Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Wjsd3asz5FUGrZdwQJJHIEF9Vog.cer
File: Wjsd3asz5FUGrZdwQJJHIEF9Vog.cer (raw, json)
Hash identifier: HRyui7hNIS+bx8vKxLHGDfigWaiPnMn7/6z151BrMRw=
Subject key identifier: 5A:3B:1D:DD:AB:33:E4:55:06:AD:97:70:40:92:47:20:41:7D:56:88
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019426D9D1C1ACF6312BCE1F3AFA2758D5FB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/Wjsd3asz5FUGrZdwQJJHIEF9Vog.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 11:49:56 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 200915
IP: 185.91.152.0/22
IP: 2a05:eb40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:d1:c1:ac:f6:31:2b:ce:1f:3a:fa:27:58:d5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 11:49:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a3b1dddab33e45506ad977040924720417d5688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e7:35:13:db:14:39:2c:59:8f:59:01:bf:16:
85:99:2e:ea:14:e3:7c:10:96:21:b4:bd:6e:e9:a4:
ae:44:52:a0:d7:71:37:ed:84:5a:16:69:11:29:f0:
4f:12:bf:01:a8:c8:24:9a:78:d9:30:7d:91:8f:21:
d6:5e:4d:ba:b9:fe:ed:d0:fa:12:a2:55:d5:6f:97:
39:a9:aa:ff:5c:77:37:9b:28:8b:21:6d:4b:d4:64:
31:fa:da:54:0c:bd:88:12:41:fb:8b:d3:74:9e:8f:
61:81:e9:00:89:b6:7b:a7:86:4a:c1:c2:68:15:d8:
3b:66:bf:5b:50:1c:87:a8:3e:db:f0:ca:2d:04:4e:
59:63:60:a8:1d:e0:37:c1:35:b6:8a:3f:46:a1:4c:
d9:be:e2:d1:2e:0a:02:da:3c:a0:5a:be:2f:75:2b:
55:1a:e2:ee:d7:60:79:f7:ec:23:4e:2c:8b:5b:ed:
fa:36:86:ab:c5:37:98:26:37:9b:4c:d8:22:49:8f:
19:e4:12:f7:14:99:34:d5:72:cb:75:98:ef:b0:7e:
dc:30:cd:44:3f:4b:0b:a0:7d:0b:8b:a8:82:b2:96:
d0:ec:96:68:0d:38:69:7c:3b:97:a1:9e:a3:e0:9c:
61:d4:1d:a6:f9:f2:3c:16:1f:82:1c:f6:8d:df:e8:
22:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3B:1D:DD:AB:33:E4:55:06:AD:97:70:40:92:47:20:41:7D:56:88
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/179bd8-fc68-4f76-86ff-68f316607376/1/Wjsd3asz5FUGrZdwQJJHIEF9Vog.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.152.0/22
IPv6:
2a05:eb40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200915
Signature Algorithm: sha256WithRSAEncryption
22:bc:a5:fd:c8:d3:94:07:4a:e4:57:9f:f0:cf:9e:de:93:00:
f1:b8:49:0d:92:20:f9:29:1f:e2:df:24:91:37:0a:15:95:25:
cf:08:d8:06:db:f9:09:fe:50:ff:ab:2d:3c:7e:70:8f:f8:71:
56:3d:88:df:17:4d:60:d5:3f:f5:3d:79:4d:bc:ec:1b:15:51:
fb:b5:79:eb:7e:04:5a:5c:5c:74:27:4e:c8:ce:93:8e:3e:b3:
8a:c3:59:3f:3f:3d:ca:f5:59:a5:a7:92:f0:c6:34:dc:93:29:
97:f0:36:69:23:34:ce:66:dc:0d:0f:61:03:35:19:bb:bc:99:
47:2b:7d:28:10:77:20:e6:68:d0:f9:63:7c:a7:75:47:03:31:
f8:07:52:b8:c3:86:27:4c:28:bf:cd:69:cd:98:6c:27:e9:8f:
12:99:d5:da:82:eb:76:f6:6d:7b:82:99:91:ac:51:30:7a:ac:
1b:6c:63:ba:31:2d:30:76:db:d3:55:91:ba:78:1e:f8:cb:39:
95:33:7c:f9:bb:b5:fa:13:71:83:11:b7:84:86:e1:a8:04:04:
ce:24:14:60:39:2e:8f:cc:c3:97:4d:50:71:0a:9f:e0:51:77:
da:39:36:bc:ec:20:98:68:9c:ae:af:64:88:92:bb:ff:9c:33:
52:7f:a7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 13:46:53 2025 by rpki-client