Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bGuWjFE0NX35wri10EVd0C2jIEk.cer
File: bGuWjFE0NX35wri10EVd0C2jIEk.cer (raw, json)
Hash identifier: cjSGfCMnjpt1Xq8INzq9nm2EwpWiChq3x1fekO8huzA=
Subject key identifier: 6C:6B:96:8C:51:34:35:7D:F9:C2:B8:B5:D0:45:5D:D0:2D:A3:20:49
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B1CD256200E30A5D8D1F4D779C5B86
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1e/20f5b0-25e9-4150-82f4-d421044382d1/1/bGuWjFE0NX35wri10EVd0C2jIEk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1e/20f5b0-25e9-4150-82f4-d421044382d1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:08 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 216199
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:cd:25:62:00:e3:0a:5d:8d:1f:4d:77:9c:5b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6c6b968c5134357df9c2b8b5d0455dd02da32049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a5:e4:a4:a1:5c:f6:aa:55:3d:e2:cb:b3:c4:
5f:12:e3:8f:a3:bc:19:33:50:8f:1d:45:b6:7a:2d:
69:df:2e:8d:1e:f8:57:9b:e9:ca:1d:e5:18:62:b2:
56:52:6f:4d:a6:c1:f2:d0:dc:77:58:fe:d3:b3:e4:
53:94:57:7d:88:71:71:21:1e:ef:95:d2:58:29:82:
1a:c8:67:56:c0:72:48:93:61:5c:78:6a:13:52:3d:
68:92:5d:aa:0e:9b:c3:29:6b:f5:17:09:5e:8c:57:
ac:b8:b6:9f:ce:89:ec:24:17:cd:ee:24:6a:f9:3e:
a8:60:83:0f:0c:ad:53:27:ee:a7:37:70:e3:23:6e:
35:25:08:4e:9d:b6:69:cb:25:36:19:e3:6c:58:b0:
16:a3:f7:22:64:a6:cd:6f:27:e1:1c:a8:7e:7c:96:
ce:61:76:fd:5f:ff:14:62:33:a8:e7:5a:61:3c:cf:
90:6a:16:00:66:21:ba:b9:27:8c:d2:d8:09:b5:61:
54:2f:ff:cc:7a:dd:f9:b0:e2:90:0b:0d:e0:26:66:
27:9b:31:08:07:90:d8:68:60:8b:68:b0:85:8e:fd:
34:41:00:dd:82:ad:05:06:cf:75:03:73:89:29:1b:
64:16:76:e3:2a:7e:ce:31:47:19:61:33:bc:9a:bc:
ad:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:6B:96:8C:51:34:35:7D:F9:C2:B8:B5:D0:45:5D:D0:2D:A3:20:49
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/20f5b0-25e9-4150-82f4-d421044382d1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/20f5b0-25e9-4150-82f4-d421044382d1/1/bGuWjFE0NX35wri10EVd0C2jIEk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
216199
Signature Algorithm: sha256WithRSAEncryption
87:f9:df:da:72:3a:02:93:93:90:d9:30:ad:4d:f2:76:1b:71:
21:d9:62:9b:2a:77:c5:52:f0:87:9e:0c:14:ea:e9:c3:ee:92:
c6:04:1f:66:6d:b5:fd:11:5e:56:cf:e1:5b:a4:a5:78:dd:a6:
be:2d:57:27:6c:95:51:d6:e4:cf:f6:ec:0a:fc:4b:b7:a0:6b:
7c:d9:ba:0a:59:15:66:88:b5:6d:42:88:f9:17:3a:aa:8a:10:
64:b8:38:fa:bf:7a:b9:be:93:bc:b5:7e:ac:56:4a:d3:67:2b:
ed:52:be:1b:0d:e4:c9:c6:c6:d3:38:83:af:d6:46:01:f4:91:
81:80:d9:4a:5f:de:11:d4:4d:1d:38:4e:ad:38:56:e0:de:4e:
38:34:65:ee:8a:c2:ca:95:e7:d0:6e:35:88:05:e2:72:64:08:
69:b0:5d:89:80:ca:50:8e:66:fc:1b:02:6e:f6:dc:be:1d:ff:
b4:0e:a7:e7:20:59:8c:91:5b:85:72:b6:75:a2:05:da:80:fb:
31:8b:6a:19:e9:6e:36:cd:3b:5c:b4:7f:ad:30:15:bb:24:56:
a4:5e:59:d3:55:21:13:6d:f5:86:b7:0c:39:ff:5f:e4:48:8c:
c8:79:98:b2:1d:7b:94:07:c5:95:af:cd:2c:98:50:35:c0:77:
fa:23:59:58
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAZQhsc0lYgDjCl2NH013nFuGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTE0ODA4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzZiOTY4YzUxMzQzNTdkZjljMmI4YjVkMDQ1NWRkMDJkYTMyMDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6XkpKFc9qpVPeLLs8RfEuOPo7wZ
M1CPHUW2ei1p3y6NHvhXm+nKHeUYYrJWUm9NpsHy0Nx3WP7Ts+RTlFd9iHFxIR7v
ldJYKYIayGdWwHJIk2FceGoTUj1okl2qDpvDKWv1FwlejFesuLafzonsJBfN7iRq
+T6oYIMPDK1TJ+6nN3DjI241JQhOnbZpyyU2GeNsWLAWo/ciZKbNbyfhHKh+fJbO
YXb9X/8UYjOo51phPM+QahYAZiG6uSeM0tgJtWFUL//Met35sOKQCw3gJmYnmzEI
B5DYaGCLaLCFjv00QQDdgq0FBs91A3OJKRtkFnbjKn7OMUcZYTO8mrytnQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFGxrloxRNDV9+cK4tdBFXdAtoyBJMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFlLzIwZjVi
MC0yNWU5LTQxNTAtODJmNC1kNDIxMDQ0MzgyZDEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWUvMjBmNWIw
LTI1ZTktNDE1MC04MmY0LWQ0MjEwNDQzODJkMS8xL2JHdVdqRkUwTlgzNXdyaTEw
RVZkMEMyaklFay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwNMhzANBgkqhkiG9w0BAQsFAAOCAQEAh/nf2nI6ApOT
kNkwrU3ydhtxIdlimyp3xVLwh54MFOrpw+6SxgQfZm21/RFeVs/hW6SleN2mvi1X
J2yVUdbkz/bsCvxLt6BrfNm6ClkVZoi1bUKI+Rc6qooQZLg4+r96ub6TvLV+rFZK
02cr7VK+Gw3kycbG0ziDr9ZGAfSRgYDZSl/eEdRNHThOrThW4N5OODRl7orCypXn
0G41iAXicmQIabBdiYDKUI5m/BsCbvbcvh3/tA6n5yBZjJFbhXK2daIF2oD7MYtq
GeluNs07XLR/rTAVuyRWpF5Z01UhE231hrcMOf9f5EiMyHmYsh17lAfFla/NLJhQ
NcB3+iNZWA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:04:06 2025 by rpki-client