Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GbZo5W_iW9bcU4AO4XdQYezAkgY.cer
File: GbZo5W_iW9bcU4AO4XdQYezAkgY.cer (raw, json)
Hash identifier: pTdLVLS+oMIyBkeZVNxo1fuypkalZC6BuHOPhEqHTXM=
Subject key identifier: 19:B6:68:E5:6F:E2:5B:D6:DC:53:80:0E:E1:77:50:61:EC:C0:92:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0197AC175945D6487F3DF4F8FA49064D56BC
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ee/d70d46-265a-4092-8331-ef5f093f5395/1/GbZo5W_iW9bcU4AO4XdQYezAkgY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ee/d70d46-265a-4092-8331-ef5f093f5395/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 26 Jun 2025 11:55:00 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 50727
IP: 193.107.228.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:ac:17:59:45:d6:48:7f:3d:f4:f8:fa:49:06:4d:56:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 26 11:55:00 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=19b668e56fe25bd6dc53800ee1775061ecc09206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:81:fe:0b:5c:a9:b0:f7:5f:7f:9f:d6:40:4a:
c6:12:49:61:81:6e:99:e8:10:7a:79:c4:b0:81:39:
aa:35:20:77:2d:54:88:67:c2:cf:a0:fb:e5:ff:71:
d3:8c:4b:02:30:b4:8f:d2:a8:67:dd:87:7d:4e:01:
53:a7:69:8a:0c:c9:95:37:14:44:bf:bd:83:dc:b2:
6c:66:92:0e:63:f3:0c:bb:aa:d1:f5:e8:23:0c:c9:
76:22:96:2f:51:b6:76:b0:8c:a6:30:eb:42:12:c3:
2c:c3:bd:bc:63:89:7d:03:74:1f:4b:72:0d:6c:8f:
b4:a7:82:7a:4a:57:a3:f0:13:21:1a:c3:66:9a:c9:
fa:45:36:87:a9:9d:c7:27:ad:90:be:ed:e2:3d:46:
2a:37:be:21:6c:d6:0e:28:d5:03:c2:32:d5:25:2e:
cf:01:f7:65:12:6e:35:12:c1:ff:6a:ec:a6:8c:ee:
a3:43:7c:24:d4:c2:02:4d:34:e8:63:cc:46:99:c5:
95:44:04:e6:45:48:53:9f:10:c7:9a:e2:57:d6:f5:
5b:f5:ce:a7:10:fb:46:0b:65:a4:a0:ea:bf:c4:99:
6a:48:75:02:47:aa:c3:78:70:e0:5e:64:ec:ac:59:
02:09:9c:73:f8:91:85:52:a3:fd:a0:f9:d7:7f:5f:
54:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:B6:68:E5:6F:E2:5B:D6:DC:53:80:0E:E1:77:50:61:EC:C0:92:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d70d46-265a-4092-8331-ef5f093f5395/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d70d46-265a-4092-8331-ef5f093f5395/1/GbZo5W_iW9bcU4AO4XdQYezAkgY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.228.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
50727
Signature Algorithm: sha256WithRSAEncryption
92:4b:d4:52:1d:99:a3:c9:9d:31:67:c6:31:8a:74:8b:4e:e1:
e8:02:6a:2f:6e:9e:a4:0e:da:b9:f2:42:73:d4:eb:db:80:0c:
3f:42:d6:98:90:96:4d:cd:30:e1:91:e0:c4:bc:88:7a:8f:61:
f2:f5:5a:ea:61:b2:c4:a0:4f:7b:6c:11:c8:6c:c7:a2:7f:57:
9b:48:c9:49:e2:ae:f6:56:33:82:02:2f:c2:37:88:57:ba:c9:
8f:9b:b1:4a:db:c9:5b:c0:d1:5f:40:9e:9a:ea:31:8e:eb:0a:
c4:9e:af:e8:37:b0:9c:c2:0a:90:cd:f3:1d:65:16:c1:49:a1:
cf:ee:fc:cf:f2:ea:6b:b6:5c:1f:d2:03:85:39:f4:91:f0:60:
b5:a2:75:89:bd:66:1f:5c:fb:77:e7:17:49:78:52:b9:a4:1a:
d1:71:04:7d:4a:ad:bb:1b:9c:03:f2:88:3e:2c:8b:00:33:9b:
7b:b3:05:bc:2b:70:f3:e5:a0:1a:bf:86:05:c7:be:af:82:4d:
73:72:48:49:51:69:99:20:3b:15:1f:4f:85:8f:1c:be:8f:14:
e0:c1:f9:ab:f3:5f:69:e1:f2:c0:4e:47:9a:d2:60:b8:85:06:
ed:88:15:19:43:af:63:86:65:d5:e3:3b:68:70:08:91:4d:9e:
07:cc:04:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 15:53:12 2025 by rpki-client