Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wAVeMuzXcq4oA6TDVtd2h4fnLiA.cer
File: wAVeMuzXcq4oA6TDVtd2h4fnLiA.cer (raw, json)
Hash identifier: gwTaMoHjuwAJPvcS32OgU70s5VptPZ+abMxtF2Ix2ck=
Subject key identifier: C0:05:5E:32:EC:D7:72:AE:28:03:A4:C3:56:D7:76:87:87:E7:2E:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D5E79BCE68EF39B584AAE23CC97C09
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a1/7a0b3f-8942-4d47-86dc-7c2d409ac89a/1/wAVeMuzXcq4oA6TDVtd2h4fnLiA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a1/7a0b3f-8942-4d47-86dc-7c2d409ac89a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 07:47:56 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 211231
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d5:e7:9b:ce:68:ef:39:b5:84:aa:e2:3c:c9:7c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c0055e32ecd772ae2803a4c356d7768787e72e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c3:3a:89:35:b6:7e:d5:82:ed:21:86:08:aa:
7d:bf:e1:a4:fd:db:78:82:2f:78:0f:e4:23:b1:d5:
9b:14:5c:a4:20:a0:30:86:75:8f:d7:1d:83:b2:41:
56:5c:19:b7:06:42:95:6a:ca:99:01:e9:7f:19:86:
37:31:1e:96:51:7e:a8:9e:f1:a2:70:52:06:5b:09:
ca:e7:6e:1e:e4:25:a6:2f:42:27:7a:7a:21:56:4c:
2c:fe:5d:bc:48:8d:45:43:d2:9c:ae:7b:8a:e7:c7:
03:bb:fd:ea:32:b7:18:65:c6:72:91:9a:b3:02:7f:
fc:93:cc:18:48:ac:60:58:77:a1:55:89:fb:b8:e6:
4e:61:7e:ff:75:60:fb:3d:3c:fe:7b:71:60:3d:97:
5f:69:79:2b:a0:1c:a7:ca:4a:d9:b8:67:19:74:13:
4c:d1:8f:21:e1:d3:30:96:5d:52:14:53:bd:b0:72:
5f:2a:88:b5:b4:bc:85:5a:e4:f3:d0:db:60:0b:a3:
dc:dd:aa:17:82:82:94:8b:b8:09:04:61:1f:5f:87:
1e:57:39:47:d0:40:18:83:29:ed:20:e0:9a:e4:a3:
ee:0e:51:c7:61:42:68:36:6f:41:c6:70:09:f4:e3:
21:24:03:e0:31:26:e0:d1:36:91:a4:f9:9d:07:99:
46:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:05:5E:32:EC:D7:72:AE:28:03:A4:C3:56:D7:76:87:87:E7:2E:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/7a0b3f-8942-4d47-86dc-7c2d409ac89a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/7a0b3f-8942-4d47-86dc-7c2d409ac89a/1/wAVeMuzXcq4oA6TDVtd2h4fnLiA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211231
Signature Algorithm: sha256WithRSAEncryption
b0:14:77:55:16:29:5b:27:bd:9b:80:0b:97:b4:4b:49:0a:d9:
24:88:12:fd:a6:4a:4c:47:b5:df:dc:91:87:bc:8e:0b:4b:06:
73:cb:0c:ae:1e:c2:4a:39:81:e3:e3:cd:b5:9b:33:36:be:a6:
c4:d7:c0:bf:bc:ff:b5:f0:09:b0:50:72:a1:50:16:76:d9:3e:
67:dd:3f:65:be:ba:21:d2:7d:61:f7:cd:33:dc:ca:29:d3:26:
2e:97:72:e0:42:8f:0c:b6:cb:01:b2:0d:47:33:90:b5:7e:75:
eb:a5:43:f0:7c:4e:e5:d9:4c:06:47:ff:50:39:1b:c2:ce:a0:
a7:f1:85:ad:a7:b4:50:42:ef:94:19:39:41:f4:c0:6a:af:bf:
d0:86:c1:b2:4b:04:80:f3:0f:82:ca:69:5c:eb:dd:77:e5:37:
ee:83:89:8a:7e:8d:ca:79:10:42:42:fd:45:f5:c3:a3:03:32:
35:4d:bc:a5:33:af:3b:bd:9a:6f:23:09:30:00:53:74:a1:74:
ff:96:6a:31:a4:f8:db:9a:65:2b:bd:3f:ff:74:37:de:e5:5d:
b8:22:c2:95:d9:cb:a2:e1:96:65:98:e6:2b:77:12:e6:0b:d8:
1a:91:80:15:9c:b8:a5:f4:46:73:0f:09:ea:65:07:72:7f:24:
a4:fd:21:b4
-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgISAZQg1eebzmjvObWEquI8yXwJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjUwMTAxMDc0NzU2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMDA1NWUzMmVjZDc3MmFlMjgwM2E0YzM1NmQ3NzY4Nzg3ZTcyZTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMM6iTW2ftWC7SGGCKp9v+Gk/dt4
gi94D+QjsdWbFFykIKAwhnWP1x2DskFWXBm3BkKVasqZAel/GYY3MR6WUX6onvGi
cFIGWwnK524e5CWmL0InenohVkws/l28SI1FQ9KcrnuK58cDu/3qMrcYZcZykZqz
An/8k8wYSKxgWHehVYn7uOZOYX7/dWD7PTz+e3FgPZdfaXkroBynykrZuGcZdBNM
0Y8h4dMwll1SFFO9sHJfKoi1tLyFWuTz0NtgC6Pc3aoXgoKUi7gJBGEfX4ceVzlH
0EAYgyntIOCa5KPuDlHHYUJoNm9BxnAJ9OMhJAPgMSbg0TaRpPmdB5lGLQIDAQAB
o4ICfzCCAnswHQYDVR0OBBYEFMAFXjLs13KuKAOkw1bXdoeH5y4gMB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy
c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ExLzdhMGIz
Zi04OTQyLTRkNDctODZkYy03YzJkNDA5YWM4OWEvMS8wfAYIKwYBBQUHMAqGcHJz
eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEvN2EwYjNm
LTg5NDItNGQ0Ny04NmRjLTdjMmQ0MDlhYzg5YS8xL3dBVmVNdXpYY3E0b0E2VERW
dGQyaDRmbkxpQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l
dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr
aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy
UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF
BwEIAQH/BAswCaAHMAUCAwM5HzANBgkqhkiG9w0BAQsFAAOCAQEAsBR3VRYpWye9
m4ALl7RLSQrZJIgS/aZKTEe139yRh7yOC0sGc8sMrh7CSjmB4+PNtZszNr6mxNfA
v7z/tfAJsFByoVAWdtk+Z90/Zb66IdJ9YffNM9zKKdMmLpdy4EKPDLbLAbINRzOQ
tX5166VD8HxO5dlMBkf/UDkbws6gp/GFrae0UELvlBk5QfTAaq+/0IbBsksEgPMP
gsppXOvdd+U37oOJin6NynkQQkL9RfXDowMyNU28pTOvO72abyMJMABTdKF0/5Zq
MaT425plK70//3Q33uVduCLCldnLouGWZZjmK3cS5gvYGpGAFZy4pfRGcw8J6mUH
cn8kpP0htA==
-----END CERTIFICATE-----
Generated at Sun Feb 2 03:53:41 2025 by rpki-client