Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WB7MGnTPkqthnF9xASOTfOUNnEM.cer
File: WB7MGnTPkqthnF9xASOTfOUNnEM.cer (raw, json)
Hash identifier: r/mQkepHFPCykHsBSb9K2RLSpLpcTNmh3uSQhzfC4do=
Subject key identifier: 58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019423D6BF724401D4544A002D5E071D1A96
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/WB7MGnTPkqthnF9xASOTfOUNnEM.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 21:47:43 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 205296
AS: 208041
IP: 185.222.4.0/22
IP: 193.160.10.0/23
IP: 193.160.14.0/23
IP: 2a0c:8440::/29
IP: 2a0f:d180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:bf:72:44:01:d4:54:4a:00:2d:5e:07:1d:1a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 21:47:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=581ecc1a74cf92ab619c5f710123937ce50d9c43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b5:e7:51:42:07:f8:4e:dd:50:62:06:d3:9f:
10:49:52:a1:16:48:89:b4:37:2c:a1:fc:cd:83:5f:
71:8f:11:d3:56:19:74:1a:ad:11:dc:05:d2:c0:8f:
df:f4:27:93:e4:3c:7a:33:53:b1:e9:75:95:a9:73:
84:39:da:e7:c0:2f:3a:01:f9:a3:71:be:c7:a4:17:
5e:10:6b:08:69:96:e2:bf:8d:b6:94:39:2c:2c:10:
86:39:47:12:62:8f:47:28:8f:e5:e4:46:c1:9b:4a:
3d:2c:63:aa:32:df:99:2a:1c:d1:af:52:02:46:60:
ef:ee:cf:cf:c6:ab:a7:a9:82:04:68:c9:34:8c:19:
c7:a0:7a:b9:ce:73:51:d5:3e:3d:1d:c3:f4:4b:a3:
b2:f4:90:7e:be:6c:43:bd:c1:07:9e:f7:e0:c1:97:
b2:2e:22:25:10:f8:0f:83:8f:94:28:32:cc:9a:a7:
19:13:0e:0a:c8:06:e0:a0:87:32:1a:22:15:4f:a2:
ae:9d:c0:fe:7c:a9:db:06:c1:ef:82:cf:a6:00:b4:
83:1a:42:ea:a2:74:bc:20:9c:57:0e:7f:67:29:1a:
5d:b0:dc:b2:ea:f5:e7:54:79:08:54:1c:92:7d:52:
82:d8:4f:95:9a:4f:dd:26:b0:3c:af:e0:45:90:f4:
94:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1E:CC:1A:74:CF:92:AB:61:9C:5F:71:01:23:93:7C:E5:0D:9C:43
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/c71daf-dd66-41d8-b04f-da88b6bdb316/1/WB7MGnTPkqthnF9xASOTfOUNnEM.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.4.0/22
193.160.10.0/23
193.160.14.0/23
IPv6:
2a0c:8440::/29
2a0f:d180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205296
208041
Signature Algorithm: sha256WithRSAEncryption
ac:fb:17:6b:81:9e:e8:bf:0b:7e:5a:5e:27:bb:03:6f:52:17:
a7:9e:14:ad:57:f7:0d:29:d2:e3:51:8a:1a:7f:9b:90:ea:38:
f9:b9:e8:a0:83:97:46:83:18:88:c3:45:5f:15:4f:47:97:c8:
f2:1b:fe:2e:03:1d:e1:b8:17:9e:0d:25:92:3f:01:6d:f1:ad:
3c:e1:86:f4:72:12:3c:0c:33:36:85:41:79:cb:10:09:ae:a5:
fc:f5:df:a8:60:39:78:50:80:82:43:43:b7:bb:35:59:67:ef:
74:19:71:9b:77:47:88:58:5b:05:20:e1:e4:1f:73:55:75:8d:
cc:0a:51:90:af:5e:4f:82:2e:b4:29:9c:cf:cb:12:17:9f:9d:
90:c9:b2:cd:66:13:46:76:91:ee:7c:12:cb:ff:1e:f5:d4:7b:
7b:37:53:a3:d4:e4:67:67:82:f1:6b:40:67:34:dd:cc:87:d1:
91:1f:02:d7:89:96:1d:1e:ea:a4:38:06:01:a2:66:7b:8f:f1:
58:bc:d5:ff:ca:c4:ce:ef:57:e7:99:1c:9c:85:93:10:9c:3f:
a2:b6:89:44:93:ac:31:23:47:93:d4:e8:f5:eb:e0:60:9b:ca:
7e:c7:14:28:a3:27:c7:63:e4:e0:89:bf:8c:41:b4:71:bc:d3:
3f:90:4e:f1
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgISAZQj1r9yRAHUVEoALV4HHRqWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMjE0NzQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODFlY2MxYTc0Y2Y5MmFiNjE5YzVmNzEwMTIzOTM3Y2U1MGQ5YzQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbXnUUIH+E7dUGIG058QSVKhFkiJ
tDcsofzNg19xjxHTVhl0Gq0R3AXSwI/f9CeT5Dx6M1Ox6XWVqXOEOdrnwC86Afmj
cb7HpBdeEGsIaZbiv422lDksLBCGOUcSYo9HKI/l5EbBm0o9LGOqMt+ZKhzRr1IC
RmDv7s/PxqunqYIEaMk0jBnHoHq5znNR1T49HcP0S6Oy9JB+vmxDvcEHnvfgwZey
LiIlEPgPg4+UKDLMmqcZEw4KyAbgoIcyGiIVT6KuncD+fKnbBsHvgs+mALSDGkLq
onS8IJxXDn9nKRpdsNyy6vXnVHkIVBySfVKC2E+Vmk/dJrA8r+BFkPSUAwIDAQAB
o4ICxzCCAsMwHQYDVR0OBBYEFFgezBp0z5KrYZxfcQEjk3zlDZxDMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc3L2M3MWRh
Zi1kZDY2LTQxZDgtYjA0Zi1kYTg4YjZiZGIzMTYvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzcvYzcxZGFm
LWRkNjYtNDFkOC1iMDRmLWRhODhiNmJkYjMxNi8xL1dCN01HblRQa3F0aG5GOXhB
U09UZk9VTm5FTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEEGCCsGAQUF
BwEHAQH/BDIwMDAYBAIAATASAwQCud4EAwQBwaAKAwQBwaAOMBQEAgACMA4DBQMq
DIRAAwUDKg/RgDAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMDIfACAwMsqTANBgkq
hkiG9w0BAQsFAAOCAQEArPsXa4Ge6L8LflpeJ7sDb1IXp54UrVf3DSnS41GKGn+b
kOo4+bnooIOXRoMYiMNFXxVPR5fI8hv+LgMd4bgXng0lkj8BbfGtPOGG9HISPAwz
NoVBecsQCa6l/PXfqGA5eFCAgkNDt7s1WWfvdBlxm3dHiFhbBSDh5B9zVXWNzApR
kK9eT4IutCmcz8sSF5+dkMmyzWYTRnaR7nwSy/8e9dR7ezdTo9TkZ2eC8WtAZzTd
zIfRkR8C14mWHR7qpDgGAaJme4/xWLzV/8rEzu9X55kcnIWTEJw/oraJRJOsMSNH
k9To9evgYJvKfscUKKMnx2Pk4Im/jEG0cbzTP5BO8Q==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:01 2025 by rpki-client