Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wQKF31sDng8E4t_s4opaj77G6Tg.cer
File: wQKF31sDng8E4t_s4opaj77G6Tg.cer (raw, json)
Hash identifier: eGsBfLv7H8lf8ilpU5SMVtvoS/vloSEusyUcVCx4d4s=
Subject key identifier: C1:02:85:DF:5B:03:9E:0F:04:E2:DF:EC:E2:8A:5A:8F:BE:C6:E9:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942748337079DD708FDF8AE48F45A1B66E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/aebd42-07a3-4cb5-852e-52afc77ca18f/1/wQKF31sDng8E4t_s4opaj77G6Tg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/aebd42-07a3-4cb5-852e-52afc77ca18f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 13:50:30 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 62100
AS: 202987
IP: 185.127.124.0/22
IP: 193.27.232.0/22
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:33:70:79:dd:70:8f:df:8a:e4:8f:45:a1:b6:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 13:50:30 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c10285df5b039e0f04e2dfece28a5a8fbec6e938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ac:c2:7b:f7:f1:4c:7a:f9:3b:92:27:99:83:
13:26:35:24:75:4f:47:40:bd:22:92:d0:01:37:64:
25:39:26:d8:b0:6a:ea:50:a3:2f:c5:4d:58:97:06:
98:4c:c7:b2:1c:e4:75:08:84:b8:12:7b:e8:c1:3e:
c4:cb:a3:6d:08:d6:c9:0d:c5:32:de:22:39:e7:36:
b9:22:91:cc:3f:33:fa:c7:9a:57:53:60:b2:64:75:
43:29:ea:e4:74:8d:88:35:90:35:b3:5b:29:98:a2:
c7:e2:c4:eb:b0:48:7f:fb:3e:4e:50:22:00:7d:7f:
a4:3f:72:f1:9c:68:9f:3b:9a:57:52:7c:e1:28:0c:
fb:a4:ee:44:46:e3:74:cf:9e:4a:9e:41:cf:c4:b4:
db:b4:05:c4:d4:68:04:c0:c7:85:55:37:fe:a7:69:
fc:b6:b2:5e:8d:09:41:0a:99:07:25:eb:aa:62:20:
50:32:39:39:3f:b9:4a:c3:54:89:3b:80:6b:3b:c7:
d9:22:42:85:c9:a0:74:f1:d9:4d:be:42:f1:dd:10:
5c:c5:a0:1d:32:e7:fe:96:fd:bc:e5:a4:d3:f1:57:
81:3e:a7:df:96:12:1d:c4:b4:1f:71:70:f5:1c:51:
d6:66:fc:af:55:d2:b3:4f:40:ba:d6:4b:af:84:cf:
87:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:02:85:DF:5B:03:9E:0F:04:E2:DF:EC:E2:8A:5A:8F:BE:C6:E9:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/aebd42-07a3-4cb5-852e-52afc77ca18f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/aebd42-07a3-4cb5-852e-52afc77ca18f/1/wQKF31sDng8E4t_s4opaj77G6Tg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.124.0/22
193.27.232.0/22
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62100
202987
Signature Algorithm: sha256WithRSAEncryption
78:69:26:72:d8:4f:4e:51:af:22:c0:b5:ed:ea:80:45:c2:63:
57:e6:53:84:38:f3:dd:50:9f:d4:00:59:6e:37:87:60:be:7a:
80:88:19:f0:93:85:28:a2:ce:15:8f:8b:2e:dc:fe:de:09:9a:
5e:b7:ca:39:3e:46:cc:f9:2a:9b:a3:ea:10:a9:ba:d5:09:72:
c8:e3:84:59:94:e4:c9:21:e0:4b:6a:ba:c4:a8:62:3f:9a:27:
37:8b:30:e8:eb:55:8c:a6:c4:f8:d6:ea:ff:a9:28:29:97:a8:
f2:1f:84:a9:a0:be:f7:48:6b:7d:65:b3:20:17:22:5f:54:a5:
26:79:01:2b:91:d8:f2:1a:e0:1f:76:e2:5a:86:72:b0:63:f6:
0c:43:c0:8c:58:81:f8:98:32:12:30:ac:b2:e2:0c:8a:60:51:
21:6f:01:af:51:f3:f5:a0:92:32:4c:0f:1d:29:b9:67:90:2a:
f2:28:97:a9:37:56:35:7b:ac:ef:47:40:f3:6c:dd:dc:77:57:
5b:c4:e1:90:5c:eb:03:be:be:8a:6f:88:b6:32:26:ae:ae:3a:
92:88:78:af:88:a2:63:01:0d:e7:c1:42:6a:80:f4:44:4d:de:
c1:dd:2e:10:d0:18:5e:3f:30:27:9c:a1:9a:f4:b1:66:ed:60:
48:de:3c:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:49:48 2025 by rpki-client