Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer
File: aPg-KjQUWtR-DMKzx5_GMSuuLHE.cer (raw, json)
Hash identifier: DvvRqG99FziJriigTV7R5lxsevtXAIVFRknJoMIgVCU=
Subject key identifier: 68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019680D4E1BB156461D5D56DE3F6BF6EA751
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 29 Apr 2025 09:15:57 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 216074
IP: 185.116.112.0/24
IP: 2a14:600::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:80:d4:e1:bb:15:64:61:d5:d5:6d:e3:f6:bf:6e:a7:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 29 09:15:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68f83e2a34145ad47e0cc2b3c79fc6312bae2c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:12:c0:19:59:5e:ed:0c:aa:82:c7:06:4a:e5:
0a:54:f5:70:7d:29:28:d2:f0:59:04:26:08:0d:21:
a1:2f:a2:bb:18:1f:22:89:e1:fb:a0:02:25:e1:7c:
a2:98:5a:a5:1a:97:1b:4b:ba:c0:2b:63:62:f9:13:
76:04:eb:04:21:5e:e7:97:70:5a:84:89:0a:21:35:
c4:4f:1c:19:0c:80:5b:ab:75:7c:ee:83:e9:b7:94:
5a:72:ff:bb:73:cf:97:a2:5e:31:da:e7:01:76:39:
18:9f:1d:98:b4:48:77:0f:ad:d6:d9:b0:27:29:95:
80:67:d7:87:d9:24:59:5a:57:fd:76:c7:06:52:d3:
5b:d1:d7:0b:b0:03:e2:b0:cd:3c:80:d4:09:9f:a3:
fe:a8:02:b3:74:d5:1c:cc:4d:7f:9a:f2:5f:01:9f:
c2:c8:08:81:87:29:df:cb:76:ea:04:26:90:4d:26:
a3:2c:fd:c9:d0:96:21:e9:6d:0d:91:6c:a3:ac:7b:
5d:04:78:12:50:dc:85:61:38:8c:9d:fc:f5:93:51:
29:4a:a6:33:ce:3e:03:ca:6f:26:35:2e:a4:94:16:
3f:99:d1:f2:5c:a9:af:57:71:5f:93:e5:07:72:02:
fa:eb:7c:78:69:72:d4:77:3c:ea:c7:c3:7b:df:38:
fd:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F8:3E:2A:34:14:5A:D4:7E:0C:C2:B3:C7:9F:C6:31:2B:AE:2C:71
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/5e9f90-a6b0-4fd8-b8dd-792802c43925/1/aPg-KjQUWtR-DMKzx5_GMSuuLHE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.116.112.0/24
IPv6:
2a14:600::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216074
Signature Algorithm: sha256WithRSAEncryption
91:ab:40:75:88:76:44:a2:e6:44:e7:5a:37:0e:ea:f7:ec:96:
8a:7c:b0:e1:69:6a:01:82:0e:ab:ee:04:92:6d:94:6f:71:61:
d2:fb:60:b6:4f:c6:2b:b7:45:9d:4c:51:e5:3f:d3:ae:0d:85:
d3:a1:38:6d:4c:c7:63:ea:74:15:49:59:02:4d:02:1a:2e:f3:
53:bb:81:c6:53:9f:fb:6d:0e:e3:7c:de:71:a1:17:d8:95:ef:
08:72:7e:e1:5e:59:b3:d9:ce:ff:75:7f:cc:b5:b9:f0:e5:b6:
78:a4:b3:47:79:d5:87:f3:aa:91:b2:59:af:21:1c:83:57:d1:
ee:cd:f7:1c:04:33:1c:4c:78:3c:34:c6:ae:8d:4d:cb:37:65:
e7:00:b5:fe:fe:65:60:cc:17:ae:82:1c:7d:52:8e:fd:6a:38:
de:78:9c:86:04:96:d7:26:b9:6f:46:77:ca:8a:89:6f:05:39:
ae:5b:58:12:d5:0b:29:9b:fe:86:f4:c1:4a:24:cb:d4:f2:d1:
d1:e4:d6:57:90:95:35:ca:23:c5:e7:6f:35:88:6d:e4:63:00:
9e:7a:bf:ad:74:1b:7f:55:19:dc:c8:d6:90:be:44:6a:f4:18:
9d:d7:94:42:1d:d4:3c:7b:b3:40:e9:ba:43:0f:c9:c0:ee:15:
1e:fa:c1:0a
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZaA1OG7FWRh1dVt4/a/bqdRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwNDI5MDkxNTU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGY4M2UyYTM0MTQ1YWQ0N2UwY2MyYjNjNzlmYzYzMTJiYWUyYzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRLAGVle7QyqgscGSuUKVPVwfSko
0vBZBCYIDSGhL6K7GB8iieH7oAIl4XyimFqlGpcbS7rAK2Ni+RN2BOsEIV7nl3Ba
hIkKITXETxwZDIBbq3V87oPpt5Racv+7c8+Xol4x2ucBdjkYnx2YtEh3D63W2bAn
KZWAZ9eH2SRZWlf9dscGUtNb0dcLsAPisM08gNQJn6P+qAKzdNUczE1/mvJfAZ/C
yAiBhynfy3bqBCaQTSajLP3J0JYh6W0NkWyjrHtdBHgSUNyFYTiMnfz1k1EpSqYz
zj4Dym8mNS6klBY/mdHyXKmvV3Ffk+UHcgL663x4aXLUdzzqx8N73zj94wIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFGj4Pio0FFrUfgzCs8efxjErrixxMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAzLzVlOWY5
MC1hNmIwLTRmZDgtYjhkZC03OTI4MDJjNDM5MjUvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDMvNWU5Zjkw
LWE2YjAtNGZkOC1iOGRkLTc5MjgwMmM0MzkyNS8xL2FQZy1LalFVV3RSLURNS3p4
NV9HTVN1dUxIRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAuXRwMA0EAgACMAcDBQMqFAYAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNMCjANBgkqhkiG9w0BAQsFAAOCAQEAkatAdYh2RKLm
ROdaNw7q9+yWinyw4WlqAYIOq+4Ekm2Ub3Fh0vtgtk/GK7dFnUxR5T/Trg2F06E4
bUzHY+p0FUlZAk0CGi7zU7uBxlOf+20O43zecaEX2JXvCHJ+4V5Zs9nO/3V/zLW5
8OW2eKSzR3nVh/OqkbJZryEcg1fR7s33HAQzHEx4PDTGro1Nyzdl5wC1/v5lYMwX
roIcfVKO/Wo43nichgSW1ya5b0Z3yoqJbwU5rltYEtULKZv+hvTBSiTL1PLR0eTW
V5CVNcojxedvNYht5GMAnnq/rXQbf1UZ3MjWkL5EavQYndeUQh3UPHuzQOm6Qw/J
wO4VHvrBCg==
-----END CERTIFICATE-----
Generated at Thu May 1 05:05:19 2025 by rpki-client