Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yymndmnfWnpctQbYOe6KpDN8yqw.cer
File: yymndmnfWnpctQbYOe6KpDN8yqw.cer (raw, json)
Hash identifier: zp+isAbsytZyTuo9B3HM3mZspaVliirC/oJ6eiCd16E=
Subject key identifier: CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0195E577C602A86623DA926BF2264595EB51
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Sun 30 Mar 2025 05:13:06 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 49374
AS: 59813
AS: 60735
AS: 207936
IP: 185.1.136.0/24
IP: 194.124.234.0 -- 194.124.237.255
IP: 2001:7f8:da::/48
IP: 2a0f:3cc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 10 Apr 2025 07:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e5:77:c6:02:a8:66:23:da:92:6b:f2:26:45:95:eb:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Mar 30 05:13:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cb29a77669df5a7a5cb506d839ee8aa4337ccaac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:1b:7a:99:c8:af:c9:68:28:c3:b0:09:f9:
fc:0f:38:1c:22:83:3a:b2:cc:12:14:c5:9e:06:39:
7d:39:d3:3d:f5:35:9c:c8:ed:11:48:f2:9b:10:ee:
69:6c:5a:fb:0e:f1:14:c4:4a:47:94:e1:45:fe:0e:
dc:4f:c4:08:c3:b9:a3:1b:59:eb:70:d8:48:41:36:
22:ef:f0:fe:f5:2b:d4:c5:b4:0e:32:90:aa:35:7a:
98:9e:f9:86:ff:d0:c9:9a:20:d6:48:d2:79:95:86:
39:e9:c1:d5:96:d3:e2:2e:c6:35:cc:50:61:d3:5c:
6a:ed:bf:b6:1c:b2:9e:07:b0:94:25:e9:4e:66:a1:
59:96:68:3e:46:4c:6e:1a:2c:9e:66:e6:b0:ab:83:
a8:87:97:db:58:fc:eb:78:e8:5d:cc:e2:e8:bf:8b:
ed:be:c5:f5:19:fb:51:cd:89:ff:19:e3:8f:d3:06:
d5:88:d3:8e:6e:81:04:2d:59:2a:9a:5b:44:22:d6:
13:83:ab:5b:61:b9:e3:9f:0d:56:36:c1:74:aa:b5:
04:79:8d:b9:f5:bd:37:aa:d9:42:10:36:e7:e7:b2:
60:ef:31:41:68:78:af:de:4a:bf:01:88:15:b2:a2:
04:bf:1c:65:b4:5e:cf:43:53:84:73:c3:9f:9e:eb:
3c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:29:A7:76:69:DF:5A:7A:5C:B5:06:D8:39:EE:8A:A4:33:7C:CA:AC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/bb25d068-7f9c-4b0e-a695-1779b7d8f06e/0/CB29A77669DF5A7A5CB506D839EE8AA4337CCAAC.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.136.0/24
194.124.234.0-194.124.237.255
IPv6:
2001:7f8:da::/48
2a0f:3cc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49374
59813
60735
207936
Signature Algorithm: sha256WithRSAEncryption
60:9b:a9:59:0f:bd:87:0d:a9:30:e2:bb:26:2f:3b:35:4b:f1:
ad:f9:9e:c2:31:b4:3d:0d:4e:fe:27:d0:cc:61:4a:79:3d:fb:
13:de:ce:57:67:2a:be:07:7d:9d:f2:21:41:84:c1:d7:fe:5e:
54:1f:74:2a:5c:a4:87:e3:12:ca:14:d9:32:6a:68:75:ca:65:
ee:6d:f8:30:c3:88:bb:9b:0c:f0:b4:80:a5:3e:3f:36:27:4e:
aa:21:c1:af:92:9e:1c:3e:31:21:b1:42:e4:8b:76:5d:b3:0a:
62:29:f1:30:b2:72:48:a6:b7:5b:73:90:2c:70:79:e0:53:4d:
cc:99:83:c2:59:27:59:dc:d2:b6:9a:f1:1f:12:96:d2:70:ac:
c9:7f:91:22:2c:7a:f7:f6:68:c0:83:d5:81:e2:85:56:94:01:
d8:24:82:e3:30:a7:de:b4:71:b2:b3:35:d4:3b:7a:79:e0:8a:
da:dc:0b:6f:98:7d:14:b2:4c:bd:a8:ec:4d:41:89:18:1f:ef:
b0:c1:b9:52:45:81:17:57:a9:06:48:ff:4b:e7:7e:cd:a3:6b:
02:da:84:af:8a:77:20:3f:78:64:3b:f6:98:88:32:3e:3c:ba:
3c:b5:89:ba:19:03:c7:e1:a0:18:ac:5f:52:81:51:dd:8c:1a:
a0:fb:a4:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:20:28 2025 by rpki-client