Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
File: 0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer (raw, json)
Hash identifier: //lOzJDCx2FHUM0y3DqoiRWwpC2vLsEbMlvBDa97nec=
Subject key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018EA2CA4F46DD6B908A22215E62B9124A70
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 03 Apr 2024 07:09:11 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48678
AS: 212742
IP: 45.11.96.0/22
IP: 62.106.94.0/24
IP: 79.110.234.0/24
IP: 134.255.199.0/24
IP: 149.3.171.0/24
IP: 178.211.130.0/24
IP: 188.93.141.0/24
IP: 2a0c:6d40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a2:ca:4f:46:dd:6b:90:8a:22:21:5e:62:b9:12:4a:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 3 07:09:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d04265fb11c2a220bc350718673e0704d1edadde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:21:b8:10:4c:59:a9:1d:02:b5:c6:1f:f6:23:
51:7f:e6:a1:9d:bd:02:f9:80:04:ef:fe:a5:5f:fe:
52:5e:5b:4f:f6:49:b2:10:ee:28:4f:cc:25:1d:a7:
c5:ba:84:e6:c8:cc:70:b2:2d:e0:7f:d5:38:e4:7f:
9b:af:06:26:64:46:4b:53:4e:b1:5c:4c:ec:7e:0a:
6f:c3:6b:7e:3b:f6:e1:f8:15:9b:99:3c:e2:5a:db:
7c:54:62:1e:e7:b7:e8:06:d7:95:ae:84:30:af:7c:
63:89:50:61:4c:2f:f8:67:74:1b:df:7c:1e:57:47:
30:83:1e:63:8a:b0:3a:ce:24:ee:c8:a6:50:7a:b0:
b3:1d:b3:65:3f:4b:79:34:4d:7c:7f:b2:08:6b:61:
a3:96:9d:cb:92:08:33:88:08:1f:59:b4:e4:d7:b2:
59:a3:83:e3:83:c9:64:d0:39:40:68:c9:eb:5c:b6:
41:3f:f0:55:bd:b9:dc:c9:65:8a:c9:27:18:17:f0:
9a:87:34:09:74:76:81:01:b2:a6:cb:9d:9d:eb:7e:
a0:1b:28:ff:90:7c:3a:1a:61:c0:31:ac:3f:82:b7:
99:cd:8b:15:43:89:74:93:d7:82:39:ca:84:dc:b6:
e6:4a:1f:fc:ee:31:4b:04:74:b6:50:a3:da:e0:37:
30:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.96.0/22
62.106.94.0/24
79.110.234.0/24
134.255.199.0/24
149.3.171.0/24
178.211.130.0/24
188.93.141.0/24
IPv6:
2a0c:6d40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48678
212742
Signature Algorithm: sha256WithRSAEncryption
aa:0b:0a:66:ab:83:2d:48:c8:5b:f5:a9:c9:5f:85:37:ab:88:
af:7d:06:19:41:8e:6d:0b:27:85:2c:96:cc:59:a5:93:9f:d4:
ae:f9:07:03:e5:bf:d1:ba:8b:74:c7:f7:a0:41:fb:ba:06:87:
8a:23:51:ba:3a:15:52:ab:99:11:ae:4a:c8:ad:a4:00:3d:4b:
eb:53:64:9e:ec:4c:a5:5a:44:fb:27:4b:8d:b2:57:e3:12:58:
ff:6c:ec:b6:72:62:79:b5:01:c9:f3:0e:d3:62:69:d3:df:5f:
c8:1d:74:a1:bb:76:05:05:b3:2b:02:46:2a:90:f7:83:e0:18:
fd:2d:93:14:46:f9:c4:8d:03:83:28:79:f1:27:76:26:79:29:
b5:db:30:85:aa:ea:07:08:50:d0:3d:75:0d:b6:a9:c1:3a:f3:
54:fa:2b:55:0c:e5:23:b5:be:86:3b:16:00:91:2f:0e:35:c5:
d4:7c:7f:7d:ce:cb:7b:28:29:29:0f:85:cd:89:66:81:18:78:
ed:20:fb:4d:24:83:5d:50:05:b4:c2:ad:f0:8b:f8:df:6c:37:
8c:e3:90:94:ac:91:93:30:a1:14:a0:94:43:6a:af:af:4b:0a:
89:8b:7b:50:ed:14:2d:81:f8:0f:2a:f9:f9:80:ba:c1:7e:76:
75:b4:04:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:43:14 2024 by rpki-client on console-ams.rpki-client.org