Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-J4in4YLBY0j_SiikmFhuHhjMMY.cer
File: 1-J4in4YLBY0j_SiikmFhuHhjMMY.cer (raw, json)
Hash identifier: xJzHZYcz4Pty+apOan+vUP9xGKrd56CJwyReP6cX4Yg=
Subject key identifier: F8:9E:22:9F:86:0B:05:8D:23:FD:28:A2:92:61:61:B8:78:63:30:C6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F7BEE21BFC041C17760485A51AB199363
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/1-J4in4YLBY0j_SiikmFhuHhjMMY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 15 May 2024 11:05:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 58092
IP: 193.102.78.0/23
IP: 194.62.20.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:7b:ee:21:bf:c0:41:c1:77:60:48:5a:51:ab:19:93:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: May 15 11:05:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f89e229f860b058d23fd28a2926161b8786330c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:fb:be:14:52:88:fd:a9:ae:8e:99:ae:c2:
2c:85:45:54:78:a9:31:54:ae:47:d4:eb:f3:4e:af:
3c:20:c7:d9:b2:1c:12:2e:ba:d8:75:f6:1d:8e:ba:
6b:f9:3b:ad:0e:bb:e2:cf:fd:c2:f8:5f:6d:0d:af:
9e:a5:25:5c:e3:6b:77:3b:3e:cb:13:12:1e:f7:bb:
12:b4:85:ad:10:b0:1a:08:45:3c:71:23:ea:70:a3:
78:43:04:b5:ea:65:1d:10:6a:50:ff:af:9b:5c:5f:
14:c9:a5:f7:cd:f8:ae:9f:a4:77:c8:4a:89:f8:d9:
a0:20:42:cd:a7:7e:d5:90:2d:2d:65:d4:f6:da:97:
88:38:e4:74:36:75:36:0f:50:ad:e9:c3:50:0c:60:
e4:81:34:53:71:11:60:d6:e2:53:1d:93:ba:ef:ac:
f5:8e:df:ee:33:48:03:29:38:32:d4:ee:23:ad:e3:
39:74:6c:c0:65:83:c6:6c:7c:b3:e1:74:f8:ec:26:
3a:02:c5:b8:42:bb:f3:d8:c2:ce:88:45:57:a3:86:
27:08:4c:96:d5:e0:df:6c:1c:1f:c3:e2:11:22:83:
dc:bb:ed:70:1a:3d:74:d4:96:3e:d6:0e:bb:16:8d:
28:55:b6:8e:df:38:de:7d:d5:71:b4:63:6a:be:5f:
28:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9E:22:9F:86:0B:05:8D:23:FD:28:A2:92:61:61:B8:78:63:30:C6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/1-J4in4YLBY0j_SiikmFhuHhjMMY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.102.78.0/23
194.62.20.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58092
Signature Algorithm: sha256WithRSAEncryption
47:6c:d0:b4:27:f5:f3:b1:1a:7b:85:62:69:e6:c6:77:4b:9f:
a2:68:ae:21:38:ae:e5:8a:27:5a:b5:8d:69:85:02:5f:63:bd:
47:94:14:13:fc:dd:d9:13:fb:2e:fb:f7:b4:9d:28:15:8a:3e:
bc:a1:07:8c:19:42:e2:c4:5b:ac:27:c9:54:6d:da:46:c2:d4:
76:1c:52:35:ce:9c:ac:e2:c5:ef:e3:a7:f8:05:82:0c:2b:6e:
cd:1c:54:e3:52:f7:88:64:02:f0:e8:9d:2b:2e:51:38:0b:15:
20:eb:dc:78:fa:5f:cd:f4:27:37:66:7a:1b:22:7e:98:5c:e2:
ba:85:08:72:02:01:65:c1:e7:14:d5:57:bc:35:3c:5f:df:cd:
2f:11:e1:25:20:7a:41:a6:68:60:f5:ce:bf:a2:75:f8:65:0d:
2b:e3:bb:66:aa:e2:b2:f3:00:47:46:6f:35:07:60:8b:b0:81:
8c:d7:5d:b3:94:5f:43:51:83:76:a8:8b:33:ce:3d:f6:73:7b:
e8:27:a1:f0:7d:97:13:c2:30:fd:6f:a1:5f:53:39:f2:b2:db:
81:50:31:0c:d0:cd:3e:cc:83:16:ad:c6:12:ee:89:89:fb:e5:
94:33:0b:30:77:73:60:83:dc:cc:bf:dd:92:06:c2:e8:b9:07:
7f:f5:68:61
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Nov 23 09:52:18 2024 by rpki-client on console-fra.rpki-client.org