Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fduZ9z57WCw1KJDjrVeF02efiJE.cer
File: fduZ9z57WCw1KJDjrVeF02efiJE.cer (raw, json)
Hash identifier: SL4DEGNTOkWdxONfx8dRH2xM/Dac/qViVYKsTRBo7j8=
Subject key identifier: 7D:DB:99:F7:3E:7B:58:2C:35:28:90:E3:AD:57:85:D3:67:9F:88:91
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194236A40603EB627F35BADBB820864A663
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/b64c075f-eb10-4426-bb40-3a833fe0f9fb/1/7DDB99F73E7B582C352890E3AD5785D3679F8891.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/b64c075f-eb10-4426-bb40-3a833fe0f9fb/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 19:49:13 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 210397
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:40:60:3e:b6:27:f3:5b:ad:bb:82:08:64:a6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 19:49:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ddb99f73e7b582c352890e3ad5785d3679f8891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4f:38:bd:b2:25:ab:20:56:be:39:58:21:0b:
5c:64:61:a0:9b:d0:8b:37:4b:34:cd:66:2a:e5:b0:
fd:63:25:2c:65:39:2f:c1:86:31:c6:a5:80:ac:00:
ed:78:bc:9f:1b:42:e6:26:5c:47:05:7b:91:16:9b:
b4:03:ca:92:98:dd:6a:69:64:60:52:4e:6d:73:79:
89:a9:9d:6f:88:50:33:da:34:4a:e4:c2:37:94:e3:
f7:70:eb:e1:8c:61:1d:32:97:cc:d9:b3:0b:9a:05:
cc:6b:41:63:5e:d7:12:44:71:8c:44:3a:da:45:35:
3e:47:59:45:7f:f6:56:44:70:42:99:b8:2c:63:30:
18:80:97:89:e2:a6:f6:3a:26:8d:7f:2f:1b:bc:05:
af:ef:cf:ee:08:58:8f:31:be:9d:1d:e1:3c:b3:f6:
32:90:76:5c:1c:2a:a2:71:d7:e0:82:c1:e9:d9:a5:
69:7f:3d:dc:9f:3e:99:27:d7:7e:a3:38:1c:1d:b5:
0f:64:34:5d:73:d4:6c:e9:0c:df:3a:6a:8d:93:d8:
86:3a:77:7d:4f:51:b1:3f:59:5c:73:1a:58:e3:c4:
dd:72:7a:f2:f4:ac:51:88:90:c1:55:c2:3b:14:00:
e0:5e:31:75:ab:0b:03:1f:e9:e8:e5:14:24:f6:7d:
03:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:DB:99:F7:3E:7B:58:2C:35:28:90:E3:AD:57:85:D3:67:9F:88:91
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/b64c075f-eb10-4426-bb40-3a833fe0f9fb/1
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/b64c075f-eb10-4426-bb40-3a833fe0f9fb/1/7DDB99F73E7B582C352890E3AD5785D3679F8891.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210397
Signature Algorithm: sha256WithRSAEncryption
69:c8:bb:c3:8f:71:17:0a:53:0b:dd:56:11:21:ff:07:11:f3:
7f:95:d2:0b:bd:3b:de:cf:fe:7c:f0:d4:f2:0d:52:a3:15:35:
35:24:3b:88:f3:70:a6:8e:c7:98:62:af:28:18:96:6f:66:a6:
