Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W-cZ-YXfOUpCrBHly8j4K0t67F0.cer
File: W-cZ-YXfOUpCrBHly8j4K0t67F0.cer (raw, json)
Hash identifier: sv4AMjnP0632WfGVpP6MCPpD8vyZuqkU/HTmkIE1CWE=
Subject key identifier: 5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942143E93AE680CFBFD5E1B197AF06B177
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:48:06 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 56818
IP: 91.227.254.0/24
IP: 192.162.200.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:e9:3a:e6:80:cf:bf:d5:e1:b1:97:af:06:b1:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:48:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5be719f985df394a42ac11e5cbc8f82b4b7aec5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:37:e2:9f:13:11:1e:9f:d0:27:64:2e:d5:45:
d1:46:75:21:1b:9d:f5:11:95:8a:6e:11:68:f9:d6:
b7:13:fa:b2:92:99:e5:50:ff:58:a5:a2:92:2a:05:
23:23:a4:19:ec:ee:2f:82:18:ee:52:e6:e2:18:53:
69:6e:45:e3:a2:41:f2:be:e7:8f:d0:7d:3d:fd:58:
54:84:45:d1:ae:5a:a7:4b:21:59:70:d5:30:00:f7:
2b:87:ef:07:40:09:68:65:63:95:dd:79:a0:27:71:
f3:92:e8:d5:66:17:d7:b5:5d:73:97:78:b4:57:bb:
92:d5:64:6e:26:09:e9:65:24:8d:ea:1f:7f:d8:aa:
6a:11:9a:6d:65:a5:87:cf:6c:ad:aa:d4:7a:f4:b8:
6d:4a:16:91:17:ad:dc:52:4b:55:6f:6e:cd:85:71:
f7:74:dc:aa:4e:6f:02:df:d0:e6:a3:70:44:64:45:
7b:54:45:10:09:1b:67:1e:0f:c5:e1:1d:87:20:70:
2a:30:f1:eb:ad:0f:9a:21:99:2d:71:7c:e5:65:0e:
36:e6:d0:8c:d4:7a:e1:d0:35:d6:30:78:d3:07:82:
3c:42:7f:eb:55:95:b9:a3:ff:0e:40:b3:58:3c:3c:
21:14:9c:54:62:de:8f:6c:e0:08:e0:3b:f4:84:1a:
fd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:E7:19:F9:85:DF:39:4A:42:AC:11:E5:CB:C8:F8:2B:4B:7A:EC:5D
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/9c0278-542c-4467-ac7c-24aee2b0e82b/1/W-cZ-YXfOUpCrBHly8j4K0t67F0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.254.0/24
192.162.200.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56818
Signature Algorithm: sha256WithRSAEncryption
8b:78:88:b2:ac:f6:14:81:71:5e:f8:31:a1:4c:26:fe:2e:dc:
e5:4f:5c:ba:ba:eb:15:1b:21:5b:07:45:0b:29:bd:64:4a:e5:
28:14:c7:1f:fe:91:ce:f0:eb:0c:67:6f:92:e0:d6:8c:f7:83:
61:cd:23:33:3d:95:b9:e1:89:2f:94:f8:17:01:9a:f5:cc:62:
92:76:c8:b5:1b:6e:76:b2:33:f2:42:18:10:16:e0:8e:3d:f7:
63:e6:aa:f6:89:31:36:37:f8:4c:0b:81:5d:d0:7f:a2:a1:19:
66:05:94:5d:a7:02:98:0c:aa:c6:2e:2b:4c:df:d0:1f:89:b6:
0e:e0:98:c9:4e:60:7d:77:7e:0d:08:68:68:8b:31:0e:a4:9f:
52:7e:84:9d:82:fe:d6:03:7c:c4:e7:70:fb:7f:72:81:06:f6:
c8:b0:0e:83:7b:0b:ae:6a:15:f9:b1:13:19:07:10:f8:dd:d4:
bc:8c:dd:64:12:ee:39:5d:a2:6d:ed:20:b7:88:59:fa:3e:13:
76:b5:40:96:0c:b7:90:04:58:1f:b8:98:0b:49:11:63:89:1d:
92:66:53:3a:2a:2a:60:99:f9:29:a7:9d:91:52:f8:e7:71:92:
49:85:d7:c3:2a:4b:70:ad:d2:74:24:6a:b7:fe:52:81:2c:37:
05:6a:3a:f3
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:05:22 2025 by rpki-client