Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-c0pgMHHi89rubgKB5IFiwvK7Us.cer
File: 1-c0pgMHHi89rubgKB5IFiwvK7Us.cer (raw, json)
Hash identifier: 75MF19zaAWI7r2zmnT3RgtrYwMy9P32Sh3+cdUGtKiI=
Subject key identifier: F9:CD:29:80:C1:C7:8B:CF:6B:B9:B8:0A:07:92:05:8B:0B:CA:ED:4B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC870A1B86A9629CD25766806AFDB6E17
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/1-c0pgMHHi89rubgKB5IFiwvK7Us.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 04:31:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208040
IP: 193.161.24.0/23
IP: 193.161.28.0/23
IP: 2a0f:d280::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:a1:b8:6a:96:29:cd:25:76:68:06:af:db:6e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 04:31:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9cd2980c1c78bcf6bb9b80a0792058b0bcaed4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:f0:9d:5f:fa:74:d9:a7:19:d8:08:a4:93:00:
76:fa:06:dd:72:7c:c6:10:5e:fc:7f:2f:56:9e:41:
60:a4:0f:d3:54:33:a4:96:48:0b:3e:89:e0:db:8d:
db:ea:fe:41:a6:e5:11:f5:a6:c1:2d:54:a1:c8:1b:
5f:50:1d:cb:b6:32:98:b9:fe:ae:95:32:13:4d:29:
6b:93:88:77:ad:7a:f6:fa:a4:b6:4a:06:7d:cb:d9:
98:cd:35:dc:6e:c3:17:9d:bb:f6:89:36:46:2d:79:
6e:92:59:3c:05:82:82:b5:87:51:cf:44:6d:44:8c:
e9:c6:c2:23:05:a7:2f:12:85:19:a4:16:3e:95:60:
bd:d3:2f:bb:6d:6c:06:5b:06:5a:ce:d7:33:6f:95:
11:1a:52:2e:43:aa:9b:1c:b9:5c:8c:73:6c:ab:5f:
51:9d:cf:e6:34:60:53:d4:62:23:bf:12:d4:88:3b:
a6:e8:b9:f5:fc:1c:c8:4a:dd:db:32:9c:4b:07:51:
42:04:f5:24:7f:34:7a:df:ca:f6:67:28:39:9a:0f:
e2:53:a5:ed:ce:ab:00:93:66:af:b2:84:d8:3c:e4:
a5:ca:c1:dc:e0:66:c2:d8:52:95:10:c1:f8:e7:73:
98:ed:e0:f2:c0:08:10:3e:8e:52:c5:2d:52:b7:1c:
67:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:CD:29:80:C1:C7:8B:CF:6B:B9:B8:0A:07:92:05:8B:0B:CA:ED:4B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/1-c0pgMHHi89rubgKB5IFiwvK7Us.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.24.0/23
193.161.28.0/23
IPv6:
2a0f:d280::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208040
Signature Algorithm: sha256WithRSAEncryption
6b:b6:34:42:60:be:6d:60:30:bb:17:f9:f1:25:2c:13:ae:f9:
a5:4c:e4:08:ee:01:d7:9a:97:46:99:8d:50:29:ce:ed:60:b3:
8d:c6:26:6d:fc:a6:1e:1e:f2:e5:a1:91:b5:1a:dc:cc:c2:6c:
64:6e:e3:73:93:fb:b3:96:4c:a8:19:a4:fd:28:cc:bd:17:24:
69:bc:38:1e:10:22:1f:d0:9c:ed:b0:0f:a2:52:c2:52:43:00:
68:d2:43:2c:db:40:9b:9f:17:a8:ad:a2:67:79:3d:e9:4b:a2:
70:68:7a:4b:1c:a5:31:84:fd:f4:fe:cf:2c:82:51:1f:60:bc:
51:9a:37:06:bc:f1:3b:6e:78:38:b8:3a:a2:d2:8b:d3:6a:08:
b7:97:12:37:84:79:9f:8b:2d:0e:81:e6:5c:b6:97:4a:6d:a5:
b0:ec:6d:98:b2:0f:b3:c2:d3:18:c0:7d:66:55:64:7c:87:f8:
dd:7a:20:31:7c:62:a2:c8:70:c0:1f:5e:dc:96:d6:5f:d5:c4:
c3:1a:ea:74:57:e5:5d:e2:53:ae:e1:ad:3d:db:94:f3:f2:92:
11:a1:bb:37:fc:a8:c0:b7:ad:65:65:d7:0b:fe:d9:1a:b8:e6:
ec:00:eb:78:91:2b:86:24:ec:3e:80:49:bf:f4:09:61:6e:f2:
eb:6f:22:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:52:22 2024 by rpki-client on console-fra.rpki-client.org