Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zrhpg1RxEzWbreHz84EECR46ZDk.cer
File: zrhpg1RxEzWbreHz84EECR46ZDk.cer (raw, json)
Hash identifier: f4GOFlXX40tnG4Sb6sulksAJ7w04gVE1cukbQdBNFfI=
Subject key identifier: CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196F89883EDA1776A83B91ABD6FD0FA150E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 22 May 2025 15:24:26 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 8612
IP: 82.84.0.0/15
IP: 94.32.0.0/16
IP: 193.207.24.0 -- 193.207.255.255
IP: 195.130.224.0/19
IP: 212.123.64.0/19
IP: 213.205.0.0/18
IP: 2a00:c680::/32
IP: 2a01:7d0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:f8:98:83:ed:a1:77:6a:83:b9:1a:bd:6f:d0:fa:15:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 22 15:24:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ceb86983547113359bade1f3f38104091e3a6439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a0:dc:ad:fe:2d:3c:69:16:83:a6:63:91:cb:
86:73:56:ad:36:a8:81:3c:0c:55:23:d2:5c:93:0d:
f4:f8:f6:f7:ce:b1:fc:99:79:8f:93:eb:ba:d4:fd:
64:16:c3:b5:b2:11:97:0e:cf:4a:f0:27:41:89:a3:
2f:e5:85:3b:ea:97:4d:f6:8d:fb:f7:f5:ba:e5:dd:
54:89:8f:40:bf:f7:55:18:f6:0e:20:3f:dc:53:e4:
bd:0d:f8:33:33:1c:b6:62:d6:eb:96:56:4a:c2:db:
a6:6c:b7:77:cd:d8:57:8a:eb:b9:4c:d4:a5:bc:54:
dd:6f:df:7f:59:89:e1:41:03:1a:69:94:46:75:7a:
45:68:44:59:a4:99:2b:e6:08:c9:bf:a9:00:c5:a7:
c6:27:46:b9:97:3e:b2:49:e7:82:5f:3a:b3:dc:a6:
1b:3f:95:be:68:0f:8e:8f:58:88:85:45:7f:5d:c2:
c1:f3:3e:4a:96:d7:d4:3d:9d:cb:0e:bb:08:0d:cf:
aa:4c:15:05:e5:9a:a2:df:78:8c:05:ac:eb:38:97:
eb:31:f4:8f:81:b9:4a:6c:85:3f:b8:96:09:34:0f:
09:f5:48:cd:8a:31:a5:71:26:dc:0d:2c:18:3c:f2:
0a:82:c6:24:04:3b:f9:07:bb:a2:60:ce:73:e9:a4:
71:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:B8:69:83:54:71:13:35:9B:AD:E1:F3:F3:81:04:09:1E:3A:64:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f3539d-38cd-465e-a57d-dee2f650dd86/1/zrhpg1RxEzWbreHz84EECR46ZDk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.84.0.0/15
94.32.0.0/16
193.207.24.0-193.207.255.255
195.130.224.0/19
212.123.64.0/19
213.205.0.0/18
IPv6:
2a00:c680::/32
2a01:7d0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8612
Signature Algorithm: sha256WithRSAEncryption
42:8f:97:98:fc:e7:68:3a:ac:a1:5f:b7:2f:40:87:fd:00:bc:
d7:8e:45:be:75:16:77:92:ff:71:71:40:de:c9:ff:41:b4:8a:
