Certificate
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer
File: 41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.cer (raw, json)
Hash identifier: OuajOiL2m5MlOQx4FwuN/EzOSgjEcb3QUOX8BYz5I+0=
Subject key identifier: 41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 65C13899E229D8C558C4AD9E088C091920F9BF62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Manifest: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft
caRepository: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/
Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml
Certificate not before: Thu 03 Oct 2024 02:54:31 +0000
Certificate not after: Thu 02 Oct 2025 02:59:31 +0000
Subordinate resources: IP: 160.202.134.0/24
IP: 2a07:54c0::/29
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:c1:38:99:e2:29:d8:c5:58:c4:ad:9e:08:8c:09:19:20:f9:bf:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Oct 3 02:54:31 2024 GMT
Not After : Oct 2 02:59:31 2025 GMT
Subject: CN=41F657CF3564F233B977F40ACA5E4BD10E1E2F8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:28:8d:d2:ce:4b:87:a3:69:d0:c2:8d:31:
35:bb:5a:29:ff:e7:f3:e9:ea:d2:7f:8d:5a:1c:83:
a3:35:f5:57:47:22:bb:4b:a2:cc:c8:08:7c:27:f6:
71:3f:c2:c3:69:40:8b:e5:c8:76:05:4e:f6:db:78:
90:bc:30:d4:39:78:c3:91:c6:3c:30:ab:e2:38:e1:
cd:28:fe:19:3b:44:d1:e6:77:b6:2c:ac:c7:ca:51:
4a:68:91:e7:37:47:3b:1b:6f:38:44:46:2f:41:f0:
14:a2:9f:85:fa:c4:62:72:b4:3b:b3:fd:bf:2f:80:
34:9f:b2:2e:28:78:8c:c7:1e:1b:8f:fa:41:5c:7d:
2e:bb:8b:e2:4b:55:cd:42:8f:46:e1:4e:35:97:1f:
05:f1:a6:91:23:fe:56:5b:d4:20:04:d4:22:45:3e:
54:45:52:96:98:0e:0c:9a:16:eb:e0:7d:93:d0:ce:
d0:3a:e7:c5:51:5e:25:6e:84:aa:38:6f:08:a2:bd:
67:87:4b:81:05:dd:26:5e:eb:a9:ec:d2:f7:ba:ec:
da:a6:a3:67:98:00:73:3d:35:8c:c5:b4:72:e7:ab:
72:72:56:45:01:f6:6e:b4:f1:a9:5d:9e:07:4f:9c:
04:e3:88:4a:9f:7d:3d:76:87:f7:7d:2d:d8:4f:ff:
03:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
41:F6:57:CF:35:64:F2:33:B9:77:F4:0A:CA:5E:4B:D1:0E:1E:2F:8E
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/
RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/0/41F657CF3564F233B977F40ACA5E4BD10E1E2F8E.mft
RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.202.134.0/24
IPv6:
2a07:54c0::/29
Signature Algorithm: sha256WithRSAEncryption
39:94:9b:6b:b4:16:04:f2:30:df:c6:cd:7c:2f:dc:ee:28:1c:
55:86:52:64:9f:73:88:45:c0:52:26:74:08:32:b1:c2:96:cd:
2b:16:8c:77:1b:9b:0b:c0:5e:9d:d1:e2:de:59:2f:44:ff:37:
64:e0:33:2f:ac:04:0d:a9:b2:08:59:d7:03:41:6e:a0:ad:c3:
6b:c2:dc:77:49:fc:37:f9:2b:1a:51:46:1f:2b:02:ec:ba:8a:
2d:c3:07:bb:60:c0:e0:f5:47:bd:3c:78:bc:e6:28:61:7a:e9:
fe:40:b2:5a:55:a3:cd:e6:c2:40:be:d6:48:ce:2a:b2:82:64:
a5:16:be:09:33:19:cf:5a:8a:03:5f:9c:50:32:0f:71:5c:75:
1f:fa:38:75:0d:b6:4f:37:76:79:ed:a0:a1:bc:8c:f1:79:76:
c9:a4:fa:7d:dc:1d:3e:5d:86:19:35:ef:1a:84:ea:fb:e7:98:
ec:2c:b9:72:5e:08:66:67:a8:6f:35:cc:ca:67:2e:53:25:e0:
e2:38:5f:19:63:96:a3:f5:43:46:59:ec:36:0c:16:68:89:66:
15:b8:2a:b0:62:43:fa:b6:ed:08:6f:94:09:7d:c4:43:57:85:
66:99:91:82:c2:b6:9e:51:8a:3b:51:15:ce:98:7b:17:e3:dd:
98:b2:d3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 05:05:42 2024 by rpki-client on console-fra.rpki-client.org