Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-Hm6qJ4hQTPM9kYPJCBq0shmcOs.cer
File: 1-Hm6qJ4hQTPM9kYPJCBq0shmcOs.cer (raw, json)
Hash identifier: w+XhddISrOzYUB/uh6ywxLfvkrtVOWF7+u6Zfttxc0w=
Subject key identifier: F8:79:BA:A8:9E:21:41:33:CC:F6:46:0F:24:20:6A:D2:C8:66:70:EB
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DEFF22272170745880D240AE29121C29C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cefab-4775-4258-b971-4fcf84c85b63/1/1-Hm6qJ4hQTPM9kYPJCBq0shmcOs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cefab-4775-4258-b971-4fcf84c85b63/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 28 Feb 2024 13:40:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 44772
IP: 185.129.56.0/22
IP: 195.28.14.0/23
IP: 2a04:8c00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:f2:22:72:17:07:45:88:0d:24:0a:e2:91:21:c2:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 28 13:40:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f879baa89e214133ccf6460f24206ad2c86670eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:c4:f7:32:3f:62:e6:14:d1:87:26:eb:5c:
5e:d8:c6:5c:b2:bc:20:66:a0:e5:cf:14:3e:df:d5:
0b:e0:cc:c2:36:37:aa:8a:f2:cb:d7:ac:b5:e9:cc:
68:43:9c:c6:51:b9:19:28:61:1a:7c:cd:02:45:c2:
ad:5b:29:ee:03:75:38:ef:81:36:fd:e7:15:bf:5e:
96:e3:b9:d9:96:bd:d9:b7:19:13:a1:6f:2d:e0:cf:
a5:15:81:e1:19:84:a7:95:17:17:eb:16:c3:12:17:
6e:45:61:33:c1:11:6e:fb:66:f0:43:33:19:d3:ee:
fa:60:d8:21:50:3b:9c:10:e6:d5:1a:0b:1f:82:1d:
fe:c5:70:7c:75:d5:85:f4:18:4a:28:b3:f5:a6:20:
a6:13:c3:4e:34:05:79:05:be:66:4b:c9:7f:aa:da:
8d:89:59:4c:0d:aa:18:37:fe:e9:97:d4:4b:97:19:
22:2c:e9:70:04:37:28:33:71:08:ac:89:81:6a:60:
68:f7:bd:9d:4a:85:f1:3f:9d:c9:58:52:ec:67:c4:
66:26:be:61:cd:9e:23:0a:79:fd:10:a3:30:8f:2e:
c7:45:7f:21:c3:45:20:81:2f:bd:7e:a2:95:a1:f9:
9a:3b:2a:29:1f:4a:13:42:99:fb:3f:f2:57:4f:d9:
d6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:79:BA:A8:9E:21:41:33:CC:F6:46:0F:24:20:6A:D2:C8:66:70:EB
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cefab-4775-4258-b971-4fcf84c85b63/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cefab-4775-4258-b971-4fcf84c85b63/1/1-Hm6qJ4hQTPM9kYPJCBq0shmcOs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.56.0/22
195.28.14.0/23
IPv6:
2a04:8c00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
44772
Signature Algorithm: sha256WithRSAEncryption
a2:a6:97:be:f9:b1:a2:9f:7c:18:fb:71:61:e2:b1:7d:1f:99:
09:68:8c:d5:b3:ae:83:ba:3b:1f:27:e0:7b:dd:53:cc:73:9d:
8f:ee:20:70:67:1e:1e:eb:19:5d:89:21:27:f0:8e:8b:a3:12:
2e:cb:44:59:ba:c4:d3:56:7f:80:1d:a2:da:c4:d1:2b:d8:bf:
d5:da:30:aa:79:77:ba:52:aa:d6:6c:5d:99:2a:b1:3d:7c:0c:
43:29:5b:b8:75:7e:6e:6d:52:ab:9a:d0:f1:d0:00:7f:41:f6:
14:20:42:c1:3a:49:a6:b5:0e:d3:6b:44:91:f6:d5:03:ad:81:
9f:3b:c7:a3:88:a5:72:d7:61:e2:f1:32:bd:8f:ce:c5:86:56:
ea:2c:dc:c5:10:70:48:a2:8b:0e:fb:71:b7:81:e4:59:72:a1:
b0:36:65:17:76:25:69:7f:22:6e:97:84:55:8d:0a:a8:59:9d:
54:65:fb:fb:e4:a6:7b:89:83:fe:4d:f7:3c:8b:66:8a:e9:96:
7d:a5:82:09:fb:3e:05:a1:4d:35:90:61:21:e4:d4:bc:86:f5:
95:e2:4c:9d:75:c7:3b:51:9c:ef:1f:80:eb:10:80:c9:52:07:
ed:f8:67:4b:a7:1c:32:27:ec:2d:8b:f7:e3:3b:ca:a4:77:37:
ce:25:56:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:13:02 2024 by rpki-client on console-ams.rpki-client.org