Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.cer
File: W-XxlT4DHSeYZPPDvv8LxnWgDuQ.cer (raw, json)
Hash identifier: wUn3bvy6gbozAUzeuU3+zNVcY0sW+vnqpCYDtWDJtio=
Subject key identifier: 5B:E5:F1:95:3E:03:1D:27:98:64:F3:C3:BE:FF:0B:C6:75:A0:0E:E4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019427B640E4CEF7540873E286EBBDFC4946
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 15:50:43 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 212640
IP: 193.163.54.0/24
IP: 2a10:6b40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:40:e4:ce:f7:54:08:73:e2:86:eb:bd:fc:49:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 15:50:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5be5f1953e031d279864f3c3beff0bc675a00ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3b:69:2f:75:93:db:8c:6f:43:cb:15:18:5d:
f7:0c:89:81:51:ed:11:7a:36:97:b8:61:fa:f4:69:
37:a4:5a:e8:71:48:26:0a:2c:5a:41:05:29:f4:5f:
b6:61:37:51:4d:a2:0f:95:7b:e3:e2:0a:c3:34:d1:
83:52:64:95:06:56:88:f7:f7:62:74:aa:a5:bb:06:
b9:c7:aa:b5:2c:49:78:09:d4:8a:2e:d0:13:6b:bb:
2d:0a:50:18:21:b0:30:da:7e:6a:39:ae:34:9e:69:
e3:f5:b2:90:42:38:1e:7e:8e:ee:70:63:3a:0e:18:
ab:6e:af:5f:62:fe:3e:53:75:a7:97:88:38:eb:a0:
45:e2:13:07:83:d9:80:7b:14:12:f0:76:99:20:1f:
dd:d4:98:c8:a2:ac:09:31:53:4a:04:72:bf:e9:a1:
02:0f:b6:36:c0:9d:7c:b1:5d:24:d7:4a:d8:f9:4d:
03:f1:f2:8d:e3:24:24:27:f6:29:c3:31:51:bc:a2:
de:f7:57:72:9e:6f:b3:4d:28:9e:ea:00:ee:d4:36:
ee:6e:62:30:f8:63:78:ce:d9:87:41:c0:38:12:de:
1c:5f:01:5f:cb:14:17:5b:69:66:76:55:4c:92:bb:
df:65:db:d4:7e:96:59:34:a5:07:46:91:a7:b7:99:
a9:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E5:F1:95:3E:03:1D:27:98:64:F3:C3:BE:FF:0B:C6:75:A0:0E:E4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/ce12ca-ab7e-4854-bc67-8c600eae7d80/1/W-XxlT4DHSeYZPPDvv8LxnWgDuQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.54.0/24
IPv6:
2a10:6b40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
212640
Signature Algorithm: sha256WithRSAEncryption
7d:d4:06:c6:0e:b1:e5:d1:b5:73:58:86:ef:1a:56:f5:27:9f:
de:d8:08:a6:ca:e7:3f:1b:a3:a6:80:fa:4b:25:b0:17:82:ba:
68:59:d2:34:2a:31:22:30:40:92:30:b4:de:4b:e9:1b:5e:46:
e9:4e:05:75:30:d0:7e:22:17:09:51:5b:c9:a8:f2:5d:51:37:
9b:54:60:d1:e1:89:50:56:b9:cc:74:ef:3f:fa:fd:b7:33:ba:
03:8b:f2:e4:4a:6d:17:0a:49:53:e3:bc:1e:e6:bd:f3:4c:af:
47:f4:c1:94:0d:b2:1f:43:55:21:d0:be:51:c6:8f:cc:5e:1c:
d1:8d:14:d3:d5:98:83:5d:d1:f5:df:77:51:6f:12:0c:6f:30:
a5:04:03:61:d9:92:5c:20:16:45:dd:ae:50:b0:38:88:0d:36:
bc:41:fb:f1:e0:67:61:48:06:4a:81:db:1e:4d:b5:36:51:1a:
e4:69:c2:69:c5:99:c2:5c:cf:43:4c:9d:79:ba:ef:48:6d:13:
76:dc:28:d6:bc:ce:d4:e0:2e:43:96:8f:45:b6:d0:6c:ca:70:
53:35:af:31:fe:f0:a4:29:af:32:be:bc:43:fd:87:17:1a:4c:
4b:91:6a:3e:fb:d1:4d:fc:46:37:60:a4:67:1f:52:63:2c:62:
e9:97:e4:5d
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAZQntkDkzvdUCHPihuu9/ElGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAyMTU1MDQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmU1ZjE5NTNlMDMxZDI3OTg2NGYzYzNiZWZmMGJjNjc1YTAwZWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTtpL3WT24xvQ8sVGF33DImBUe0R
ejaXuGH69Gk3pFrocUgmCixaQQUp9F+2YTdRTaIPlXvj4grDNNGDUmSVBlaI9/di
dKqluwa5x6q1LEl4CdSKLtATa7stClAYIbAw2n5qOa40nmnj9bKQQjgefo7ucGM6
Dhirbq9fYv4+U3Wnl4g466BF4hMHg9mAexQS8HaZIB/d1JjIoqwJMVNKBHK/6aEC
D7Y2wJ18sV0k10rY+U0D8fKN4yQkJ/YpwzFRvKLe91dynm+zTSie6gDu1DbubmIw
+GN4ztmHQcA4Et4cXwFfyxQXW2lmdlVMkrvfZdvUfpZZNKUHRpGnt5mpTQIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFFvl8ZU+Ax0nmGTzw77/C8Z1oA7kMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E2L2NlMTJj
YS1hYjdlLTQ4NTQtYmM2Ny04YzYwMGVhZTdkODAvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYvY2UxMmNh
LWFiN2UtNDg1NC1iYzY3LThjNjAwZWFlN2Q4MC8xL1ctWHhsVDRESFNlWVpQUER2
djhMeG5XZ0R1US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF
BwEHAQH/BB8wHTAMBAIAATAGAwQAwaM2MA0EAgACMAcDBQMqEGtAMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM+oDANBgkqhkiG9w0BAQsFAAOCAQEAfdQGxg6x5dG1
c1iG7xpW9Sef3tgIpsrnPxujpoD6SyWwF4K6aFnSNCoxIjBAkjC03kvpG15G6U4F
dTDQfiIXCVFbyajyXVE3m1Rg0eGJUFa5zHTvP/r9tzO6A4vy5EptFwpJU+O8Hua9
80yvR/TBlA2yH0NVIdC+UcaPzF4c0Y0U09WYg13R9d93UW8SDG8wpQQDYdmSXCAW
Rd2uULA4iA02vEH78eBnYUgGSoHbHk21NlEa5GnCacWZwlzPQ0ydebrvSG0Tdtwo
1rzO1OAuQ5aPRbbQbMpwUzWvMf7wpCmvMr68Q/2HFxpMS5FqPvvRTfxGN2CkZx9S
Yyxi6ZfkXQ==
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:43:38 2025 by rpki-client