ef:ee:bc:d8:15:69:e1:fe:5c:3f:96:55:41:14:00:e8:8a:bb:
c6:d2:4b:ad:d7:ad:d1:e0:68:6c:0a:cf:ae:aa:17:d6:76:12:
00:ee:bc:6c:bf:f7:48:2d:4e:9f:e2:f9:69:f9:0c:8e:bb:53:
21:02:52:b2:06:8b:da:08:ac:b5:be:d6:6b:5e:9c:82:ce:52:
49:f0:6f:eb:d0:f0:82:c2:3d:4a:69:66:5c:34:d7:1d:da:8d:
8a:b3:fd:6b:b5:83:bc:a5:50:83:05:64:d9:07:42:f1:89:eb:
be:1b:e1:13:57:e6:b0:91:fd:6b:ec:df:58:aa:6c:f1:0a:31:
7f:ca:d5:a6:b8:f6:d8:7e:b0:ca:87:92:6a:7f:46:ea:14:70:
5f:09:e1:8b:f1:c7:fa:73:cc:60:48:23:55:84:05:bf:58:0f:
1d:42:bd:67:96:89:42:dd:3d:71:68:ca:6d:5b:d3:33:60:53:
97:3d:32:00:67:16:72:3e:ef:23:d0:7c:7c:7d:5a:17:37:1d:
5f:da:ef:1e:39:80:ec:7d:08:85:01:6e:26:f1:47:a3:94:a5:
fa:22:17:78
-----BEGIN CERTIFICATE-----
MIIFzDCCBLSgAwIBAgISAZb4mIPtoXdqg7kavW/Q+hUOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwNTIyMTUyNDI2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWI4Njk4MzU0NzExMzM1OWJhZGUxZjNmMzgxMDQwOTFlM2E2NDM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqDcrf4tPGkWg6ZjkcuGc1atNqiB
PAxVI9Jckw30+Pb3zrH8mXmPk+u61P1kFsO1shGXDs9K8CdBiaMv5YU76pdN9o37
9/W65d1UiY9Av/dVGPYOID/cU+S9DfgzMxy2YtbrllZKwtumbLd3zdhXiuu5TNSl
vFTdb99/WYnhQQMaaZRGdXpFaERZpJkr5gjJv6kAxafGJ0a5lz6ySeeCXzqz3KYb
P5W+aA+Oj1iIhUV/XcLB8z5KltfUPZ3LDrsIDc+qTBUF5Zqi33iMBazrOJfrMfSP
gblKbIU/uJYJNA8J9UjNijGlcSbcDSwYPPIKgsYkBDv5B7uiYM5z6aRx6QIDAQAB
o4IC2DCCAtQwHQYDVR0OBBYEFM64aYNUcRM1m63h8/OBBAkeOmQ5MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUxL2YzNTM5
ZC0zOGNkLTQ2NWUtYTU3ZC1kZWUyZjY1MGRkODYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEvZjM1Mzlk
LTM4Y2QtNDY1ZS1hNTdkLWRlZTJmNjUwZGQ4Ni8xL3pyaHBnMVJ4RXpXYnJlSHo4
NEVFQ1I0NlpEay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFgGCCsGAQUF
BwEHAQH/BEkwRzAvBAIAATApAwMBUlQDAwBeIDALAwQDwc8YAwMEwcADBAXDguAD
BAXUe0ADBAbVzQAwFAQCAAIwDgMFACoAxoADBQAqAQfQMBkGCCsGAQUFBwEIAQH/
BAowCKAGMAQCAiGkMA0GCSqGSIb3DQEBCwUAA4IBAQBCj5eY/OdoOqyhX7cvQIf9
ALzXjkW+dRZ3kv9xcUDeyf9BtIrv7rzYFWnh/lw/llVBFADoirvG0kut163R4Ghs
Cs+uqhfWdhIA7rxsv/dILU6f4vlp+QyOu1MhAlKyBovaCKy1vtZrXpyCzlJJ8G/r
0PCCwj1KaWZcNNcd2o2Ks/1rtYO8pVCDBWTZB0Lxieu+G+ETV+awkf1r7N9Yqmzx
CjF/ytWmuPbYfrDKh5Jqf0bqFHBfCeGL8cf6c8xgSCNVhAW/WA8dQr1nlolC3T1x
aMptW9MzYFOXPTIAZxZyPu8j0Hx8fVoXNx1f2u8eOYDsfQiFAW4m8UejlKX6Ihd4
-----END CERTIFICATE-----
Generated at Sat Jun 7 00:36:39 2025 by rpki-client