Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wly3EywZ99UfAC7UrYEa7PWyD1c.cer
File: wly3EywZ99UfAC7UrYEa7PWyD1c.cer (raw, json)
Hash identifier: AS41tqfBgTyhh42MZIPTsjNROdYa2jqfAfeT2zV27k8=
Subject key identifier: C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01942444A84DB927DC71FAC820AC61229BA8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 01 Jan 2025 23:47:46 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 3245
IP: 185.143.80.0/22
IP: 192.92.129.0/24
IP: 193.68.0.0/19
IP: 193.68.96.0 -- 193.68.255.255
IP: 2a02:6a80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 08:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:a8:4d:b9:27:dc:71:fa:c8:20:ac:61:22:9b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 23:47:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c25cb7132c19f7d51f002ed4ad811aecf5b20f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:b0:e4:6c:33:34:f3:f4:00:a6:bf:27:d7:02:
96:1b:42:a8:5a:86:44:37:94:d5:f3:b8:d3:f6:d4:
d5:d0:03:88:6a:66:ad:8d:84:1f:5b:80:b8:ac:e2:
f5:e3:df:f1:7c:5f:9f:bb:03:26:95:57:fe:91:bc:
4e:de:cc:c5:b6:2d:6a:a0:73:36:d4:0c:a5:42:25:
a6:ac:49:80:e8:68:a9:31:f7:30:17:03:e9:7f:75:
c3:6f:90:8a:5c:1c:52:79:9b:0f:0d:c8:24:86:ed:
58:50:33:0c:7c:8b:e4:5d:61:c5:e2:72:03:e0:70:
40:ba:7c:f3:4c:75:e9:5c:c6:f8:aa:99:5c:85:dd:
65:86:a1:eb:eb:a4:87:36:d2:60:a6:69:cf:cc:aa:
11:eb:c5:b3:f8:99:38:e0:02:09:26:47:35:a0:45:
bd:b1:00:0b:14:86:7c:7d:06:7c:4a:3d:5a:de:2c:
1e:59:31:19:7c:47:82:d3:05:c5:bb:8a:79:f4:7f:
34:21:56:f4:21:44:8c:94:f0:a0:96:90:49:0e:50:
c1:d4:99:c5:24:70:36:dd:17:23:a6:6a:36:82:94:
ee:28:fe:ad:8f:c0:7c:ee:e7:10:43:0f:90:d7:9c:
8e:a9:c3:fd:5f:91:d2:65:23:13:e5:d8:54:6b:c2:
a5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:5C:B7:13:2C:19:F7:D5:1F:00:2E:D4:AD:81:1A:EC:F5:B2:0F:57
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/b27203-9d48-49a5-af25-49d40a13cbc2/1/wly3EywZ99UfAC7UrYEa7PWyD1c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.80.0/22
192.92.129.0/24
193.68.0.0/19
193.68.96.0-193.68.255.255
IPv6:
2a02:6a80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3245
Signature Algorithm: sha256WithRSAEncryption
61:f4:ab:22:03:f1:b7:a6:6e:7a:df:fd:29:3c:cb:dc:32:e5:
ac:36:18:1d:2f:cf:64:5c:c3:4e:94:3e:3d:b9:95:9f:6a:d1:
21:f6:04:fa:af:47:f2:8a:31:b3:e8:3b:51:f1:86:dc:d0:08:
db:f3:14:b8:cf:e8:36:8e:7d:6e:4c:3b:ff:ae:84:ab:ae:f2:
88:b3:4e:d8:6a:4f:7b:bc:37:58:ba:46:b7:df:64:18:c2:6c:
d8:d1:f5:33:cf:62:8b:28:29:57:ac:7e:9e:bb:20:9a:75:29:
b5:52:62:6f:fa:51:2a:40:c5:75:ec:16:67:eb:5c:63:75:73:
99:3a:5b:d4:e7:d2:7b:d1:d9:8c:71:5a:09:1d:78:1e:64:72:
b9:cd:7c:b3:c9:61:66:d2:9c:a4:61:29:3e:e9:58:4f:53:8a:
eb:59:0d:59:a9:1e:07:ab:13:f5:59:f6:cc:22:53:4a:53:e5:
f5:83:66:4b:5a:f5:1e:c7:df:3a:c4:85:ab:49:74:66:aa:e0:
c0:6e:2e:18:19:1d:b4:f6:6d:48:c7:43:07:9f:76:d8:eb:34:
7c:44:42:50:c6:a2:13:2a:49:f7:cf:45:b1:fd:d4:dd:e4:67:
cb:12:15:3e:e1:e9:24:29:50:69:98:4a:e2:b6:7b:eb:07:01:
14:50:4b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:26:10 2025 by rpki-client