Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/yJsxCB1b3QjRj7zY-r7oHE-wUUY.cer
File: yJsxCB1b3QjRj7zY-r7oHE-wUUY.cer (raw, json)
Hash identifier: 3S6/8dOKbO1tMZxYP6Ywxa4ydTo1lQkcsEamYxd0ffI=
Subject key identifier: C8:9B:31:08:1D:5B:DD:08:D1:8F:BC:D8:FA:BE:E8:1C:4F:B0:51:46
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 019420D6235BA3CA379152CED7B34886D968
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki01.hel-fi.rpki.win:44595/repo/as60900/0/C89B31081D5BDD08D18FBCD8FABEE81C4FB05146.mft
caRepository: rsync://rpki01.hel-fi.rpki.win:44595/repo/as60900/0/
Notify URL: https://rpki01.hel-fi.rpki.win/rrdp/notification.xml
Certificate not before: Wed 01 Jan 2025 07:48:12 +0000
Certificate not after: Wed 01 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 199177
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:14:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:23:5b:a3:ca:37:91:52:ce:d7:b3:48:86:d9:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 07:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c89b31081d5bdd08d18fbcd8fabee81c4fb05146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e5:23:1e:a7:34:af:04:c1:6d:75:1a:de:4a:
77:f4:71:34:f2:08:ec:aa:a3:3e:4d:0e:a2:a8:1f:
2f:58:a7:7d:d2:85:4d:1f:d6:50:46:bb:28:d4:64:
2e:bf:6f:f5:a3:5f:29:74:c5:49:b4:d8:1b:83:8f:
db:fc:c0:d5:3c:fb:85:30:c9:20:e5:2a:00:4a:6d:
b9:d2:a5:27:24:56:3f:28:61:20:63:e2:c6:f2:15:
5d:cc:7d:1a:97:b6:91:4a:20:8b:78:d8:11:e3:c5:
5f:47:53:3b:5c:eb:16:10:5c:12:e4:5a:41:4b:58:
63:73:24:e7:df:0f:28:88:87:d2:3e:d0:65:92:16:
93:c9:d8:fc:82:46:38:9c:c8:39:37:da:ec:40:88:
72:73:22:45:52:bd:1d:17:69:13:c1:d8:37:57:81:
65:ad:17:d7:cd:82:77:59:52:5c:d6:69:e0:71:04:
8d:ac:46:78:11:86:97:39:48:66:b1:8c:f4:02:72:
cb:36:ed:d0:82:2e:fd:9d:96:74:e6:50:27:7a:f8:
f4:6a:46:e1:cb:d4:68:ff:c5:e4:05:5f:27:10:c6:
06:6e:f7:97:dc:2e:00:44:bc:aa:c6:a3:1c:53:2b:
26:9a:15:55:42:29:ad:60:5b:c1:b8:c3:7d:62:b3:
72:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9B:31:08:1D:5B:DD:08:D1:8F:BC:D8:FA:BE:E8:1C:4F:B0:51:46
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki01.hel-fi.rpki.win:44595/repo/as60900/0/
RPKI Manifest - URI:rsync://rpki01.hel-fi.rpki.win:44595/repo/as60900/0/C89B31081D5BDD08D18FBCD8FABEE81C4FB05146.mft
RPKI Notify - URI:https://rpki01.hel-fi.rpki.win/rrdp/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199177
Signature Algorithm: sha256WithRSAEncryption
93:58:0b:36:00:56:04:d6:6b:73:2e:aa:21:e7:3a:c9:f9:7a:
c3:2f:14:34:f3:e4:3e:da:8e:98:1a:22:a5:e7:03:68:51:88:
49:71:ee:22:85:3f:9d:61:d2:ca:c5:ed:dd:e8:93:07:ec:c6:
c6:1c:4d:b1:18:c8:6f:b7:c4:d2:00:88:00:e3:7f:65:41:3e:
7a:00:12:2c:03:62:54:c5:73:27:cc:d6:cb:c1:7f:de:c9:b6:
f8:a6:d7:b2:4e:41:8f:d9:2f:bf:9f:be:81:0e:4a:19:6d:4f:
fc:e5:c9:b6:cc:bb:cb:c0:48:1f:67:45:a2:3c:40:49:e9:c4:
fc:77:ca:3e:31:08:ea:d9:cc:bb:2d:0b:0a:24:83:37:e0:2e:
1e:be:c1:5b:ae:c8:8f:ba:12:f2:33:33:02:04:14:d6:4b:b2:
94:78:14:01:a2:fa:74:67:e7:89:f3:03:85:a9:d8:00:51:eb:
20:be:2c:6c:58:e0:90:a7:c5:b4:b0:89:73:d9:63:2f:fc:61:
9c:4f:7f:bf:c7:ef:ec:7b:55:c1:ad:0f:ca:6f:d0:ff:8f:e7:
25:f1:6f:be:b3:9d:d3:9a:ed:06:51:6a:21:62:20:f4:1c:ff:
00:21:fd:98:d6:82:3a:d6:30:5f:82:dc:4c:9d:4f:61:f4:1b:
97:ba:21:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 03:49:27 2025 by rpki-client