Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JA_Q0ziG2DnFzJAQOhhuE6NIrVA.cer
File: JA_Q0ziG2DnFzJAQOhhuE6NIrVA.cer (raw, json)
Hash identifier: 9O+OF2RPtWB4gP/m0X2AyAOb1Y11a97zZW84zQEFHNA=
Subject key identifier: 24:0F:D0:D3:38:86:D8:39:C5:CC:90:10:3A:18:6E:13:A3:48:AD:50
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0196815DF6F8F4C8164F6966175A2DC4BBCD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/JA_Q0ziG2DnFzJAQOhhuE6NIrVA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 29 Apr 2025 11:45:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 8553
IP: 81.95.52.0/22
IP: 85.159.56.0/21
IP: 195.10.224.0/19
IP: 2a00:ce0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:5d:f6:f8:f4:c8:16:4f:69:66:17:5a:2d:c4:bb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 29 11:45:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=240fd0d33886d839c5cc90103a186e13a348ad50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2d:9c:c6:4a:86:cb:7d:47:c2:1e:9e:50:d2:
72:6f:ed:86:f0:0c:f6:b3:a3:a2:74:99:db:5f:c5:
fa:a4:94:c3:0e:30:90:0b:33:09:57:cb:05:45:c9:
d5:4d:03:e2:ab:ac:14:d3:b7:cb:d6:86:90:07:c2:
c1:06:82:fe:32:14:b7:99:77:d0:d3:dc:16:23:84:
5a:98:0d:e7:1d:c5:03:af:51:ca:af:e1:3c:7f:56:
b2:25:88:de:72:81:f1:58:23:68:d4:89:64:04:03:
ff:2f:fd:91:1f:fc:32:ab:69:79:32:62:5c:78:b1:
39:34:e7:26:37:fb:ba:c4:d7:20:9c:07:ab:58:7a:
cd:1b:a1:59:b8:6f:27:bc:8f:db:44:60:28:9c:e9:
f6:98:16:82:a4:0d:f5:ab:d2:a2:82:79:59:25:ba:
89:7e:0c:bc:9f:40:50:fb:b3:34:75:56:b2:4c:71:
98:1f:bf:42:10:26:56:ff:29:37:b5:a4:d9:c7:c7:
f4:97:e4:0a:4a:b3:ee:a1:7f:15:67:32:48:90:c2:
8d:28:ee:8e:50:b8:33:12:32:63:b9:9e:cb:7a:8f:
33:97:cb:c6:3b:e1:b7:6b:85:c7:d9:20:9d:cb:78:
e7:ce:38:d3:de:06:e3:5e:c6:96:e0:19:7d:50:a4:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0F:D0:D3:38:86:D8:39:C5:CC:90:10:3A:18:6E:13:A3:48:AD:50
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/958a59-f80d-4d58-9d43-f26bff8b4994/1/JA_Q0ziG2DnFzJAQOhhuE6NIrVA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.95.52.0/22
85.159.56.0/21
195.10.224.0/19
IPv6:
2a00:ce0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8553
Signature Algorithm: sha256WithRSAEncryption
81:74:2c:1c:5e:ff:33:73:fa:da:0d:12:ce:5b:9e:e9:9c:04:
0a:b2:3f:7e:04:c7:d5:e6:32:6f:6d:9e:b5:3c:09:2c:15:71:
34:f5:74:da:69:ea:87:c1:8a:e7:23:23:44:9e:69:ef:dc:ed:
b6:52:43:53:c0:c1:6d:76:d2:f1:a9:0c:03:6d:9a:bd:ba:f5:
3c:69:6f:66:e9:bd:cc:0f:5a:08:2a:e7:0d:7b:13:53:ca:f1:
9d:d4:c8:3b:88:42:1b:f7:10:5d:65:bf:ab:dd:f4:3d:97:79:
d0:1a:91:b2:a3:8e:56:91:55:eb:7d:b9:22:1b:76:f2:04:f1:
27:d6:24:53:71:da:ce:bd:18:ed:44:40:01:dd:c6:35:41:a3:
25:01:e4:bb:e5:29:06:ca:a2:10:00:a6:5a:36:12:17:63:d9:
85:4d:92:77:9f:85:4a:7c:8f:24:f7:20:66:9a:7b:83:d3:5f:
21:4c:ac:9f:0c:f3:7b:a7:f1:e8:68:25:3d:73:73:1c:21:c8:
44:f4:d6:28:99:31:93:ce:dc:37:45:04:d1:73:a9:97:eb:94:
d9:e4:4a:bf:4f:d9:97:de:17:2d:d5:22:28:7c:4b:09:47:b0:
a9:09:1a:64:38:0a:de:b3:2c:08:e6:50:bc:20:9b:5a:b6:f8:
d2:4a:b2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 01:11:14 2025 by rpki-client