Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer
File: xlg_WMcRCtTMYJ9P-3yrL4DINYE.cer (raw, json)
Hash identifier: 9CqY3l+DyD+syMS7MjsnPZrc0UVMbjt00LAODqz0bJ8=
Subject key identifier: C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019769325AAD2BF3669D6649466C0B7D1C28
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 13 Jun 2025 12:09:57 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 15659
IP: 80.202.0.0/16
IP: 84.48.0.0/18
IP: 84.49.0.0/16
IP: 89.10.0.0 -- 89.11.127.255
IP: 195.5.183.0/24
IP: 213.145.160.0/19
IP: 213.187.160.0/19
IP: 217.13.0.0/19
IP: 2a04:980::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:32:5a:ad:2b:f3:66:9d:66:49:46:6c:0b:7d:1c:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 13 12:09:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c6583f58c7110ad4cc609f4ffb7cab2f80c83581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2c:d9:56:65:e2:0a:b8:6e:a9:c1:87:c9:ee:
2b:86:d5:97:90:9d:3c:a1:8f:4e:e4:9d:d2:26:96:
51:41:60:10:84:e3:a5:8c:d0:88:e4:5f:7f:37:00:
93:21:e8:7f:0e:07:76:ca:d7:bf:e4:b7:2c:b7:f5:
a4:96:f0:49:60:cc:0c:be:ad:a6:76:ec:da:4a:dd:
72:9e:d4:5b:a9:25:8f:a1:de:06:b8:7f:b6:13:3f:
b2:e8:07:c0:28:51:af:a4:b5:46:2e:f1:ab:aa:20:
e4:5d:78:ba:2f:5a:01:83:02:92:2a:c1:c9:fb:d4:
65:52:79:ee:52:2d:f3:7b:a7:8f:dc:b3:ec:f7:94:
90:04:ad:45:84:26:d3:a5:8e:01:6d:25:1c:27:91:
2f:0d:e2:c0:f5:68:fc:ef:35:f7:7f:fa:08:02:a1:
2f:b7:bf:fe:4d:ea:af:1c:bc:d3:ff:3d:e6:aa:c6:
a0:14:95:f5:13:e9:e2:b9:8b:d7:06:df:f9:b3:0f:
5e:b0:ed:ba:50:f8:3c:d2:20:d3:0a:78:17:0f:b0:
4c:8d:4a:66:7b:23:ea:ff:dd:5f:3f:e6:09:cf:7a:
60:69:d1:26:78:dc:19:9b:0a:d5:61:be:5a:9b:2b:
e7:6b:22:57:06:7a:58:40:38:9d:3c:01:03:fd:13:
75:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:58:3F:58:C7:11:0A:D4:CC:60:9F:4F:FB:7C:AB:2F:80:C8:35:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/8d0cae-ec13-45fb-9afc-3d593ebe5220/1/xlg_WMcRCtTMYJ9P-3yrL4DINYE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.202.0.0/16
84.48.0.0/18
84.49.0.0/16
89.10.0.0-89.11.127.255
195.5.183.0/24
213.145.160.0/19
213.187.160.0/19
217.13.0.0/19
IPv6:
2a04:980::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15659
Signature Algorithm: sha256WithRSAEncryption
44:4a:c2:ae:8c:83:0f:49:e0:9a:41:a8:cb:2c:5d:e1:62:51:
1a:49:36:06:f7:71:0e:b8:7d:e0:1f:41:8a:b4:d5:6b:7e:61:
c4:18:de:68:44:38:86:2c:b6:f8:2a:86:f4:a4:12:74:fb:f0:
c2:47:55:75:a3:b3:95:80:b9:2f:5f:8e:f5:bd:b7:7c:46:08:
77:fb:c3:fe:ce:65:95:41:b1:1e:04:27:e3:56:3b:7e:48:b8:
fd:85:21:ed:62:5a:d7:95:a9:f8:ee:32:52:cb:e7:1b:6c:b8:
7e:73:f1:be:27:23:4a:67:da:30:db:a8:0d:72:14:0f:d0:70:
2e:1a:d2:72:e9:82:86:a7:3f:e1:0b:9a:b4:56:91:c1:dd:ef:
ef:4f:98:d7:9c:f8:9f:4a:00:8e:f0:05:24:d2:cd:22:4e:7a:
03:f7:24:aa:59:9d:43:dd:f0:97:9e:a3:fb:34:de:6c:e9:74:
fe:04:c7:5e:88:d3:8b:cd:1f:45:b2:68:02:4b:94:b8:27:df:
9e:63:09:b5:94:ee:00:62:3a:1f:46:cf:c4:ce:41:78:91:1a:
6a:61:c6:7f:a3:77:cb:b3:46:c9:3d:c9:1d:c0:7e:e4:6b:12:
fb:ca:8c:3e:73:7e:3e:34:1d:23:49:eb:e3:28:7e:2c:c8:bc:
15:59:a0:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 18:35:20 2025 by rpki-client