:88:ed:a1:f3:42:b8:eb:5b:5b:
bf:ff:7c:f5:33:71:7e:6a:d1:e0:d4:ac:c2:de:74:
b7:7e:df:c0:ff:f4:b1:b4:f8:ff:66:90:3a:53:09:
06:78:00:7c:b1:76:ba:cb:06:4b:85:41:87:37:7c:
8a:15:66:21:1b:14:ca:22:d6:b4:ea:28:74:09:e7:
f1:39:92:00:cb:28:47:73:68:18:96:2e:86:b1:54:
31:e1:b5:4a:c0:6c:00:37:95:3b:c2:7d:55:65:61:
a1:80:28:9a:0a:07:c6:56:a1:c2:60:9e:1b:9b:63:
ba:20:c1:26:70:77:da:56:de:5c:da:44:3b:2a:1f:
47:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D3:22:BE:B7:E3:63:F4:D4:57:5E:1E:4F:EE:E5:CC:B8:4E:12:75
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/ef4db0-b6c9-47aa-84c1-dc3769e8f6a1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/ef4db0-b6c9-47aa-84c1-dc3769e8f6a1/1/yNMivrfjY_TUV14eT-7lzLhOEnU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.172.0/22
146.255.116.0/22
185.75.144.0/22
IPv6:
2a05:5300::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200562
Signature Algorithm: sha256WithRSAEncryption
2b:a9:00:8f:e4:e2:ee:37:77:ad:b3:e5:ee:6a:63:a0:df:85:
da:f8:84:bd:0d:ff:bf:05:d1:0b:ef:33:06:75:bd:08:5f:a9:
69:1d:97:a3:25:25:53:c7:9f:d6:09:b6:dd:9c:c5:2a:47:08:
25:ed:a0:b0:37:2f:0a:63:5a:d7:f2:94:ed:77:6e:ef:16:6e:
60:4d:74:b2:c6:68:db:27:c6:96:bf:cf:d7:4e:7e:61:35:15:
fe:2d:08:3a:85:ad:00:ae:57:39:1c:81:4e:7d:3c:1e:17:3c:
cd:ad:9c:f1:1d:fc:58:42:5f:d0:37:01:6e:b2:e3:47:b9:e2:
9e:73:0e:62:63:fa:df:4a:ff:99:08:77:77:3a:e9:69:51:1c:
d0:71:6a:f1:09:4c:ed:7c:93:ba:d9:6e:15:a1:2a:d2:b2:31:
0f:53:de:b2:57:4a:60:1a:01:cd:4d:fb:da:50:89:62:17:ef:
e8:4a:c8:50:db:23:22:04:1d:46:5f:e4:a5:b6:46:50:33:db:
e0:44:fa:9a:6f:1b:e5:51:3a:f5:35:a9:12:17:23:4a:c0:f2:
d6:12:f7:27:da:90:d5:6f:83:96:ce:34:01:09:4b:ac:67:af:
d0:85:4b:0e:2a:00:30:24:16:b8:1e:b9:e8:76:fa:1d:63:25:
27:f3:b6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:07:10 2025 by rpki-client