Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W1t31kWP-tmE5R3zNPPo-YOCrCQ.cer
File: W1t31kWP-tmE5R3zNPPo-YOCrCQ.cer (raw, json)
Hash identifier: zxUPaSiRewNouZjQuRjflGuRYwZG2z560vO+nk1TD5E=
Subject key identifier: 5B:5B:77:D6:45:8F:FA:D9:84:E5:1D:F3:34:F3:E8:F9:83:82:AC:24
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194214388688B44229FC5F977B66374CB56
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ea/1540c1-9867-403d-8b9b-f3d9f63d5d97/1/W1t31kWP-tmE5R3zNPPo-YOCrCQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ea/1540c1-9867-403d-8b9b-f3d9f63d5d97/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 09:47:41 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 47273
IP: 139.28.40.0/22
IP: 185.15.80.0/22
IP: 185.82.248.0/22
IP: 193.239.36.0/22
IP: 2a05:9680::/29
IP: 2a09:f280::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:43:88:68:8b:44:22:9f:c5:f9:77:b6:63:74:cb:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 09:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b5b77d6458ffad984e51df334f3e8f98382ac24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:22:8b:5d:ea:32:ca:a2:9b:b5:9c:95:57:
16:80:23:a4:83:82:1b:02:91:25:97:31:36:41:11:
47:1a:af:f4:7c:07:58:bc:ea:9d:b6:be:66:30:7c:
03:bd:a3:33:2e:4e:ba:c1:df:d1:53:f6:b2:67:81:
97:e8:ad:a7:88:ab:1d:a1:54:46:ef:fd:a7:5a:ed:
b3:b4:fc:88:a6:af:19:6f:45:71:c3:00:a1:2c:4b:
dc:36:66:66:d6:c8:56:c5:59:24:3b:f8:41:39:ba:
d4:c9:1f:d1:f2:91:75:df:2d:21:67:2b:e0:43:ff:
05:ac:a7:5c:e9:37:08:62:38:83:38:55:67:23:11:
07:6a:6c:45:e7:3f:df:96:af:f0:59:a2:2f:d1:d2:
85:9c:13:c6:83:cd:67:e6:0d:3d:a2:b8:65:5b:54:
c3:28:65:e4:51:b3:09:ab:f3:c7:59:5e:a6:67:de:
cb:6b:36:a5:5a:cc:73:d4:3a:8f:1c:6a:f8:df:be:
6d:97:8e:a1:3b:ad:da:35:77:0e:66:11:3a:4a:69:
8e:b7:e3:d4:58:cc:e7:93:64:3b:5d:d4:68:b8:dc:
d4:83:a8:cc:be:40:d6:98:52:46:38:83:a5:fb:b9:
e1:ef:39:84:40:5e:a8:48:28:7a:bc:88:6b:13:7d:
d9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:5B:77:D6:45:8F:FA:D9:84:E5:1D:F3:34:F3:E8:F9:83:82:AC:24
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1540c1-9867-403d-8b9b-f3d9f63d5d97/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1540c1-9867-403d-8b9b-f3d9f63d5d97/1/W1t31kWP-tmE5R3zNPPo-YOCrCQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.40.0/22
185.15.80.0/22
185.82.248.0/22
193.239.36.0/22
IPv6:
2a05:9680::/29
2a09:f280::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
47273
Signature Algorithm: sha256WithRSAEncryption
3a:8b:c1:8d:25:98:64:f4:6a:14:6a:20:12:9d:c4:1b:35:b3:
4c:78:83:45:32:46:4d:47:89:51:c5:d2:98:6f:1f:33:0f:81:
8e:a3:e6:7b:8e:e1:b9:74:55:70:76:1e:86:8f:a1:7a:e6:0c:
89:67:15:23:83:f8:46:a4:17:71:b0:e4:9d:0a:fa:b4:a2:a7:
11:e2:dd:06:eb:82:84:2d:e2:ef:e0:f2:8b:78:83:15:60:0b:
3f:63:02:a2:4f:31:b6:44:1e:74:ee:17:9a:de:12:70:ea:c6:
2b:e2:35:f5:23:d2:ce:47:0c:58:d6:a8:b7:b6:8d:65:d4:f3:
69:2b:f1:a6:c1:fa:e4:bc:4c:12:db:16:c6:bb:38:93:49:37:
6a:4f:30:f5:f2:cd:67:48:c1:c2:cf:f9:74:a6:d5:8c:eb:e1:
e0:46:28:75:28:75:30:4a:90:e4:94:7f:b4:ae:2c:01:2c:3c:
d2:ea:3f:c2:56:8b:e7:8c:41:d6:52:30:a6:a0:c1:93:e7:aa:
91:7f:62:5d:14:40:6d:0f:a5:a4:e9:46:d4:8f:1c:c3:4a:3f:
dd:2d:99:08:13:23:6f:85:5b:52:52:3d:c6:a9:df:7e:c1:9f:
ad:7d:c5:b3:e8:db:b4:4d:2a:9d:cd:12:ba:6a:a3:9c:fb:06:
24:db:7d:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:54:50 2025 by rpki-client