Certificate
$ rpki-client -vvf rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
File: 2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer (raw, json)
Hash identifier: 0F9XRQbaqcWSETf65J9Pml+0M2MHM49bPtAuDroOs4g=
Subject key identifier: 2A:7D:D1:D7:87:D7:93:E4:C8:AF:56:E1:97:D4:EE:D9:2A:F6:BA:13
Authority key identifier: E8:55:2B:1F:D6:D1:A4:F7:E4:04:C6:D8:E5:68:0D:1E:BC:16:3F:C3
Certificate issuer: /CN=ripe-ncc-ta
Certificate serial: 0107
Authority info access: rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Manifest: rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
caRepository: rsync://rpki.ripe.net/repository/aca/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 11 Dec 2023 12:36:21 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 0 -- 4294967295
IP: 0.0.0.0/0
IP: ::/0
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 263 (0x107)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ripe-ncc-ta
Validity
Not Before: Dec 11 12:36:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a7dd1d787d793e4c8af56e197d4eed92af6ba13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:da:42:1b:5a:48:a6:32:79:78:99:e5:ee:bf:
c7:bb:a4:ec:e2:9a:eb:ac:5e:10:a8:7d:b1:dc:fd:
22:b4:cf:e3:e6:27:60:a6:f9:22:f4:05:24:fa:a6:
54:8a:01:43:c3:ae:09:03:43:9f:e1:d2:26:c9:6d:
14:28:53:f8:e2:be:22:03:e5:bb:23:08:e9:0e:39:
79:5a:aa:fc:b6:24:e9:e1:98:ad:1d:1d:f5:42:d1:
70:dc:d1:c8:4d:fe:84:62:69:c4:db:fb:63:dd:b5:
90:4e:4f:74:a0:7e:03:76:a1:0b:0d:fb:a3:6e:59:
57:2e:7f:1f:5e:87:da:91:85:62:38:08:9d:3d:70:
f1:e2:4f:3a:64:be:2d:39:55:35:70:35:36:77:f0:
08:5d:05:cb:db:08:8c:2e:55:82:b3:f5:a4:f0:ed:
1e:61:37:61:4f:ec:3a:ae:f6:60:1a:c9:9f:97:27:
25:74:52:32:cd:21:6d:d2:20:80:79:f8:12:80:07:
98:db:8c:9c:3f:2f:a0:6b:0b:28:50:c6:a6:b4:2b:
b1:57:f5:5f:d0:3f:7f:e3:76:1f:c4:ed:4d:42:87:
50:75:0b:45:88:20:8c:27:c6:f4:22:03:04:b3:d1:
f9:a5:fa:6a:2c:4b:25:e5:37:eb:b9:43:69:02:a1:
ca:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:7D:D1:D7:87:D7:93:E4:C8:AF:56:E1:97:D4:EE:D9:2A:F6:BA:13
X509v3 Authority Key Identifier:
keyid:E8:55:2B:1F:D6:D1:A4:F7:E4:04:C6:D8:E5:68:0D:1E:BC:16:3F:C3
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/aca/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
0.0.0.0/0
IPv6:
::/0
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
0-4294967295
Signature Algorithm: sha256WithRSAEncryption
5e:8a:79:b6:cf:bf:b0:7e:dc:ba:0a:87:91:2d:f2:88:41:c4:
80:36:a9:98:7c:73:fa:91:9a:2d:13:70:cb:41:41:2b:48:89:
f9:94:d5:00:38:92:97:c3:fc:bc:2e:3e:68:e0:21:d1:e3:61:
06:52:b0:8b:1a:d6:b2:4a:2f:d4:d9:dd:cd:2f:49:a0:27:3a:
be:15:dc:b5:1b:96:2a:75:01:c4:64:aa:ee:64:ec:28:0e:67:
3a:13:62:a4:62:ac:79:b9:d1:2e:6c:bc:5a:04:87:ed:1e:a8:
cf:f1:66:b0:d2:c6:fd:97:ac:71:04:37:f6:84:62:4f:2a:32:
4c:02:80:e1:49:35:8e:5e:23:5c:b9:85:96:7e:f0:2d:5c:f5:
7b:86:b0:32:30:9f:38:ee:17:12:8b:03:38:a0:24:45:1d:15:
4a:51:a7:83:9f:d4:3e:02:59:84:2d:1c:db:43:fc:e2:c4:b7:
80:1b:a1:a7:4e:d4:6d:f2:bd:f0:c4:b4:2a:a3:1c:34:a2:b5:
d8:e0:68:e3:85:fc:f2:44:08:7f:18:40:82:86:5d:e3:ab:7b:
05:ee:02:5e:9e:94:01:1b:66:a7:d2:6b:4d:9e:de:7b:cf:5a:
8f:78:8e:0c:d1:c2:1f:47:f9:4a:99:db:e9:c8:78:d8:ad:e6:
9e:f3:9e:c1
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwFjEUMBIGA1UEAxMLcmlw
ZS1uY2MtdGEwHhcNMjMxMjExMTIzNjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYD
VQQDEygyYTdkZDFkNzg3ZDc5M2U0YzhhZjU2ZTE5N2Q0ZWVkOTJhZjZiYTEzMIIB
IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6tpCG1pIpjJ5eJnl7r/Hu6Ts
4prrrF4QqH2x3P0itM/j5idgpvki9AUk+qZUigFDw64JA0Of4dImyW0UKFP44r4i
A+W7IwjpDjl5Wqr8tiTp4ZitHR31QtFw3NHITf6EYmnE2/tj3bWQTk90oH4DdqEL
DfujbllXLn8fXofakYViOAidPXDx4k86ZL4tOVU1cDU2d/AIXQXL2wiMLlWCs/Wk
8O0eYTdhT+w6rvZgGsmflycldFIyzSFt0iCAefgSgAeY24ycPy+gawsoUMamtCux
V/Vf0D9/43YfxO1NQodQdQtFiCCMJ8b0IgMEs9H5pfpqLEsl5TfruUNpAqHKRwID
AQABo4ICIDCCAhwwHQYDVR0OBBYEFCp90deH15PkyK9W4ZfU7tkq9roTMB8GA1Ud
IwQYMBaAFOhVKx/W0aT35ATG2OVoDR68Fj/DMA8GA1UdEwEB/wQFMAMBAf8wDgYD
VR0PAQH/BAQDAgEGMEQGCCsGAQUFBwEBBDgwNjA0BggrBgEFBQcwAoYocnN5bmM6
Ly9ycGtpLnJpcGUubmV0L3RhL3JpcGUtbmNjLXRhLmNlcjCByQYIKwYBBQUHAQsE
gbwwgbkwMQYIKwYBBQUHMAWGJXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L2FjYS8wUAYIKwYBBQUHMAqGRHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L2FjYS9LbjNSMTRmWGstVElyMWJobDlUdTJTcjJ1aE0ubWZ0MDIGCCsG
AQUFBzANhiZodHRwczovL3JyZHAucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBB
BgNVHR8EOjA4MDagNKAyhjByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9yaXBlLW5jYy10YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAnBggr
BgEFBQcBBwEB/wQYMBYwCQQCAAEwAwMBADAJBAIAAjADAwEAMCEGCCsGAQUFBwEI
AQH/BBIwEKAOMAwwCgIBAAIFAP////8wDQYJKoZIhvcNAQELBQADggEBAF6KebbP
v7B+3LoKh5Et8ohBxIA2qZh8c/qRmi0TcMtBQStIifmU1QA4kpfD/LwuPmjgIdHj
YQZSsIsa1rJKL9TZ3c0vSaAnOr4V3LUblip1AcRkqu5k7CgOZzoTYqRirHm50S5s
vFoEh+0eqM/xZrDSxv2XrHEEN/aEYk8qMkwCgOFJNY5eI1y5hZZ+8C1c9XuGsDIw
nzjuFxKLAzigJEUdFUpRp4Of1D4CWYQtHNtD/OLEt4AboadO1G3yvfDEtCqjHDSi
tdjgaOOF/PJECH8YQIKGXeOrewXuAl6elAEbZqfSa02e3nvPWo94jgzRwh9H+UqZ
2+nIeNit5p7znsE=
-----END CERTIFICATE-----
Generated at Tue Jul 1 22:52:20 2025 by rpki-client