Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
File: zQwDKJL2la9ME_sKyoBD0Xsbl78.cer (raw, json)
Hash identifier: /hOxVoF1OYI3g067yIQHGAZOvuSDgZRsTOpK9pq6hjc=
Subject key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196D3B5FAFAFA8F1338CDFCE5C60EA85462
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 15 May 2025 11:30:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200010
AS: 210965
IP: 2a04:a600::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d3:b5:fa:fa:fa:8f:13:38:cd:fc:e5:c6:0e:a8:54:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 15 11:30:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d3:c0:a3:47:2c:02:f4:fc:a3:fa:aa:7b:5f:
78:cd:2f:c1:8b:b7:00:c7:da:1d:96:7a:98:14:d6:
3f:1c:ac:bc:6c:f1:a3:bd:55:86:d3:d4:3f:e7:70:
d1:56:16:4d:28:6c:9f:5b:cf:9e:49:ca:d8:74:ba:
bb:87:12:94:45:e1:26:10:c9:cc:9b:88:45:a0:22:
d4:59:90:69:48:b0:b1:f6:d9:51:d8:ac:79:6a:d3:
71:09:e2:e9:29:c2:18:34:c7:24:cf:ef:4c:b3:c8:
50:f2:6e:73:54:5c:9f:42:7b:73:fc:cd:9e:1b:f3:
93:e9:be:e9:94:61:58:f3:f5:83:f4:54:70:7e:38:
f2:85:5e:cd:70:3e:1c:be:88:6d:61:7d:d7:39:2d:
86:b8:dd:9d:a5:fe:05:c9:62:2e:fd:d7:c2:71:65:
c4:e1:07:cd:72:42:48:dc:23:39:c7:0b:f0:f2:39:
35:59:3f:1f:9e:da:7e:d2:c9:42:9f:5c:9e:51:80:
19:24:ce:49:ab:bb:04:0c:34:57:8f:56:62:1b:d4:
20:37:d5:9f:92:fd:19:3a:d1:bc:27:5c:be:ef:5b:
77:aa:87:84:01:04:7a:8b:e6:a3:45:47:64:5a:79:
88:78:09:82:21:7a:05:94:69:c1:a0:4d:bd:06:99:
56:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:a600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200010
210965
Signature Algorithm: sha256WithRSAEncryption
7b:68:40:99:c5:b2:6c:ca:e1:87:fb:9a:f1:d0:59:61:c9:17:
1b:9f:e0:27:a1:47:27:e0:aa:16:ab:33:59:50:18:f0:cc:06:
d8:08:c5:46:f9:30:83:0c:90:a5:52:78:0c:36:b5:e6:fe:13:
25:e3:55:81:1d:90:60:08:16:25:30:b6:02:67:ad:8b:8d:cb:
7b:b6:04:c6:cf:da:f2:83:48:37:3a:f4:76:30:97:f5:58:1a:
3c:2e:76:af:1a:c6:89:73:7c:f4:a6:31:0e:ee:47:29:76:06:
f1:f4:d4:33:ca:76:e5:9a:5a:81:33:2e:77:3d:47:29:e3:e0:
44:16:02:d3:8a:ce:31:da:0d:3c:d3:ff:09:77:c6:23:35:93:
48:06:07:9b:af:12:e0:95:dd:b7:89:b4:62:2b:a2:b7:f4:41:
b8:2b:f8:c3:76:49:3c:81:d0:2f:09:16:24:3c:db:8b:fb:91:
fe:20:ce:0d:75:f7:29:dc:60:ec:e1:7f:f8:fa:52:f1:3f:e8:
df:27:78:dc:18:6b:f2:46:5c:18:24:c0:1f:7a:f4:94:ed:56:
14:10:e3:3e:8d:05:d7:ea:dd:bf:81:64:ad:f5:2c:7a:67:7b:
44:b7:0b:d7:30:3d:d1:11:09:6e:d7:2b:a5:29:a2:76:e7:e6:
4c:69:d7:fe
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Jun 7 07:50:50 2025 by rpki-client