Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wy_JMz20PiSz8jvGSjrhP0D7Cqc.cer
File: wy_JMz20PiSz8jvGSjrhP0D7Cqc.cer (raw, json)
Hash identifier: gTP6c1KkZfk29aBMPYDSqODKLdmFBZu0MsEZoMIdKoI=
Subject key identifier: C3:2F:C9:33:3D:B4:3E:24:B3:F2:3B:C6:4A:3A:E1:3F:40:FB:0A:A7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DC5A71C3BB5BD87E16CA88C40262E69E7
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/9acaa0-05e1-4721-89eb-a671915ee99a/1/wy_JMz20PiSz8jvGSjrhP0D7Cqc.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/9acaa0-05e1-4721-89eb-a671915ee99a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 20 Feb 2024 08:34:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49178
IP: 185.192.180.0/24
IP: 185.237.180.0/22
IP: 2a0e:d400::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c5:a7:1c:3b:b5:bd:87:e1:6c:a8:8c:40:26:2e:69:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 20 08:34:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c32fc9333db43e24b3f23bc64a3ae13f40fb0aa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2e:60:7c:25:5e:3a:95:9e:70:9d:77:b7:bc:
a2:77:6e:f6:a8:b9:17:65:c5:00:90:b0:77:2d:0b:
61:c7:fe:7e:76:a5:05:9e:6e:85:bc:11:50:45:6e:
21:f1:38:89:7f:51:cc:0f:b0:74:28:82:95:c6:6a:
6a:95:f6:1d:99:24:85:fd:de:d1:56:5a:c5:e6:72:
5f:00:83:68:fd:d7:ae:f4:a5:86:10:40:78:38:65:
43:b5:ca:c4:0b:24:4e:89:55:1f:6b:bb:23:a8:be:
a5:13:3f:5a:14:2f:92:38:67:7e:d7:80:8f:c8:54:
90:72:b2:f6:a0:2e:22:62:1b:c9:f2:6d:a7:5a:e4:
ac:b2:da:84:03:46:e1:5d:8e:21:7e:49:57:a0:ca:
8a:e5:13:e8:34:59:be:a4:b3:e9:40:1f:bf:96:fa:
a5:d9:11:c0:db:bd:81:cf:ec:1f:05:4d:57:41:72:
0f:82:42:fc:7e:dc:b9:81:fc:84:56:80:dd:b8:cb:
be:a8:7f:06:48:c9:75:94:33:dd:11:ea:fe:71:34:
dd:a7:71:00:29:6e:0e:6a:f9:38:52:60:90:90:e9:
68:ab:bf:87:ff:4d:45:16:cc:77:a6:38:6b:14:c4:
84:9d:39:8e:c4:d2:8c:5a:49:a9:c9:4f:91:83:38:
4a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:2F:C9:33:3D:B4:3E:24:B3:F2:3B:C6:4A:3A:E1:3F:40:FB:0A:A7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9acaa0-05e1-4721-89eb-a671915ee99a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9acaa0-05e1-4721-89eb-a671915ee99a/1/wy_JMz20PiSz8jvGSjrhP0D7Cqc.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.180.0/24
185.237.180.0/22
IPv6:
2a0e:d400::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49178
Signature Algorithm: sha256WithRSAEncryption
04:70:60:e8:16:03:14:b6:53:03:3f:50:eb:84:2a:b0:d1:96:
30:85:f3:5b:a2:f1:f5:4e:51:1e:c1:6a:46:7a:fd:46:b2:83:
26:4e:61:bd:b1:71:ac:ab:75:10:88:3e:79:17:7d:f8:ff:96:
37:ae:cc:cc:6f:9f:da:a8:ab:55:3e:19:8f:53:60:14:af:7c:
56:a6:95:58:89:d5:97:be:ac:fe:28:90:1e:25:af:17:10:c9:
83:29:4d:27:5b:57:54:b4:14:43:dd:bd:89:90:dd:ed:59:1b:
2a:d4:a3:93:46:a3:a9:40:0b:dc:44:9a:09:3e:87:96:1b:2b:
3b:0e:68:70:25:38:fa:ee:7e:ae:aa:62:06:a2:d7:87:63:37:
e0:4a:e4:5c:90:3c:93:c5:f0:56:82:c9:76:a8:64:b4:e3:34:
1f:27:54:bb:86:45:80:0d:66:8e:a6:f6:e7:fe:84:26:8b:01:
e2:f4:60:bb:5c:b9:f5:d8:88:85:c4:a7:5b:00:8f:8e:aa:70:
48:cc:79:43:aa:58:46:07:a6:02:dd:dc:40:bf:ca:1a:a9:fa:
98:18:f3:22:e6:86:cf:f2:75:49:3c:61:ec:6a:f3:e8:9f:c7:
8a:a0:53:7d:66:2b:30:4e:16:eb:3a:64:fe:17:b9:ae:ae:76:
e1:f9:94:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:43:48 2024 by rpki-client on console-ams.rpki-client.org