Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer
File: wb-PPmCQcoiedN0PtOJ_m6xHs7A.cer (raw, json)
Hash identifier: Kv+PhV0uGvaS2w/+J3PlUUYbWhyUbxEjayoublO0cWM=
Subject key identifier: C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0194252175ADE887B6E5DD7106592DD0F504
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 03:48:57 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 34187
IP: 46.33.32.0/19
IP: 78.26.128.0/17
IP: 185.70.108.0/22
IP: 195.245.118.0/23
IP: 2a03:1240::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 16 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:75:ad:e8:87:b6:e5:dd:71:06:59:2d:d0:f5:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 03:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c1bf8f3e609072889e74dd0fb4e27f9bac47b3b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:c8:33:1c:a7:57:60:62:b3:15:92:16:03:
5d:26:e0:52:e5:33:fd:1d:ca:50:0a:27:68:61:5b:
78:e3:80:39:8b:09:9a:22:96:6a:15:59:ac:07:e1:
a2:65:7c:ea:af:77:2c:6b:90:8b:0e:a2:bf:f6:48:
bb:0e:e7:49:5d:d8:29:73:db:62:96:02:65:37:ba:
52:b6:94:b7:8a:86:e4:56:0e:77:ea:21:bd:2f:6f:
42:2f:dd:eb:7b:81:75:db:5e:17:80:91:6b:3a:6d:
3a:3f:aa:d4:09:8a:e4:62:1a:68:e6:50:29:48:06:
e2:ec:fc:12:76:d6:0e:fe:40:14:b6:a1:6d:65:5e:
42:a3:89:72:13:06:8b:a5:eb:16:5e:1e:23:24:7d:
f7:0e:60:d4:d1:9f:fa:60:d3:92:a8:d7:36:24:08:
b3:85:b3:ca:85:b4:7b:d5:f8:c3:51:6d:3e:d1:9a:
ca:c9:89:6f:3a:fa:0c:6e:c3:b2:ff:80:81:c8:1f:
cc:8f:53:88:2c:cd:84:90:51:45:f1:1f:04:35:d9:
66:0e:0d:00:57:c1:c3:b7:13:a2:6b:e9:5d:bc:fb:
f2:88:a1:e9:96:87:43:01:f7:f3:48:ca:6a:8a:46:
d3:b9:1c:cc:9f:b1:3a:70:5b:b1:58:0f:71:43:a5:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BF:8F:3E:60:90:72:88:9E:74:DD:0F:B4:E2:7F:9B:AC:47:B3:B0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a1c6c0-e754-479e-851d-0d0da0d10432/1/wb-PPmCQcoiedN0PtOJ_m6xHs7A.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.33.32.0/19
78.26.128.0/17
185.70.108.0/22
195.245.118.0/23
IPv6:
2a03:1240::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
34187
Signature Algorithm: sha256WithRSAEncryption
8a:4d:6b:ff:0c:cc:93:51:fe:34:66:98:45:0b:12:85:4f:53:
6a:91:01:de:fd:53:7a:80:be:52:f5:68:0d:ff:ee:f5:8f:18:
59:24:c8:af:7c:40:40:db:57:7c:22:23:23:eb:eb:d2:c7:6a:
7c:da:29:92:f3:e7:18:13:b1:0b:ec:c7:dc:4b:50:e1:81:c6:
ef:fa:9e:73:28:b8:08:4f:9c:ca:a4:a3:36:57:24:c7:91:89:
88:4f:8b:bb:cd:fd:37:9e:25:bd:8a:b7:7e:49:6b:89:fc:b3:
62:32:9f:32:c8:77:1d:a7:33:6d:13:15:e8:d1:cf:a4:6c:6e:
46:cb:da:a5:a3:35:4d:4d:db:c6:1e:9b:af:c5:22:08:80:58:
89:fd:33:1d:5f:46:88:c5:3d:a4:1f:e9:68:ca:50:5f:71:89:
3f:06:d1:d7:c9:55:94:10:fc:58:58:ac:73:2a:47:ad:6c:44:
cd:ac:96:c1:4c:22:25:12:e1:52:a8:c4:c1:c5:d0:1d:31:ec:
ce:6c:b0:a2:2b:c1:f2:a3:09:38:68:22:39:4e:35:b3:b0:50:
88:32:d6:73:cd:43:b1:ee:67:7e:fd:1d:1c:ff:d6:c7:c0:13:
fb:be:73:23:5c:97:ee:47:68:81:c0:0c:cb:d5:6c:5e:1c:ed:
88:ea:a7:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 11:46:54 2025 by rpki-client