Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wR0IGGQzkDBptda7ZS-YQo9TyAg.cer
File: wR0IGGQzkDBptda7ZS-YQo9TyAg.cer (raw, json)
Hash identifier: 8rI97rXNtRF8o+qpBp7F4bMk0bVjYsmYBQS7VCV6vcc=
Subject key identifier: C1:1D:08:18:64:33:90:30:69:B5:D6:BB:65:2F:98:42:8F:53:C8:08
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194AF1C13D7A8FC399041335412E51694F1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9a/263352-8088-4f5b-a620-aeb5cd8de15d/1/wR0IGGQzkDBptda7ZS-YQo9TyAg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9a/263352-8088-4f5b-a620-aeb5cd8de15d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 28 Jan 2025 22:50:40 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 48694
AS: 196826
IP: 91.193.40.0/23
IP: 91.215.44.0 -- 91.215.46.255
IP: 195.60.64.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:af:1c:13:d7:a8:fc:39:90:41:33:54:12:e5:16:94:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 28 22:50:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c11d08186433903069b5d6bb652f98428f53c808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:dd:af:dd:df:86:53:1a:db:10:b8:bf:a1:02:
3e:a2:82:40:1d:33:a7:f8:98:00:6b:cc:c1:2d:2f:
cd:5d:f9:a3:8b:be:ad:27:2d:45:5c:c2:7a:dd:1e:
25:53:bf:07:51:13:4b:74:34:54:14:35:92:9a:28:
c2:a0:11:a1:9f:bd:f9:6a:ef:b2:70:14:20:cb:34:
3c:3f:71:09:6a:cb:9b:41:4d:a7:a1:5d:7a:97:5e:
62:a6:87:2f:43:0a:72:32:74:10:36:01:a6:69:0d:
76:4f:bd:2c:b8:30:96:7c:cd:02:91:b4:ad:fe:4d:
fd:0d:2c:dd:32:1a:aa:75:75:a4:b5:6c:d3:61:ea:
66:cc:6b:c7:5c:4d:d1:7c:d8:1d:ba:27:74:fe:b0:
5f:58:d1:00:c0:05:f3:19:84:94:34:b6:80:0d:e5:
61:16:65:23:0e:35:9f:50:17:a3:8c:b2:76:b0:a6:
02:e8:dd:a3:1b:15:63:a1:81:65:d0:7b:39:e8:21:
45:53:ab:aa:81:f7:2a:ba:69:1d:eb:a1:2e:ec:d0:
05:f8:3e:09:6d:d1:c0:ef:c1:33:be:a1:78:a5:53:
79:02:65:c0:7c:54:a6:7f:5e:9d:57:11:b7:bf:7f:
42:6e:de:ae:48:3b:e5:df:31:74:9a:44:fb:e1:d4:
65:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:1D:08:18:64:33:90:30:69:B5:D6:BB:65:2F:98:42:8F:53:C8:08
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/263352-8088-4f5b-a620-aeb5cd8de15d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/263352-8088-4f5b-a620-aeb5cd8de15d/1/wR0IGGQzkDBptda7ZS-YQo9TyAg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.40.0/23
91.215.44.0-91.215.46.255
195.60.64.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48694
196826
Signature Algorithm: sha256WithRSAEncryption
1a:d9:b4:75:9e:58:5e:44:cf:f1:6c:13:e8:f7:35:51:25:a3:
ca:01:30:bb:c6:e3:1f:d1:81:e6:b3:36:20:5c:30:26:82:4a:
68:33:18:64:0d:72:19:ab:e3:ed:a6:da:c3:ed:c0:51:71:38:
42:2f:22:a1:e7:7d:54:d3:d6:6a:41:b1:97:ac:fb:c2:f3:a4:
e3:82:d5:ca:dc:5c:99:ad:12:44:d1:36:b9:bd:7f:e6:20:69:
b0:00:ad:7b:13:72:96:9e:79:78:84:7c:f7:b5:fe:b8:87:1a:
46:d0:7a:40:36:57:89:e3:6e:2a:cf:c6:b1:49:50:18:a8:29:
cc:34:eb:01:a6:ed:58:9a:2a:74:bb:5a:15:a7:b0:aa:20:43:
cf:da:9b:32:39:f4:b7:c7:33:dd:3d:3b:e8:38:77:98:56:a2:
c1:b2:cd:5f:c2:32:61:2e:21:a4:9a:7c:e5:88:71:9c:0e:66:
55:f3:e0:67:75:81:70:fe:dd:8d:2f:cd:80:aa:7a:35:eb:72:
48:1a:4c:3b:16:b2:ae:ec:9a:1a:e9:92:fe:1c:a8:0f:54:db:
aa:03:4b:e8:35:57:b6:10:45:eb:a0:39:c9:02:02:31:0d:28:
f8:f9:23:2d:c3:e3:fe:57:0c:b4:c5:3c:67:a2:d6:b2:8f:e3:
8e:a1:48:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 04:02:31 2025 by rpki-client