Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.cer
File: Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.cer (raw, json)
Hash identifier: t/XmoQ2suUIK90eIi66QNY6FWH6c0mZNIVsoJK1SpWM=
Subject key identifier: 5A:0E:48:8B:B0:9D:28:73:D6:62:E2:84:6A:22:88:A4:25:DE:D9:46
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194424632005694E7EF1F2C6E52948CE33C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 07 Jan 2025 19:38:04 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 6812
AS: 200946
IP: 2a00:60e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:42:46:32:00:56:94:e7:ef:1f:2c:6e:52:94:8c:e3:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 7 19:38:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5a0e488bb09d2873d662e2846a2288a425ded946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:5e:d1:5e:0d:4b:1d:38:12:e9:82:f4:9f:3c:
58:9b:3c:85:9d:cd:1d:fe:55:0d:7c:ff:83:5f:9c:
23:8f:b6:dd:8c:93:af:b7:4c:d9:b4:4f:de:65:80:
02:07:8d:1d:0f:80:05:55:76:90:73:7d:ec:8e:11:
1f:b9:75:e0:49:78:46:a0:8f:70:0b:2b:2f:a8:8d:
1e:fe:5f:41:99:4a:74:00:e8:fa:5e:e8:1c:07:27:
f5:dc:98:19:4e:2b:03:80:a0:5f:05:83:c4:30:2b:
a2:43:09:e4:c8:bd:26:e0:4b:49:ec:1c:dc:7e:60:
9a:57:47:c5:b2:04:3b:ac:a7:10:6a:b9:46:56:7f:
20:1d:c1:27:b8:da:4d:f9:79:f9:73:c0:3e:2e:da:
13:2f:b6:f0:74:de:f7:31:91:0a:04:4c:a1:cb:5e:
76:55:a3:f9:b9:d2:32:1c:b6:fc:97:3a:0a:38:64:
4a:d0:77:4f:3d:c2:fd:b9:5d:fa:45:e0:2c:ec:c8:
a8:31:d6:95:0d:28:bf:f5:c7:cc:26:42:69:1e:eb:
72:e0:2e:c5:8b:5a:ab:e7:70:02:e0:22:be:69:0a:
50:77:35:f4:b0:6c:6a:69:cf:b5:20:cc:50:7f:97:
37:8e:d9:7d:8a:04:7b:39:6c:17:3a:54:0a:96:e4:
d7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:0E:48:8B:B0:9D:28:73:D6:62:E2:84:6A:22:88:A4:25:DE:D9:46
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/11cc2a-ad66-4d2a-9e30-1f59bc7287cd/1/Wg5Ii7CdKHPWYuKEaiKIpCXe2UY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:60e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6812
200946
Signature Algorithm: sha256WithRSAEncryption
9e:6a:24:65:79:45:66:9f:e8:ea:81:67:de:e0:33:e4:49:7d:
4e:bc:ac:91:c1:be:6c:29:2a:da:e2:9e:8c:4e:25:b7:77:0b:
c7:d6:88:11:d3:25:cc:9e:73:cf:76:0f:66:c1:53:d9:a2:59:
3c:83:80:db:34:8f:e1:99:cc:e3:ce:dd:c4:fe:0c:68:1d:cf:
39:21:1b:21:1e:fb:d7:2a:4e:2f:b2:62:99:64:47:4c:a6:bf:
0b:b4:78:b0:2a:cb:c1:3c:43:cf:e9:94:15:03:af:cf:ec:93:
75:0c:da:1c:75:53:c0:66:9f:0a:d6:b3:52:eb:33:83:19:1f:
75:3a:ba:74:d8:4e:16:f5:46:78:b3:b1:bc:f6:8e:97:6e:9b:
6f:fd:26:b3:bc:cb:51:7f:9d:84:76:9a:90:48:1f:33:22:d7:
57:30:85:90:62:83:cd:9e:78:cc:ab:e9:8e:4b:0c:c1:7f:7e:
57:ad:12:ca:e8:0b:a3:73:94:82:fc:97:79:61:c7:79:75:2d:
a0:52:20:b6:61:11:1c:d6:bc:d2:28:2c:17:89:c2:a7:37:46:
f6:11:85:57:29:a3:5e:42:ac:ce:76:35:41:01:d7:30:fe:5b:
63:d7:c7:c0:1e:4c:6c:d9:a8:b9:ee:8c:89:28:e7:6d:42:8f:
d6:db:b8:73
-----BEGIN CERTIFICATE-----
MIIFmTCCBIGgAwIBAgISAZRCRjIAVpTn7x8sblKUjOM8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTA3MTkzODA0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTBlNDg4YmIwOWQyODczZDY2MmUyODQ2YTIyODhhNDI1ZGVkOTQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuV7RXg1LHTgS6YL0nzxYmzyFnc0d
/lUNfP+DX5wjj7bdjJOvt0zZtE/eZYACB40dD4AFVXaQc33sjhEfuXXgSXhGoI9w
CysvqI0e/l9BmUp0AOj6XugcByf13JgZTisDgKBfBYPEMCuiQwnkyL0m4EtJ7Bzc
fmCaV0fFsgQ7rKcQarlGVn8gHcEnuNpN+Xn5c8A+LtoTL7bwdN73MZEKBEyhy152
VaP5udIyHLb8lzoKOGRK0HdPPcL9uV36ReAs7MioMdaVDSi/9cfMJkJpHuty4C7F
i1qr53AC4CK+aQpQdzX0sGxqac+1IMxQf5c3jtl9igR7OWwXOlQKluTX0wIDAQAB
o4ICpTCCAqEwHQYDVR0OBBYEFFoOSIuwnShz1mLihGoiiKQl3tlGMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIxLzExY2My
YS1hZDY2LTRkMmEtOWUzMC0xZjU5YmM3Mjg3Y2QvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEvMTFjYzJh
LWFkNjYtNGQyYS05ZTMwLTFmNTliYzcyODdjZC8xL1dnNUlpN0NkS0hQV1l1S0Vh
aUtJcENYZTJVWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF
BwEHAQH/BBEwDzANBAIAAjAHAwUAKgBg4DAeBggrBgEFBQcBCAEB/wQPMA2gCzAJ
AgIanAIDAxDyMA0GCSqGSIb3DQEBCwUAA4IBAQCeaiRleUVmn+jqgWfe4DPkSX1O
vKyRwb5sKSra4p6MTiW3dwvH1ogR0yXMnnPPdg9mwVPZolk8g4DbNI/hmczjzt3E
/gxoHc85IRshHvvXKk4vsmKZZEdMpr8LtHiwKsvBPEPP6ZQVA6/P7JN1DNocdVPA
Zp8K1rNS6zODGR91Orp02E4W9UZ4s7G89o6Xbptv/SazvMtRf52EdpqQSB8zItdX
MIWQYoPNnnjMq+mOSwzBf35XrRLK6Aujc5SC/Jd5Ycd5dS2gUiC2YREc1rzSKCwX
icKnN0b2EYVXKaNeQqzOdjVBAdcw/ltj18fAHkxs2ai57oyJKOdtQo/W27hz
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:45:46 2025 by rpki-client