Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r2wr579CguHNaQjyiaec7Apd9C4.cer
File: r2wr579CguHNaQjyiaec7Apd9C4.cer (raw, json)
Hash identifier: C5wI9EmnHXEagE7Iop/3jKIyapDZKwA/u0AETE0fGKo=
Subject key identifier: AF:6C:2B:E7:BF:42:82:E1:CD:69:08:F2:89:A7:9C:EC:0A:5D:F4:2E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019717987B57A0AC59B2B8B04F9C1E34BE90
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/r2wr579CguHNaQjyiaec7Apd9C4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 28 May 2025 15:52:38 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201298
AS: 209037
AS: 210033
IP: 45.9.164.0/22
IP: 185.78.236.0/22
IP: 195.114.116.0/22
IP: 213.232.194.0/23
IP: 2a05:6e80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 13:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:17:98:7b:57:a0:ac:59:b2:b8:b0:4f:9c:1e:34:be:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 28 15:52:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=af6c2be7bf4282e1cd6908f289a79cec0a5df42e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4e:27:ad:44:18:01:d2:ce:28:8e:66:7b:99:
74:80:8e:4a:9b:33:7a:d7:e0:9f:28:41:d9:8b:ea:
21:0a:e1:f1:eb:ce:b5:18:f9:67:e1:da:2c:2e:0f:
25:1c:49:4b:b7:3c:de:12:69:04:37:3d:40:ca:cc:
7e:8b:a7:c3:24:ae:9e:30:ae:43:03:bc:90:e5:ec:
7b:17:a9:12:61:a0:50:48:3e:ad:36:8c:2d:a0:0b:
8d:67:90:8f:c5:66:73:2a:49:3b:02:07:16:a4:f8:
1d:27:69:a0:a2:ae:0d:64:2f:ee:36:70:ea:df:07:
b0:7c:cd:bd:3d:dc:e4:14:72:df:49:04:3b:8e:00:
cf:f4:ec:45:b4:6d:87:36:51:18:37:7f:34:d9:a0:
21:0b:d8:85:0c:65:2f:31:4b:ae:03:43:2d:b3:f9:
d1:35:c8:8f:b8:0f:3b:fa:aa:48:93:f5:5e:7d:5d:
27:66:31:86:b3:5a:74:9a:e3:cb:eb:d4:51:07:45:
eb:3e:01:d8:b5:a7:be:85:2c:a0:5d:8b:b0:7d:cc:
8e:b4:78:7d:67:64:cd:60:6b:88:06:b1:d4:ce:9d:
b5:df:2a:27:be:4d:94:3d:4b:d6:5b:9d:d3:ed:1d:
a6:9e:fe:4b:ca:df:04:18:6e:fe:b8:94:3b:c2:f4:
89:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:6C:2B:E7:BF:42:82:E1:CD:69:08:F2:89:A7:9C:EC:0A:5D:F4:2E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/6df87f-1e3c-47c5-85de-0d8ebce86cac/1/r2wr579CguHNaQjyiaec7Apd9C4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.164.0/22
185.78.236.0/22
195.114.116.0/22
213.232.194.0/23
IPv6:
2a05:6e80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201298
209037
210033
Signature Algorithm: sha256WithRSAEncryption
ac:74:02:4d:38:2e:55:45:88:52:2c:60:5f:4b:dd:66:0a:f6:
e7:d6:e6:5c:78:e8:80:bc:ea:c8:66:57:62:f2:9d:a9:eb:d2:
3d:fb:eb:ba:ee:7e:34:ba:db:c8:11:bb:a8:ee:a7:99:f4:c9:
50:e8:73:95:17:4e:f1:b2:fe:80:3f:dd:16:d0:25:40:48:72:
d8:00:df:ed:1c:cf:e0:46:62:a5:f9:f0:e1:18:b9:a0:b6:6f:
ba:c8:bb:c5:4c:f0:16:1c:d4:ce:dd:04:46:92:c0:fa:e5:ac:
1a:9c:62:d5:88:3e:62:e6:ee:28:be:ce:11:38:4a:7b:95:df:
5b:b1:4b:87:a0:93:04:06:93:ba:b5:d4:70:40:12:81:44:eb:
81:5f:13:e7:08:1b:61:20:5e:56:22:c1:82:c3:d2:79:ad:2e:
d0:41:0f:b1:ab:09:c6:a7:57:de:8f:92:16:ca:63:62:aa:15:
a2:38:e3:15:6e:eb:8b:ad:ec:20:e0:04:46:b8:45:91:39:3f:
1c:84:bf:d8:f6:e1:3a:68:e7:93:3c:83:ac:55:e5:0c:1e:57:
36:6e:c3:fa:f4:40:c2:34:5d:f9:f8:83:85:34:7c:58:ac:29:
f3:c3:aa:f3:19:ac:20:f3:d5:30:92:63:f8:08:18:7d:bb:31:
74:a7:1e:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 22:07:04 2025 by rpki-client