Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer
File: 0f00NtehmnND-oANh6Aa8YPaMYs.cer (raw, json)
Hash identifier: tEO2nAdIshAs07JVHWpRp50td3za8WOozglw28cBZHo=
Subject key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7941741F47C8B2A5C2059E18583F17F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:30:20 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 199412
IP: 185.13.208.0/22
IP: 2a03:a540::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:17:41:f4:7c:8b:2a:5c:20:59:e1:85:83:f1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1fd3436d7a19a7343fa800d87a01af183da318b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a5:8a:19:58:8a:c2:60:24:b9:f2:51:da:e2:
17:60:4a:28:e3:8e:b5:d3:04:0f:0c:0d:e6:3e:b2:
8d:93:f5:6d:68:e2:4f:b5:12:61:6a:a2:cd:37:72:
29:b2:23:b2:2f:4c:dd:a4:34:0a:b2:f1:3f:b1:5a:
11:7e:b9:17:49:f0:98:9a:55:1b:e6:a3:2c:15:be:
e1:60:42:05:8d:0d:47:1c:8e:79:c7:0a:d5:e3:81:
22:ff:bd:0f:bd:ac:0b:bf:de:bf:f4:54:fa:20:0e:
47:f9:44:2d:a3:20:4d:dc:3d:08:57:fb:d5:07:46:
76:78:2d:7d:ac:ea:c2:77:61:d6:05:f5:fb:59:bd:
2e:c1:63:99:d6:db:eb:1c:03:56:b3:be:f3:8e:00:
ca:e5:3e:e6:0c:ba:70:6a:bd:18:47:9b:54:7b:42:
fc:3c:47:08:f9:d4:4b:ea:0a:62:91:cb:16:e2:27:
3a:a4:83:b6:cf:0d:42:9c:30:d6:05:88:2c:66:2c:
27:53:07:3b:6a:a4:a1:f5:41:84:d6:43:de:fe:6b:
42:ca:a6:0b:c2:20:71:93:64:8d:7d:22:c0:d2:24:
6a:9d:98:47:53:46:68:a4:ca:29:e9:e3:87:e3:55:
5b:d8:23:c5:59:37:96:be:6f:f4:fe:3b:66:8a:b2:
c2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.208.0/22
IPv6:
2a03:a540::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
199412
Signature Algorithm: sha256WithRSAEncryption
81:6f:27:8d:cd:6d:79:34:ba:47:99:58:48:f2:f7:d5:db:b3:
c8:37:e9:c1:b7:20:e6:c6:c3:e7:df:05:24:37:67:88:33:66:
3d:c5:df:81:7a:4c:6e:6c:2b:f3:00:db:fe:a9:2d:f2:d7:30:
0e:6e:a4:f7:7f:d1:c0:02:75:c1:57:ae:ea:77:ab:00:7f:a1:
0d:eb:cc:ce:c4:ed:ea:29:0a:2e:d2:66:8a:3f:5b:67:62:a5:
f0:60:5e:84:64:3a:49:49:85:27:b9:70:f2:d0:33:62:78:dd:
64:f8:7f:0d:3d:38:fd:bf:7c:d0:bc:12:d1:b8:4b:99:56:48:
81:b1:11:ef:9b:0f:4c:ba:91:e4:d6:c5:c9:5b:2c:9e:ee:31:
68:8e:af:b1:d3:45:4c:58:63:72:7c:a4:c6:49:6c:c1:94:36:
73:bf:44:e4:1a:64:ed:42:c5:2b:cd:83:6d:0c:73:78:df:2d:
bb:37:04:85:fd:34:42:4d:29:64:66:67:09:23:71:21:da:31:
e4:a7:1a:79:dd:40:07:b7:d2:fc:e8:5a:1f:4a:2e:53:6a:76:
06:95:ed:a1:f5:51:ec:6b:0d:7d:e8:d7:58:28:e0:a3:08:53:
6e:a5:7a:7d:8d:4a:d5:b2:47:6f:59:f0:c7:db:c0:9f:79:ec:
ba:4d:0c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:43:48 2024 by rpki-client on console-ams.rpki-client.org