42:08:96:4a:49:e4:2a:c4:79:06:d3:c9:5c:ca:e9:ab:bc:a7:
7e:6f:7f:56:3c:ba:ea:95:06:92:0e:33:fb:bb:04:5e:8f:a8:
6b:72:6f:a6:09:e6:5a:4a:5f:ec:5d:86:92:e2:51:c3:53:23:
74:f0:97:e1:19:b0:f1:47:25:54:2b:b2:4d:86:25:e0:eb:7b:
33:97:5e:56:94:6e:3d:1f:29:d9:fd:2a:a5:8b:cc:f9:a8:80:
7f:79:d8:56:67:19:b2:40:ed:c8:e1:c2:58:f0:35:66:20:b4:
c2:5e:f0:5e:1a:d2:28:c0:6d:01:46:14:eb:7b:9d:b8:06:1d:
16:db:dc:1e:eb:e5:49:e0:a1:55:70:90:6c:ee:00:c7:37:00:
e6:6c:e6:96:76:1f:a5:38:67:43:6a:a3:27:8f:20:b8:c8:96:
c2:75:b8:ec:2d:e0:42:ca:8a:b7:84:a4:c3:73:47:a3:e9:0f:
5b:97:22:fe:df:f2:c5:89:e7:7f:5d:3a:4b:ef:3a:cf:2a:f2:
ba:16:95:92
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgISAZQjakBgPrYn81utu4IIZKZjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMTk0OTEzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGRiOTlmNzNlN2I1ODJjMzUyODkwZTNhZDU3ODVkMzY3OWY4ODkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsU84vbIlqyBWvjlYIQtcZGGgm9CL
N0s0zWYq5bD9YyUsZTkvwYYxxqWArADteLyfG0LmJlxHBXuRFpu0A8qSmN1qaWRg
Uk5tc3mJqZ1viFAz2jRK5MI3lOP3cOvhjGEdMpfM2bMLmgXMa0FjXtcSRHGMRDra
RTU+R1lFf/ZWRHBCmbgsYzAYgJeJ4qb2OiaNfy8bvAWv78/uCFiPMb6dHeE8s/Yy
kHZcHCqicdfggsHp2aVpfz3cnz6ZJ9d+ozgcHbUPZDRdc9Rs6QzfOmqNk9iGOnd9
T1GxP1lccxpY48Tdcnry9KxRiJDBVcI7FADgXjF1qwsDH+no5RQk9n0DTQIDAQAB
o4ICmjCCApYwHQYDVR0OBBYEFH3bmfc+e1gsNSiQ461XhdNnn4iRMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggE+BggrBgEFBQcBCwSCATAwggEsMF4GCCsGAQUFBzAFhlJy
c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2I2NGMw
NzVmLWViMTAtNDQyNi1iYjQwLTNhODMzZmUwZjlmYi8xMIGLBggrBgEFBQcwCoZ/
cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iNjRj
MDc1Zi1lYjEwLTQ0MjYtYmI0MC0zYTgzM2ZlMGY5ZmIvMS83RERCOTlGNzNFN0I1
ODJDMzUyODkwRTNBRDU3ODVEMzY3OUY4ODkxLm1mdDA8BggrBgEFBQcwDYYwaHR0
cHM6Ly9ycmRwLnBhYXMucnBraS5yaXBlLm5ldC9ub3RpZmljYXRpb24ueG1sMFkG
A1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMyUUhWVjNkNW1rLmNybDAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwM13TAN
BgkqhkiG9w0BAQsFAAOCAQEAaci7w49xFwpTC91WESH/BxHzf5XSC7073s/+fPDU
8g1SoxU1NSQ7iPNwpo7HmGKvKBiWb2amQgiWSknkKsR5BtPJXMrpq7ynfm9/Vjy6
6pUGkg4z+7sEXo+oa3JvpgnmWkpf7F2GkuJRw1MjdPCX4Rmw8UclVCuyTYYl4Ot7
M5deVpRuPR8p2f0qpYvM+aiAf3nYVmcZskDtyOHCWPA1ZiC0wl7wXhrSKMBtAUYU
63uduAYdFtvcHuvlSeChVXCQbO4AxzcA5mzmlnYfpThnQ2qjJ48guMiWwnW47C3g
QsqKt4Skw3NHo+kPW5ci/t/yxYnnf106S+86zyryuhaVkg==
-----END CERTIFICATE-----
Generated at Sun Feb 2 04:03:40 2025 by rpki-client