Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
File: 7pzNOKXWSWiAvAlHBuaPoE-izZY.cer (raw, json)
Hash identifier: A0K2We8sr/UAHAyIYUxg/IaTKszuXuYlyUn3IK8mudY=
Subject key identifier: EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0198608A8A557EAB52DCB1407F54A066030E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 31 Jul 2025 12:52:28 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 213417
IP: 37.58.28.0/24
IP: 45.10.56.0/24
IP: 2a14:ff00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:60:8a:8a:55:7e:ab:52:dc:b1:40:7f:54:a0:66:03:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 31 12:52:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:16:fb:90:74:d3:8d:20:e9:91:d3:99:51:c5:
b2:63:4c:72:30:9e:aa:25:68:b7:d7:18:ae:9e:15:
b0:90:e3:3e:0e:ed:6f:61:ef:5e:2f:f2:6d:45:c3:
b7:44:95:ed:05:c9:1b:70:f2:44:d0:d8:99:0e:d4:
db:a5:2a:fc:dd:4e:bf:f0:09:de:b7:af:05:22:fd:
57:d3:e5:ed:c6:31:18:f1:e8:df:9c:0f:33:2f:bb:
4a:e5:f5:de:e8:35:02:87:b1:dc:dd:6d:33:da:7b:
20:6d:3b:bc:18:f3:5c:82:36:49:35:d8:76:d2:f6:
1d:6d:98:7f:a8:18:39:a7:71:2f:9e:8b:ef:be:67:
cc:f1:da:07:33:48:fd:dd:99:fb:e7:46:25:72:a0:
16:54:80:5c:88:f2:95:8b:34:42:ee:c7:a8:87:f9:
4c:65:aa:1b:22:ec:ca:92:d3:ff:b7:b4:6f:82:93:
05:29:ca:a2:ed:fa:a0:82:c1:be:3a:27:0e:86:f0:
0f:a4:c1:40:f5:92:91:f3:0e:b8:48:2a:e7:12:94:
bd:f0:59:80:fe:b2:ea:c6:43:b5:1e:d0:33:71:49:
d8:67:35:c3:0d:5a:cf:ed:97:bf:4b:8c:ae:d3:6f:
e3:f4:06:b8:52:44:a1:11:fe:02:9e:47:3a:5e:63:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.58.28.0/24
45.10.56.0/24
IPv6:
2a14:ff00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213417
Signature Algorithm: sha256WithRSAEncryption
51:24:bd:d6:10:22:8e:f9:c8:db:13:20:4d:94:e2:af:93:da:
ec:d6:bc:8d:0b:57:bd:eb:ea:18:fd:42:87:10:69:4a:ae:af:
44:ba:af:90:f4:7f:44:40:ba:f3:5b:55:a4:85:f0:ad:b6:39:
0d:da:07:7a:07:36:8c:84:15:04:3c:5e:16:07:2d:91:12:ea:
52:e6:61:da:0d:2e:49:94:03:1b:de:53:50:c2:e0:c1:d4:9d:
33:81:82:21:86:c6:07:54:79:78:65:61:0c:ff:32:37:b5:79:
31:12:15:51:7d:67:58:65:e2:5b:a5:f0:b6:0a:c7:47:31:5c:
5f:05:85:68:78:0d:9e:67:d9:de:eb:d1:e7:dd:30:db:40:54:
37:d5:19:71:dc:36:f8:d6:05:2f:b9:52:26:86:68:71:bc:b3:
46:9f:a3:27:40:b2:16:63:83:9c:58:13:e9:b7:d8:77:aa:76:
47:1b:e4:b6:90:32:bd:e8:30:86:40:f6:b8:42:48:33:eb:6f:
eb:8e:69:7f:44:24:7d:ce:87:f5:9e:66:38:b8:52:98:33:46:
3a:a2:96:bb:90:50:dc:ac:5e:34:24:29:fe:05:79:5a:c9:03:
ca:90:ad:68:92:88:4a:7d:5e:ae:63:a0:d7:34:aa:d2:70:67:
99:0b:9f:07
-----BEGIN CERTIFICATE-----
MIIFqTCCBJGgAwIBAgISAZhgiopVfqtS3LFAf1SgZgMOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwNzMxMTI1MjI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTljY2QzOGE1ZDY0OTY4ODBiYzA5NDcwNmU2OGZhMDRmYTJjZDk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwhb7kHTTjSDpkdOZUcWyY0xyMJ6q
JWi31xiunhWwkOM+Du1vYe9eL/JtRcO3RJXtBckbcPJE0NiZDtTbpSr83U6/8Ane
t68FIv1X0+XtxjEY8ejfnA8zL7tK5fXe6DUCh7Hc3W0z2nsgbTu8GPNcgjZJNdh2
0vYdbZh/qBg5p3EvnovvvmfM8doHM0j93Zn750YlcqAWVIBciPKVizRC7seoh/lM
ZaobIuzKktP/t7RvgpMFKcqi7fqggsG+OicOhvAPpMFA9ZKR8w64SCrnEpS98FmA
/rLqxkO1HtAzcUnYZzXDDVrP7Ze/S4yu02/j9Aa4UkShEf4Cnkc6XmMLkwIDAQAB
o4ICtTCCArEwHQYDVR0OBBYEFO6czTil1klogLwJRwbmj6BPos2WMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EzLzE1Zjk1
Yy1iMGI2LTQ1MjItOGVhMC01NWJlYWZhNGJiMjkvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTMvMTVmOTVj
LWIwYjYtNDUyMi04ZWEwLTU1YmVhZmE0YmIyOS8xLzdwek5PS1hXU1dpQXZBbEhC
dWFQb0UtaXpaWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF
BwEHAQH/BCUwIzASBAIAATAMAwQAJTocAwQALQo4MA0EAgACMAcDBQMqFP8AMBoG
CCsGAQUFBwEIAQH/BAswCaAHMAUCAwNBqTANBgkqhkiG9w0BAQsFAAOCAQEAUSS9
1hAijvnI2xMgTZTir5Pa7Na8jQtXvevqGP1ChxBpSq6vRLqvkPR/REC681tVpIXw
rbY5DdoHegc2jIQVBDxeFgctkRLqUuZh2g0uSZQDG95TUMLgwdSdM4GCIYbGB1R5
eGVhDP8yN7V5MRIVUX1nWGXiW6XwtgrHRzFcXwWFaHgNnmfZ3uvR590w20BUN9UZ
cdw2+NYFL7lSJoZocbyzRp+jJ0CyFmODnFgT6bfYd6p2RxvktpAyvegwhkD2uEJI
M+tv645pf0Qkfc6H9Z5mOLhSmDNGOqKWu5BQ3KxeNCQp/gV5WskDypCtaJKISn1e
rmOg1zSq0nBnmQufBw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 08:24:48 2025 by rpki-client