Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yTfS9vC3jA7XW478KACdeXlhQAM.cer
File: yTfS9vC3jA7XW478KACdeXlhQAM.cer (raw, json)
Hash identifier: roTahg5qI7UP1B2b87XfY7+mBbpFharIQH6vTvunDWo=
Subject key identifier: C9:37:D2:F6:F0:B7:8C:0E:D7:5B:8E:FC:28:00:9D:79:79:61:40:03
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194236967BAD538408680278215ED52FFAD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/yTfS9vC3jA7XW478KACdeXlhQAM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:48:17 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 62134
IP: 185.46.120.0/22
IP: 2a01:8720::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:67:ba:d5:38:40:86:80:27:82:15:ed:52:ff:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c937d2f6f0b78c0ed75b8efc28009d7979614003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:41:2b:31:5a:da:13:09:ab:8f:a0:be:81:
ab:06:86:8e:6e:81:19:34:b6:c6:ef:97:11:5c:48:
bb:a6:1a:d7:dc:c1:0c:e0:50:34:70:3c:f7:b8:02:
b9:ab:63:0f:0a:d4:2b:15:da:3b:7c:06:63:59:1a:
b6:35:fe:64:ad:8f:aa:3d:21:a3:d5:2a:67:4e:5e:
c8:05:3f:85:01:96:b2:46:6f:eb:41:26:89:27:e9:
04:02:77:73:2c:30:b6:10:57:d2:33:93:76:4e:53:
5f:42:ea:6f:36:78:29:ec:52:7f:4f:cb:bc:5b:3d:
4d:68:74:eb:68:6c:9a:35:f7:04:49:81:a0:49:d4:
df:f1:55:9f:21:d2:30:3b:72:78:f8:d0:ad:70:2a:
ca:a4:f0:28:27:ad:3a:9a:5c:3f:6f:ed:df:d6:7d:
cc:f1:9c:94:3b:9b:29:95:0e:e4:90:38:89:cd:41:
51:14:03:f6:99:36:bb:78:ac:f6:09:07:50:db:f6:
be:24:b7:f4:1e:45:88:c9:ac:88:1e:13:3e:80:30:
f0:df:0e:68:aa:d4:e9:5c:5b:a5:b4:d2:ad:92:8b:
3d:78:4d:75:4f:93:54:f3:8e:6d:fc:82:ba:bd:df:
a3:14:b6:a9:19:ca:29:a5:21:4f:b7:0a:77:1d:32:
13:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:37:D2:F6:F0:B7:8C:0E:D7:5B:8E:FC:28:00:9D:79:79:61:40:03
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/b9bd06-96c8-4e71-ba12-937754cbb505/1/yTfS9vC3jA7XW478KACdeXlhQAM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.46.120.0/22
IPv6:
2a01:8720::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62134
Signature Algorithm: sha256WithRSAEncryption
8c:e7:ef:0c:b9:f6:a9:0a:79:88:ae:87:24:01:43:e3:b7:87:
05:7c:93:19:ca:9e:3d:65:0d:e8:6d:85:85:84:9f:b4:ab:ce:
fe:12:37:4b:3e:a0:6f:e9:e1:0e:8a:01:78:33:12:c9:c8:36:
6f:49:b7:e8:0a:f9:ec:bb:ee:da:03:3a:b2:79:5b:a8:39:e7:
cf:65:20:f9:f4:49:b2:83:85:e9:95:95:e6:16:35:d2:01:3d:
2a:64:36:3d:c7:17:93:84:44:2a:b1:23:da:89:20:f9:f7:df:
53:50:79:0c:26:6f:ce:9d:55:97:da:13:d6:22:a0:32:93:20:
7e:60:7e:40:ef:36:04:d8:30:16:29:7e:d0:85:dd:ff:9a:e8:
6b:57:aa:de:71:24:a8:c3:12:b8:cf:82:9a:cc:eb:fa:3a:ac:
82:7d:96:e6:37:f9:47:9a:84:a6:58:7e:9a:c6:50:30:83:00:
9f:0c:69:8e:19:b6:15:dc:e2:9d:e1:50:6e:dd:91:f5:18:9f:
5b:30:29:1f:9f:e7:94:3e:f9:cd:b7:71:99:04:d8:da:5e:03:
e6:71:af:51:3d:47:0c:40:0f:2e:36:cf:4a:7c:a6:a5:b3:70:
90:05:1f:14:7e:2b:f4:03:50:ff:f3:7a:50:52:84:f7:35:db:
01:bb:68:46
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQjaWe61ThAhoAnghXtUv+tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTk0ODE3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTM3ZDJmNmYwYjc4YzBlZDc1YjhlZmMyODAwOWQ3OTc5NjE0MDAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBFBKzFa2hMJq4+gvoGrBoaOboEZ
NLbG75cRXEi7phrX3MEM4FA0cDz3uAK5q2MPCtQrFdo7fAZjWRq2Nf5krY+qPSGj
1SpnTl7IBT+FAZayRm/rQSaJJ+kEAndzLDC2EFfSM5N2TlNfQupvNngp7FJ/T8u8
Wz1NaHTraGyaNfcESYGgSdTf8VWfIdIwO3J4+NCtcCrKpPAoJ606mlw/b+3f1n3M
8ZyUO5splQ7kkDiJzUFRFAP2mTa7eKz2CQdQ2/a+JLf0HkWIyayIHhM+gDDw3w5o
qtTpXFultNKtkos9eE11T5NU845t/IK6vd+jFLapGcoppSFPtwp3HTITnQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFMk30vbwt4wO11uO/CgAnXl5YUADMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA4L2I5YmQw
Ni05NmM4LTRlNzEtYmExMi05Mzc3NTRjYmI1MDUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgvYjliZDA2
LTk2YzgtNGU3MS1iYTEyLTkzNzc1NGNiYjUwNS8xL3lUZlM5dkMzakE3WFc0NzhL
QUNkZVhsaFFBTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQCuS54MA0EAgACMAcDBQAqAYcgMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwDytjANBgkqhkiG9w0BAQsFAAOCAQEAjOfvDLn2qQp5
iK6HJAFD47eHBXyTGcqePWUN6G2FhYSftKvO/hI3Sz6gb+nhDooBeDMSycg2b0m3
6Ar57Lvu2gM6snlbqDnnz2Ug+fRJsoOF6ZWV5hY10gE9KmQ2PccXk4REKrEj2okg
+fffU1B5DCZvzp1Vl9oT1iKgMpMgfmB+QO82BNgwFil+0IXd/5roa1eq3nEkqMMS
uM+Cmszr+jqsgn2W5jf5R5qEplh+msZQMIMAnwxpjhm2FdzineFQbt2R9RifWzAp
H5/nlD75zbdxmQTY2l4D5nGvUT1HDEAPLjbPSnympbNwkAUfFH4r9ANQ//N6UFKE
9zXbAbtoRg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:02:11 2025 by rpki-client