Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WgLKgbnwqXE7CZaH3IFVHEXj-Pw.cer
File: WgLKgbnwqXE7CZaH3IFVHEXj-Pw.cer (raw, json)
Hash identifier: tpvuAaA0HSsIoJVwtWKn0haSqeLCLR4kFpvOF2RCHBM=
Subject key identifier: 5A:02:CA:81:B9:F0:A9:71:3B:09:96:87:DC:81:55:1C:45:E3:F8:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DAD112FDCE440AB42F1C7E1D44E5B6F12
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/2eed24-0dff-4400-a57c-459ddc631bcc/1/WgLKgbnwqXE7CZaH3IFVHEXj-Pw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/2eed24-0dff-4400-a57c-459ddc631bcc/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 15 Feb 2024 14:00:01 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215797
IP: 141.30.0.0/16
IP: 141.76.0.0/16
IP: 2a13:dd80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ad:11:2f:dc:e4:40:ab:42:f1:c7:e1:d4:4e:5b:6f:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 15 14:00:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a02ca81b9f0a9713b099687dc81551c45e3f8fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:cb:ca:20:2e:24:5c:02:e4:0c:e9:b9:a0:72:
aa:d6:52:39:f6:8d:5b:a0:e9:e7:63:ed:04:96:33:
43:a5:81:45:1f:22:ca:68:65:26:be:a0:61:1f:e1:
3b:92:9a:5b:03:9e:6f:71:4c:26:d2:18:94:68:53:
d6:57:f9:06:5b:79:20:ee:f5:f0:e7:51:30:17:58:
67:b6:db:83:8f:ed:b1:72:31:79:2d:50:06:91:7c:
94:10:c4:36:93:6a:3b:80:04:cd:69:af:30:1e:f6:
21:90:d7:0d:79:15:24:24:33:15:22:4a:a4:57:e3:
c7:1e:6a:9d:f1:0b:97:8a:73:a0:90:34:d4:56:69:
e3:5d:ea:ef:d9:a4:f6:74:4e:c5:db:0d:2d:0d:5e:
82:50:25:58:77:d9:f1:77:01:9e:a4:e1:05:73:33:
7a:74:1c:6e:ca:be:55:1a:9e:c1:47:f6:c5:e7:cd:
9c:0f:19:1a:36:ed:0a:a9:9e:d3:82:ce:aa:9b:82:
d6:d4:b4:86:e1:2e:0e:f1:bc:f7:83:e0:9a:41:7e:
ee:8b:6f:c5:aa:37:a7:53:8f:a9:d7:85:37:1f:79:
72:d1:d0:31:40:6d:b8:40:f2:06:9c:47:09:60:47:
c9:21:c3:7c:0d:a6:55:5b:93:5a:9a:f6:64:c8:57:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:02:CA:81:B9:F0:A9:71:3B:09:96:87:DC:81:55:1C:45:E3:F8:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/2eed24-0dff-4400-a57c-459ddc631bcc/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/2eed24-0dff-4400-a57c-459ddc631bcc/1/WgLKgbnwqXE7CZaH3IFVHEXj-Pw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.30.0.0/16
141.76.0.0/16
IPv6:
2a13:dd80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215797
Signature Algorithm: sha256WithRSAEncryption
ad:1a:78:69:3c:13:04:c6:10:8a:99:57:4f:99:2b:cc:d2:a1:
c5:a5:3e:38:5e:9e:31:b3:a2:12:a6:77:3e:af:fe:d7:60:96:
09:22:b9:45:be:ae:86:c4:56:df:ac:e3:e0:07:b2:c8:cf:e7:
6b:fc:96:86:b0:fd:75:82:e0:29:47:3e:48:6a:4d:60:9e:17:
75:45:ed:92:24:c1:84:2e:a7:82:42:9b:f7:36:71:a8:30:0d:
d4:de:81:78:51:c1:1a:2e:ee:40:37:02:a0:4a:d4:71:6b:c2:
d7:ef:31:3a:55:bd:61:08:d6:ad:da:fe:d8:4f:ce:cb:c3:80:
d3:63:ea:48:67:c1:10:20:68:a8:71:97:7a:04:05:f3:e7:43:
46:be:4e:4d:3d:f0:d7:2e:32:3d:d3:5d:7e:00:44:3e:1e:cf:
7a:4a:b9:af:07:f4:e9:85:28:d0:a9:74:8f:95:1d:8b:1a:92:
c9:d1:63:3a:5f:27:5b:08:a6:b4:95:6c:a7:1c:c9:27:45:60:
bc:70:d4:98:98:e4:9f:cc:af:41:0f:90:59:ed:c1:94:6e:02:
ed:df:4f:0f:29:b3:ef:0b:f0:3a:f5:5b:c6:6e:2d:c4:42:43:
28:bf:bb:13:fc:9b:45:11:92:f2:0e:d0:49:04:a9:21:8a:72:
52:58:c4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:17:20 2024 by rpki-client on console-ams.rpki-client.org