Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/W4DJ0JJEcOHB4wvE7v8ZkJCnA1w.cer
File: W4DJ0JJEcOHB4wvE7v8ZkJCnA1w.cer (raw, json)
Hash identifier: HTWGU10U4pag7key8CrwHZkXDDyP4o28h/2z2F5/mTM=
Subject key identifier: 5B:80:C9:D0:92:44:70:E1:C1:E3:0B:C4:EE:FF:19:90:90:A7:03:5C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01941F8C03B0FB180C7BE383A9464B0E2764
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/29/2cb73b-de66-4b41-bf83-f21f7e8ead5c/1/W4DJ0JJEcOHB4wvE7v8ZkJCnA1w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/29/2cb73b-de66-4b41-bf83-f21f7e8ead5c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 01:47:37 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 213794
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:03:b0:fb:18:0c:7b:e3:83:a9:46:4b:0e:27:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 01:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5b80c9d0924470e1c1e30bc4eeff199090a7035c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:b0:76:21:55:01:aa:87:27:45:55:36:2b:
ab:cc:c1:b0:ee:26:60:ab:34:c8:04:9f:5f:7e:15:
ce:a0:2b:18:c7:66:e3:eb:98:99:64:d3:fe:ef:cd:
53:3f:10:d3:f6:f2:d0:4c:46:af:72:05:5d:e9:de:
f6:0e:29:61:2c:dd:65:da:8e:17:31:dc:ea:b3:c4:
fa:20:cd:58:42:01:ae:36:df:8b:12:90:4a:1d:7b:
69:18:e4:6d:74:1c:f2:b5:e8:ed:6f:78:3d:dd:53:
92:a1:77:5e:8d:0e:ea:3d:b3:e7:41:08:cd:68:38:
b3:40:a8:a6:5d:4b:2f:fe:f6:44:2c:bb:7d:36:ff:
fb:60:93:b1:45:3f:aa:ab:0f:98:81:ad:f8:20:ac:
c3:41:e5:9e:2b:78:7b:b9:c8:5e:03:f1:00:f5:be:
ba:4b:52:bd:2b:a5:f4:4c:dd:f5:6b:f8:4e:22:94:
61:c2:8f:c3:fd:44:e2:07:84:48:fb:19:a2:ec:ef:
ec:0c:e3:67:8b:ae:1a:09:12:f9:70:1b:94:c1:1a:
ed:aa:96:cd:53:9e:b9:72:69:d4:c2:3f:f7:b3:38:
e7:e7:af:a5:41:39:0d:28:c3:87:d5:08:21:72:8b:
21:62:b8:5c:06:08:0d:60:76:e8:16:b5:51:84:ab:
f7:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:80:C9:D0:92:44:70:E1:C1:E3:0B:C4:EE:FF:19:90:90:A7:03:5C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2cb73b-de66-4b41-bf83-f21f7e8ead5c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2cb73b-de66-4b41-bf83-f21f7e8ead5c/1/W4DJ0JJEcOHB4wvE7v8ZkJCnA1w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
213794
Signature Algorithm: sha256WithRSAEncryption
60:40:bd:d6:d8:12:4e:b3:1a:91:64:71:81:f1:10:29:72:0a:
c3:f6:7d:fe:6e:5e:b0:95:cd:0c:01:fb:23:d9:84:93:76:a8:
ba:ed:4e:af:ce:42:4e:43:7c:65:76:71:8d:2f:62:1f:19:f4:
4f:af:66:08:5a:86:69:7f:36:7c:40:5b:7e:c3:a4:d9:c6:90:
75:aa:c0:44:26:24:28:31:60:b5:f9:c3:d6:47:58:ef:8a:82:
e0:5e:2f:59:fc:07:a6:d2:30:de:0e:4f:ca:cb:39:04:84:0e:
39:ff:ac:0e:ac:7b:7c:3c:7b:a1:8a:38:df:a5:55:aa:2b:59:
14:6e:8a:5a:25:91:f1:fe:f8:c5:9a:88:4f:2d:46:51:d3:3f:
d4:53:d1:4d:a5:e0:c1:53:92:33:19:d1:e6:43:c0:9b:90:30:
71:17:c2:9a:8f:5e:f3:a5:cc:58:af:9f:b7:ab:e4:f5:9e:fa:
3d:63:e5:a6:0a:a2:d3:6c:05:49:d5:bb:0f:56:07:a4:15:7b:
67:6c:e9:22:40:82:40:dc:b7:0c:9a:ea:9f:3d:7c:28:8b:ba:
8e:e3:e1:10:1b:b8:26:a8:23:3a:30:6e:a5:36:12:14:d4:66:
7b:a0:14:63:39:53:96:a8:3b:27:63:d6:f1:31:da:cc:6f:b2:
0e:77:5e:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:55:08 2025 by rpki-client