Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa24Jfn9vKDNfHkB3reiKuF5fAY.cer
File: aa24Jfn9vKDNfHkB3reiKuF5fAY.cer (raw, json)
Hash identifier: eaSVN76DGKpxOjcN8+ocxipkn8hfX4WVrTxL9Y4hQNU=
Subject key identifier: 69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAC2DB1F2F871B25FBE183920EE10D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 3262
IP: 192.148.167.0/24
IP: 194.30.0.0/17
IP: 195.16.128.0/19
IP: 212.81.128.0/17
IP: 2a03:c600::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 May 2024 22:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:c2:db:1f:2f:87:1b:25:fb:e1:83:92:0e:e1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=69adb825f9fdbca0cd7c7901deb7a22ae1797c06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:03:dd:2d:d7:74:de:69:17:e0:63:70:a7:94:
eb:fd:ef:76:e2:a6:8f:77:70:c1:91:b2:6c:d5:b0:
59:a3:32:76:80:03:dd:fd:34:52:4b:6d:a4:af:01:
24:f6:11:44:9a:87:2c:09:ba:be:1b:0f:a7:89:df:
5f:fc:9c:b4:e6:8e:c2:c8:ca:f4:f4:b6:a4:ed:f9:
be:7c:98:05:7a:e9:2e:d9:02:6f:36:52:79:7b:7b:
ac:07:34:9a:e7:d6:77:11:5f:54:ee:51:04:3e:87:
c6:f6:24:21:f4:c7:29:9c:53:34:ff:60:c5:84:21:
1d:e8:9a:bb:1f:6a:17:eb:87:7d:30:86:bd:24:f5:
ab:ce:8b:c9:d9:0b:af:ff:9f:cf:f9:f9:39:ce:f1:
cb:10:57:a7:b1:c9:7c:2a:74:38:d3:b7:f5:87:84:
ef:85:40:56:83:ba:05:fa:d1:e5:a0:01:a8:a2:46:
57:95:6d:15:f7:32:1e:92:e6:5a:45:4e:06:27:dd:
30:60:e6:27:fe:29:a3:f4:dc:b7:f9:ab:2e:ff:59:
e9:80:cc:7f:88:fb:3f:f4:e8:31:f8:c1:1b:82:16:
ef:5d:df:62:ec:cd:ee:10:a9:16:a4:2e:4c:c3:cb:
87:a8:6c:06:79:de:32:56:5c:0d:24:5c:81:23:15:
07:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:AD:B8:25:F9:FD:BC:A0:CD:7C:79:01:DE:B7:A2:2A:E1:79:7C:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/af6b7a-9a70-494e-8a90-3236267c8799/1/aa24Jfn9vKDNfHkB3reiKuF5fAY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.148.167.0/24
194.30.0.0/17
195.16.128.0/19
212.81.128.0/17
IPv6:
2a03:c600::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3262
Signature Algorithm: sha256WithRSAEncryption
1e:68:12:51:96:ef:12:86:5d:1b:8d:54:a3:8d:5d:d5:56:b7:
e6:bf:a5:43:d1:45:9f:d0:bf:08:b8:2c:7a:fd:d8:89:cc:49:
98:44:06:f9:82:9b:fd:a5:9a:55:ba:c9:85:c3:bf:0c:c7:67:
81:e3:55:b4:72:e5:cc:e3:61:7e:0c:a1:b7:cf:b5:5d:76:eb:
5e:87:78:17:01:6f:32:60:26:91:32:9e:48:90:eb:10:88:14:
e3:94:86:0f:3a:28:7e:e2:a6:ac:c2:98:43:16:9f:b5:39:40:
2c:78:65:8d:cb:e9:10:69:24:e6:be:97:bc:8d:80:ed:d5:14:
d9:79:a5:00:5a:6b:03:57:ec:71:4c:70:0e:5e:99:38:50:f7:
72:15:01:63:69:52:fd:93:ba:1a:53:76:2a:c2:4a:90:db:9a:
dc:9b:55:3c:6d:24:80:6e:87:0d:d8:c4:8c:7f:a1:e7:c0:e7:
a4:01:00:fa:60:2a:e0:c9:65:af:1d:ee:16:ed:84:24:e1:62:
3f:9a:01:2c:ac:87:71:01:88:74:e0:96:c1:26:39:ce:48:7b:
4c:0a:13:7e:c1:88:58:d8:92:48:93:ad:a5:d3:30:74:39:45:
0d:e2:02:c5:18:23:05:c4:8d:07:49:65:a6:7c:62:85:06:f7:
50:0a:df:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 23 00:29:43 2024 by rpki-client on console-fra.rpki-client.org