Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
File: wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer (raw, json)
Hash identifier: KTMgteLa6hSYBeMZbgt2rtL2LTWy1o7blaW+jxk+fl8=
Subject key identifier: C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019421B1DD8118770D98D4796A938659F9B2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 11:48:12 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 201971
IP: 185.57.188.0/22
IP: 2a04:de40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Apr 2025 22:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:dd:81:18:77:0d:98:d4:79:6a:93:86:59:f9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 11:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fb:82:ac:bf:e0:4b:8f:00:2a:75:17:1d:d0:
d2:b9:41:84:c8:d1:e0:a8:f0:68:80:99:5f:be:5d:
b6:d7:80:ea:ef:63:8c:33:ce:95:5c:84:a7:3e:c2:
b0:b1:ce:93:4c:35:08:11:ae:e7:1f:4f:72:b6:fd:
74:71:9e:f9:fc:b4:71:8b:89:1d:77:78:32:73:10:
b9:08:8f:9a:d7:30:f2:a1:f7:f7:7a:83:72:f6:2d:
4f:83:b2:70:11:b0:69:88:87:ab:b1:1b:be:3b:09:
cf:b4:2d:9f:ad:a9:c8:52:c4:81:78:2e:ba:13:fb:
a6:91:7a:db:4b:6e:47:8e:98:d2:63:d0:f3:97:3d:
69:8f:46:40:82:e3:5b:4f:0f:19:0e:08:df:6f:87:
20:f0:b3:08:44:2c:50:99:c8:5b:75:bb:64:2e:c1:
6a:98:e7:21:cc:3a:fe:67:36:39:14:46:d6:00:23:
f7:b6:32:2c:53:8c:a0:c9:3f:fe:0f:aa:1c:34:14:
b6:49:61:f8:e1:f7:37:66:a8:b0:c8:59:3b:0f:17:
f2:5c:f2:8e:1a:aa:ab:6f:5d:cf:19:41:77:b7:f6:
bf:03:4a:40:bb:42:34:e4:28:20:17:11:ca:63:eb:
60:d5:24:9f:ea:9d:ac:c7:0e:a8:14:b6:f4:ef:f4:
08:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.188.0/22
IPv6:
2a04:de40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201971
Signature Algorithm: sha256WithRSAEncryption
a6:d3:f2:ea:a3:ab:5d:7b:6b:78:ce:cb:30:c8:1c:3e:87:fa:
34:bf:c1:44:2d:14:ba:ce:00:91:ad:ef:db:a7:b7:39:e2:02:
79:6e:f4:ca:fc:cc:9d:e4:a0:ed:f9:a3:4e:35:27:ca:5e:2d:
c4:5f:37:43:26:7c:95:67:55:50:66:37:96:30:a0:f4:32:9e:
8b:55:44:8e:ec:a4:e1:9a:44:38:4c:13:f1:2b:72:80:0e:d5:
57:0a:68:95:8d:3e:56:e1:69:eb:61:ad:d7:2b:84:43:5d:15:
2f:5d:fb:27:eb:da:4c:3e:99:26:88:28:5a:72:3e:72:b4:52:
7a:93:bc:36:62:4a:b0:25:81:95:84:78:6b:d1:7a:9d:81:4d:
63:c1:17:8e:8d:02:17:36:b6:9a:67:4e:51:8c:43:b1:04:69:
fc:aa:bf:04:60:06:04:7c:82:49:37:08:7c:5f:c8:cf:c1:01:
87:a2:0a:f0:a4:fa:da:83:c2:ab:ed:21:40:5c:97:d1:98:10:
97:03:a5:8a:83:b9:1c:ae:c1:4d:a1:27:96:1f:28:b7:2a:d0:
f3:27:6b:08:a7:7b:ed:11:ea:4a:75:42:e4:0a:db:e8:8c:8d:
86:a0:4c:a9:f5:cd:19:1f:59:02:1e:b8:06:fd:34:0e:8b:a7:
d1:0d:d6:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 06:26:19 2025 by rpki-client