Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WZypahnO8ifMM7NFhZaqRV0rePg.cer
File: WZypahnO8ifMM7NFhZaqRV0rePg.cer (raw, json)
Hash identifier: LB6hDtabjd6NDZEHXa/j2cuPNlAou9KrpE6o+nrsK3Y=
Subject key identifier: 59:9C:A9:6A:19:CE:F2:27:CC:33:B3:45:85:96:AA:45:5D:2B:78:F8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B200968823A35074647CE099EDD9AA
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:21 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 44733
AS: 50917
IP: 2001:678:7ec::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:00:96:88:23:a3:50:74:64:7c:e0:99:ed:d9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:21 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=599ca96a19cef227cc33b3458596aa455d2b78f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6c:af:da:fa:88:f1:bb:23:8f:f6:f7:11:c7:
ac:dd:b0:aa:5c:74:04:47:78:48:d7:a7:86:aa:70:
51:c1:d0:c3:e4:28:af:77:e0:e6:ca:e4:79:d2:f3:
f5:73:44:da:2e:76:b9:d4:3b:29:7d:f7:fc:e1:2f:
80:e7:cf:3a:89:3e:35:43:7c:73:aa:ec:1c:52:2f:
37:72:b9:7b:67:c5:35:c4:4b:52:aa:4b:73:f0:3d:
61:bb:8a:47:c2:ce:ad:53:7b:19:93:f9:88:56:56:
65:9d:90:93:0a:a2:b8:03:3d:d1:7a:c4:3b:f4:79:
68:de:3f:08:9d:c8:b0:90:bf:cf:a6:ca:35:86:0e:
64:29:15:03:7b:35:4c:2c:77:97:2a:a8:1a:59:63:
a9:99:f0:56:4e:53:7c:72:48:55:3e:a8:f6:59:4b:
a8:4c:0a:e9:95:29:f7:d2:af:0a:3f:c2:ee:db:46:
fc:35:db:0c:5f:ca:c9:5f:d8:47:e8:75:e3:01:b5:
0f:4b:7d:6c:f4:12:3e:36:eb:a7:58:ec:b5:18:ab:
80:be:c3:8f:36:fe:86:10:8e:6e:ca:0c:b2:de:67:
51:f5:c8:b2:bb:4a:2a:37:09:c4:c8:33:3b:97:32:
13:fd:ff:ea:1c:87:c8:e3:7e:1c:40:4a:5a:a0:26:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9C:A9:6A:19:CE:F2:27:CC:33:B3:45:85:96:AA:45:5D:2B:78:F8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:7ec::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44733
50917
Signature Algorithm: sha256WithRSAEncryption
89:98:c7:47:94:24:5c:43:5f:21:16:a6:82:83:b8:66:6e:ae:
60:7c:6c:bb:14:c2:24:5a:fc:9e:fc:57:ed:45:ec:9b:cd:93:
e5:02:26:86:cd:5a:58:ca:8d:57:bf:a4:a2:17:62:ba:da:9e:
90:de:26:cf:c6:2c:fc:67:d1:92:f9:92:5a:5b:64:4a:a9:5c:
74:79:39:a2:91:b1:56:02:4a:5a:b0:62:a2:9a:a4:28:cb:cf:
c6:80:14:38:ad:8c:1e:3b:37:c6:4b:cf:22:48:4e:fe:33:0b:
7d:d1:5e:e4:37:f8:95:f8:c8:73:4d:ca:ad:0c:a5:09:81:b8:
7d:1d:5d:c3:33:e8:7a:99:bf:16:16:03:77:82:d6:99:0c:48:
d8:4f:0d:a2:99:9e:3b:64:32:d1:5f:e3:91:b2:f1:32:15:29:
5b:f1:c0:3c:07:60:b9:bb:c5:36:9b:5c:1a:64:c9:48:d3:e6:
df:1b:10:a8:f8:67:71:05:23:71:44:c9:7b:a7:ec:8d:0a:07:
6b:b6:fa:03:d4:ef:3b:ad:c4:25:88:94:22:0b:6d:77:7a:0a:
96:fa:70:ee:44:35:17:44:50:70:75:44:0b:c9:af:ca:24:8d:
7b:5b:a9:58:70:93:41:c3:ae:89:cd:1f:51:38:5b:b0:84:0e:
55:ed:cf:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:44:22 2025 by rpki-client