Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f24xkPmWLUOuMYIfalF2_WWgDs.cer
File: 2f24xkPmWLUOuMYIfalF2_WWgDs.cer (raw, json)
Hash identifier: A53D9z/dURFdGsCaVak6ocqmILVL5fDhLkh/sdbe6cA=
Subject key identifier: D9:FD:B8:C6:43:E6:58:B5:0E:B8:C6:08:7D:A9:45:DB:F5:96:80:3B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F26FA0FB626342D4FAE44D20AB0455117
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/1/D9FDB8C643E658B50EB8C6087DA945DBF596803B.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/1/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Sun 28 Apr 2024 23:11:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215956
IP: 2001:67c:688::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Jun 2024 08:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:26:fa:0f:b6:26:34:2d:4f:ae:44:d2:0a:b0:45:51:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 28 23:11:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9fdb8c643e658b50eb8c6087da945dbf596803b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:34:0a:75:ca:ba:17:84:ff:1a:81:bc:e4:c8:
f8:51:e3:02:c3:3a:bd:bf:dc:23:62:de:d5:59:ea:
6f:cb:4d:c0:af:ed:5d:3a:65:68:61:21:c3:94:77:
6b:ef:d7:1a:eb:10:83:ea:bc:0e:e9:4a:46:de:34:
33:b9:9d:6a:3b:17:d2:97:66:72:80:16:24:58:9a:
09:ef:14:bb:e2:ec:48:f6:46:f4:c8:67:c7:68:9e:
62:59:f5:3e:46:52:9f:a9:51:90:1d:fa:15:66:64:
f5:fe:31:06:95:1e:66:1d:4a:b3:2b:47:35:ff:ef:
c0:88:de:e3:a7:91:8d:a2:a0:bd:67:fa:3b:3d:0b:
f6:6c:72:1b:e5:cd:63:fa:54:80:b5:7b:13:a5:d9:
d5:ee:8a:b8:e9:c5:13:93:d2:28:bd:6e:f5:fe:8e:
ea:12:5e:a5:b9:e3:4f:8e:7c:ed:36:4b:8c:c2:8a:
69:02:52:bc:b6:bf:a6:5d:94:e6:b7:82:68:de:9c:
b2:a9:6c:86:b7:42:f2:76:4d:30:57:d3:68:c6:99:
e3:a5:1e:99:b7:47:af:43:b8:49:d6:aa:27:c7:54:
fd:94:44:2a:16:bd:af:48:91:d0:24:db:25:4c:f2:
ed:ce:c1:fb:fc:a1:f1:72:d6:57:6c:90:6b:b2:87:
dc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FD:B8:C6:43:E6:58:B5:0E:B8:C6:08:7D:A9:45:DB:F5:96:80:3B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/1/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/fc615ebd-5c28-4334-8d2c-ec3158afdc8c/1/D9FDB8C643E658B50EB8C6087DA945DBF596803B.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:688::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215956
Signature Algorithm: sha256WithRSAEncryption
98:25:0f:50:2f:f3:dd:e5:6d:6b:60:05:b1:c2:43:2b:21:1a:
77:94:ff:31:62:ce:a9:ab:91:bc:9a:12:29:af:6b:2c:21:f5:
d7:ca:b3:dd:59:66:b2:63:13:f1:c7:44:6b:b8:34:13:73:9d:
95:41:c7:9e:d1:34:64:e7:3e:c0:c6:ff:29:ca:0b:eb:41:06:
2c:91:3e:df:54:d1:51:d8:26:6e:4b:ad:83:35:3a:4c:9b:09:
f6:94:cb:89:7f:96:1b:52:06:26:65:90:96:f9:8e:5a:01:0c:
b1:9d:39:ed:79:7f:6a:6f:31:78:5e:c1:28:55:83:87:8d:c8:
3c:79:ec:cd:04:b9:77:66:d7:05:4d:46:4e:e5:19:74:cc:99:
ee:c3:36:f0:96:4c:3d:04:9b:38:5f:22:26:72:3b:6e:8a:8b:
af:cb:03:94:0c:7a:83:3d:eb:b3:b0:b5:89:d7:71:bb:ca:c7:
aa:59:01:a9:16:d4:29:b0:d0:5e:ac:75:09:b9:67:14:e5:8a:
ad:78:37:6f:3f:b7:2c:ef:f8:0f:13:cf:44:dd:8e:48:aa:88:
ab:c6:b7:13:24:d9:b0:22:0d:d0:dc:52:99:5b:06:2a:a9:75:
83:bd:ad:d6:14:f4:23:a5:70:ba:49:b8:1e:7c:44:6a:dd:e9:
00:35:c1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 4 11:14:03 2024 by rpki-client on console-fra.rpki-client.org