Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wjZC0as50wnsXzPk6IFK3DWEgl8.cer
File: wjZC0as50wnsXzPk6IFK3DWEgl8.cer (raw, json)
Hash identifier: 2JxN16jCYx4r5qbVsD76E+516dnjMsnfU02sxkOA0Vs=
Subject key identifier: C2:36:42:D1:AB:39:D3:09:EC:5F:33:E4:E8:81:4A:DC:35:84:82:5F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019428274F1769A6E46C4D755E87556C5C40
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/wjZC0as50wnsXzPk6IFK3DWEgl8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 02 Jan 2025 17:54:12 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 39368
IP: 185.211.56.0/22
IP: 193.58.119.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 13 Apr 2025 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:4f:17:69:a6:e4:6c:4d:75:5e:87:55:6c:5c:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 17:54:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c23642d1ab39d309ec5f33e4e8814adc3584825f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:02:9e:15:32:38:f4:94:f3:4f:ad:a2:73:fc:
e0:71:a7:25:d4:1e:18:14:c4:07:c4:0a:ec:9a:14:
f9:71:de:82:ba:21:89:a0:31:74:79:da:94:b6:5b:
dc:63:ad:b9:ab:ab:f1:21:bc:c3:92:52:54:29:39:
0d:fb:57:5a:c3:57:97:01:f0:44:5e:e2:c6:75:d1:
88:29:d0:35:f9:bf:ea:f8:39:c1:a2:68:7b:ac:ec:
3c:b7:30:15:13:c1:72:64:44:f9:53:98:27:71:e2:
6b:38:fc:9d:6a:72:e0:86:12:40:3f:03:98:32:6e:
42:14:c8:c1:dc:12:6f:5c:71:4f:3c:78:03:df:9a:
b0:35:79:b6:1c:c4:e3:91:fe:80:79:bc:9a:46:59:
e9:6d:ad:f1:b2:23:b5:54:e1:d2:4e:c9:a6:17:6e:
31:5b:c1:20:6e:88:58:2e:85:52:4f:be:09:10:75:
14:d9:31:b3:77:37:97:c3:29:37:df:0c:bc:2c:b9:
f0:2a:4e:bf:02:db:b2:16:81:a5:71:ef:97:a9:be:
ee:68:22:52:8b:94:6c:85:fa:c5:be:d1:ec:7c:d8:
00:89:60:5d:85:ae:34:cd:d7:36:8c:cb:fe:c9:0b:
d7:33:b9:b0:b2:f0:36:ad:ec:87:1e:26:45:3f:60:
30:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:36:42:D1:AB:39:D3:09:EC:5F:33:E4:E8:81:4A:DC:35:84:82:5F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/e41698-e7ac-418c-b91d-2267968b652f/1/wjZC0as50wnsXzPk6IFK3DWEgl8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.56.0/22
193.58.119.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
39368
Signature Algorithm: sha256WithRSAEncryption
39:be:34:5e:76:2f:9c:b1:f2:6e:1f:86:6c:e1:c2:71:b7:9d:
93:ac:ae:aa:5a:ef:b2:b9:93:71:f2:93:2c:f1:8a:f8:da:ff:
b5:9a:aa:f1:69:d5:57:28:d1:bf:eb:ae:36:0f:0b:7b:c8:7f:
bf:f2:ad:d0:47:14:b6:17:3d:f1:cd:38:2b:dc:93:39:69:ea:
fe:23:33:f9:8f:b7:be:67:76:cb:b3:ab:b6:e6:df:d6:6c:b7:
cc:c4:0f:2d:e8:42:42:00:df:4e:ca:5f:05:b1:b5:27:b3:c1:
27:5a:73:ab:8c:10:d7:de:21:00:9d:07:e9:eb:47:39:2c:ea:
de:26:ad:c7:2a:4e:2c:e5:7d:6c:5a:b3:51:e7:d6:77:ff:48:
79:e9:e4:3c:7c:ec:17:4b:d7:5f:08:9e:d6:ca:5b:6a:5b:51:
75:da:a6:9c:93:b0:fe:37:bc:52:b0:a9:fe:6c:b7:9b:18:52:
85:34:ab:1f:fb:c0:7a:fb:d2:77:f8:a6:b0:1f:74:aa:44:66:
25:57:ac:db:10:93:4d:10:c8:d5:38:1a:18:69:2e:6c:1d:75:
a4:32:70:e7:ee:19:10:fe:53:18:a7:dd:2f:37:4e:cb:0b:8d:
7f:be:68:11:50:21:77:8f:14:3e:c8:f6:04:5e:65:7f:92:68:
39:78:c7:32
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 13 08:06:19 2025 by rpki-client