Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ya3PjO-lllmLJLm2q2UHDdkcp5w.cer
File: ya3PjO-lllmLJLm2q2UHDdkcp5w.cer (raw, json)
Hash identifier: mbGIM2PYcN0bHPUl+pprB1GjUccYlDTz1gYXEPTutMg=
Subject key identifier: C9:AD:CF:8C:EF:A5:96:59:8B:24:B9:B6:AB:65:07:0D:D9:1C:A7:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194221FEC32FEEE4488B7D19A2FDD244354
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/ya3PjO-lllmLJLm2q2UHDdkcp5w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 13:48:25 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 61367
IP: 193.31.200.0/21
IP: 2001:67c:14a8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:ec:32:fe:ee:44:88:b7:d1:9a:2f:dd:24:43:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 13:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c9adcf8cefa596598b24b9b6ab65070dd91ca79c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:dc:99:2f:79:25:01:b2:3c:9e:ad:0d:bc:
b5:d0:94:db:6e:22:31:55:cb:70:c9:70:34:5c:fa:
9d:87:36:c8:1b:b8:59:1d:b6:81:0a:68:c4:9f:6c:
d0:50:35:7b:cf:cc:d3:de:04:cb:d1:30:26:ce:6d:
a2:83:d0:41:dc:87:ae:89:68:74:c7:65:60:56:63:
39:3d:17:37:f9:f4:ae:0f:c5:b3:c7:04:31:bf:2e:
23:12:cd:04:ad:57:9c:f4:4d:04:1f:7f:3a:0a:ee:
2b:06:c6:9e:ee:9a:c3:c2:7b:54:a9:71:73:2c:40:
ab:a5:e8:40:2c:87:63:91:37:b2:b6:be:4d:9d:2d:
5e:17:f4:f4:31:1b:92:c5:29:55:33:87:6a:c1:be:
07:0e:d6:fd:cc:7e:6c:ca:55:7d:a9:60:df:ad:84:
22:4d:c2:54:64:ac:7c:1c:7f:d4:98:01:2c:b5:0d:
f0:de:7d:4b:4e:f2:29:7a:a6:bd:d5:58:ae:ce:15:
96:d1:d4:53:e2:2b:ad:7f:5d:ff:7f:11:f9:74:74:
22:51:2b:05:aa:98:02:52:59:42:22:c5:24:c8:c9:
60:9a:e6:9f:db:eb:fd:5a:d9:71:01:25:97:24:37:
60:3c:b1:f3:93:ce:65:88:85:e1:c6:3b:ea:00:a0:
bb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AD:CF:8C:EF:A5:96:59:8B:24:B9:B6:AB:65:07:0D:D9:1C:A7:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/b0057c-5472-48d5-b107-c55372fab335/1/ya3PjO-lllmLJLm2q2UHDdkcp5w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.200.0/21
IPv6:
2001:67c:14a8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61367
Signature Algorithm: sha256WithRSAEncryption
1f:fe:95:95:5e:17:69:11:98:fb:2b:bb:ac:cb:bb:69:36:fe:
f0:63:21:d2:e4:a7:fd:cb:08:0a:77:d5:ab:94:ff:9e:9c:9c:
75:ec:b9:a2:bf:d6:b2:ef:57:61:35:e7:99:94:4d:3e:ce:ad:
f2:f9:45:d8:06:96:f4:28:a0:77:08:52:67:4c:2a:d4:f4:1a:
4e:5b:44:bb:47:54:cc:94:98:ab:8b:59:77:22:8c:25:21:af:
bd:7c:99:63:2d:45:74:ab:9f:64:14:06:8d:66:6c:a5:b7:55:
83:3d:32:95:68:b3:c9:cb:4d:b1:b4:55:47:64:11:85:d6:3a:
bb:70:ce:38:4d:05:1b:dc:35:ea:46:ca:b5:d4:66:86:ea:eb:
34:70:ae:02:51:7f:79:22:da:cb:64:9c:6e:99:67:f2:ac:74:
83:b9:a0:dc:70:0c:60:5a:68:31:d2:a3:88:02:e3:b4:9a:05:
68:15:80:4d:eb:44:f7:12:6d:29:df:88:ec:ea:3c:27:3c:2f:
b5:23:14:d8:4a:4b:40:e7:ef:b1:7a:ee:75:a8:94:97:31:fd:
b5:65:90:4b:16:dc:0a:d4:19:89:0c:78:6b:4d:1f:dc:b9:ac:
53:f9:8e:76:5b:f1:74:ca:bd:3a:f4:8c:b9:03:62:ad:03:53:
d4:34:df:e6
-----BEGIN CERTIFICATE-----
MIIFpTCCBI2gAwIBAgISAZQiH+wy/u5EiLfRmi/dJENUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTM0ODI1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOWFkY2Y4Y2VmYTU5NjU5OGIyNGI5YjZhYjY1MDcwZGQ5MWNhNzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FfcmS95JQGyPJ6tDby10JTbbiIx
VctwyXA0XPqdhzbIG7hZHbaBCmjEn2zQUDV7z8zT3gTL0TAmzm2ig9BB3IeuiWh0
x2VgVmM5PRc3+fSuD8WzxwQxvy4jEs0ErVec9E0EH386Cu4rBsae7prDwntUqXFz
LECrpehALIdjkTeytr5NnS1eF/T0MRuSxSlVM4dqwb4HDtb9zH5sylV9qWDfrYQi
TcJUZKx8HH/UmAEstQ3w3n1LTvIpeqa91ViuzhWW0dRT4iutf13/fxH5dHQiUSsF
qpgCUllCIsUkyMlgmuaf2+v9WtlxASWXJDdgPLHzk85liIXhxjvqAKC7ewIDAQAB
o4ICsTCCAq0wHQYDVR0OBBYEFMmtz4zvpZZZiyS5tqtlBw3ZHKecMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzMxL2IwMDU3
Yy01NDcyLTQ4ZDUtYjEwNy1jNTUzNzJmYWIzMzUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEvYjAwNTdj
LTU0NzItNDhkNS1iMTA3LWM1NTM3MmZhYjMzNS8xL3lhM1BqTy1sbGxtTEpMbTJx
MlVIRGRrY3A1dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF
BwEHAQH/BCEwHzAMBAIAATAGAwQDwR/IMA8EAgACMAkDBwAgAQZ8FKgwGgYIKwYB
BQUHAQgBAf8ECzAJoAcwBQIDAO+3MA0GCSqGSIb3DQEBCwUAA4IBAQAf/pWVXhdp
EZj7K7usy7tpNv7wYyHS5Kf9ywgKd9WrlP+enJx17Lmiv9ay71dhNeeZlE0+zq3y
+UXYBpb0KKB3CFJnTCrU9BpOW0S7R1TMlJiri1l3IowlIa+9fJljLUV0q59kFAaN
Zmylt1WDPTKVaLPJy02xtFVHZBGF1jq7cM44TQUb3DXqRsq11GaG6us0cK4CUX95
ItrLZJxumWfyrHSDuaDccAxgWmgx0qOIAuO0mgVoFYBN60T3Em0p34js6jwnPC+1
IxTYSktA5++xeu51qJSXMf21ZZBLFtwK1BmJDHhrTR/cuaxT+Y52W/F0yr069Iy5
A2KtA1PUNN/m
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:47:41 2025 by rpki-client