Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
File: mk123S9GBosIca1FAKxuV3r-Rpw.cer (raw, json)
Hash identifier: JVmBClTz9orJkk7871TgaDS1AM6qHO4PbzF9ZxHmoqU=
Subject key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019625385AFF1EC141EA7E50455183BC714B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 11 Apr 2025 14:19:32 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50309
AS: 51696
AS: 205333
IP: 46.182.192.0/21
IP: 93.115.9.0/24
IP: 93.190.122.0/24
IP: 94.142.132.0/22
IP: 185.160.128.0/22
IP: 185.221.184.0/22
IP: 2a0b:5e00::/29
IP: 2a0c:1000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Apr 2025 17:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:25:38:5a:ff:1e:c1:41:ea:7e:50:45:51:83:bc:71:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 11 14:19:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:db:da:15:0a:26:71:bc:7c:47:f7:e8:06:8c:
2a:48:3e:de:18:5b:c9:84:d1:07:5f:69:70:d2:fc:
38:6e:d7:95:c1:0f:f2:a0:1d:9b:3b:46:4f:89:3e:
94:85:d6:9e:5b:68:7b:a5:f1:bd:62:43:a7:13:4d:
dc:a7:ae:71:84:4f:3c:54:b8:33:20:bb:da:42:d3:
76:e9:89:d6:ad:08:6c:64:2a:97:ff:1f:cb:3c:44:
5a:df:eb:73:e8:4e:36:ca:f5:06:68:f9:ab:1f:e2:
f8:ae:a4:3b:5f:fa:07:ca:52:6f:f5:fc:4d:04:62:
51:cf:7f:59:8f:fc:e5:4e:53:ed:cb:7a:04:09:ab:
6f:30:32:7e:4e:b0:2a:83:9d:fa:89:55:fd:e6:c1:
65:64:51:12:04:eb:cd:3a:dc:2d:61:36:e0:dd:a2:
16:43:53:1f:f4:f6:d6:b8:94:c7:66:84:5c:07:64:
fa:8f:db:9b:a7:51:7d:d3:57:e8:76:4c:f7:eb:5e:
a2:a0:60:8e:88:01:7a:7b:1a:39:57:14:bf:06:7d:
3a:1d:5f:76:9a:dd:dc:c8:73:ee:1f:f1:b7:ea:ce:
fd:c7:e6:95:64:d4:ff:fd:1e:c0:3c:33:e1:73:cc:
99:d3:9a:69:4e:da:76:97:ef:00:66:f3:a7:fa:52:
cc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.182.192.0/21
93.115.9.0/24
93.190.122.0/24
94.142.132.0/22
185.160.128.0/22
185.221.184.0/22
IPv6:
2a0b:5e00::/29
2a0c:1000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50309
51696
205333
Signature Algorithm: sha256WithRSAEncryption
88:5f:c3:3f:88:35:9b:ce:28:29:32:c2:04:31:91:e6:1d:ac:
38:d1:2e:c0:fb:ef:7c:fa:5b:86:64:21:09:ad:e3:86:af:87:
5c:a1:e6:a6:a5:19:28:7c:8a:58:57:e1:0f:51:67:77:ee:35:
f5:b3:69:29:2f:3b:ee:e2:90:fd:61:a6:33:54:be:a4:be:38:
5f:a6:b0:5d:d1:01:33:fb:85:84:b4:f0:3b:4e:08:99:0f:5e:
8d:7f:87:00:32:77:66:5b:ac:d6:17:3f:a1:87:03:6a:b5:e9:
16:be:df:94:19:c4:dd:75:98:e4:5f:50:c7:e6:67:d7:c5:cb:
b8:32:09:f9:5d:f9:f4:75:42:77:d0:c8:13:68:b0:8c:eb:e8:
55:3a:ff:e5:17:db:44:5c:25:ee:36:3d:8d:a7:21:6e:19:03:
27:41:e0:2c:c4:77:3d:66:3d:fd:18:d9:74:56:c8:03:45:76:
cc:ab:21:d9:23:7a:2e:09:0b:c9:ae:5b:64:ab:fc:bc:11:f5:
d1:a7:e3:c4:b3:d4:22:ae:7d:0b:e7:6c:de:20:90:8d:b2:de:
79:72:37:ac:17:d0:0a:27:37:e6:8c:f0:1c:35:0c:d1:b7:f7:
d4:33:e8:53:95:53:9b:f7:32:61:a4:04:bb:a9:ea:1b:32:36:
46:86:bd:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 22:49:07 2025 by rpki-client