Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13mWjmbtvqNy75W6or9okThWekA.cer
File: 13mWjmbtvqNy75W6or9okThWekA.cer (raw, json)
Hash identifier: jiPS4oA1Hfzp91dHmXxsGD1e5PCxKkbSIpCvYS+RnuQ=
Subject key identifier: D7:79:96:8E:66:ED:BE:A3:72:EF:95:BA:A2:BF:68:91:38:56:7A:40
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB066883F7799C828EF45DF3436FD0
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/13mWjmbtvqNy75W6or9okThWekA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205496
IP: 185.214.228.0/22
IP: 194.15.137.0/24
IP: 2001:67c:2fd8::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:06:68:83:f7:79:9c:82:8e:f4:5d:f3:43:6f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d779968e66edbea372ef95baa2bf689138567a40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:77:d9:2c:81:45:fb:ce:53:c2:ca:da:24:1f:
0d:19:3f:20:f8:5f:d8:5f:2c:ab:8f:5a:73:6f:48:
0b:ae:a2:13:07:23:81:36:36:1f:19:9b:91:f5:17:
f2:2e:50:93:d1:0f:49:00:d4:63:5c:df:bd:bb:c5:
0b:69:4c:dc:ad:4e:59:d6:53:8e:41:63:6b:ef:04:
3f:b7:57:03:7b:3b:60:1e:80:ef:e9:29:a5:ed:d4:
e9:6b:0f:92:ff:23:41:c7:86:38:76:75:5b:8b:cd:
ae:93:51:2c:82:d2:40:b5:43:c9:2a:d0:11:09:2b:
f1:91:fa:3f:8a:79:0e:69:cd:38:c6:38:da:5b:2b:
2c:ae:ba:c0:68:c7:aa:18:ee:44:b9:56:23:2f:d3:
04:56:ea:88:d9:dd:63:24:6a:2d:d6:62:97:d6:09:
fc:e0:8f:23:41:11:a2:d8:a3:03:95:fc:4a:86:4e:
11:3b:c0:e5:27:69:ba:08:4a:01:52:0d:fb:a5:5d:
2c:58:0a:9c:c2:d2:71:00:33:a4:f5:97:d6:ee:dd:
59:36:38:a9:ce:25:d8:16:b1:b8:a9:f7:29:f1:a4:
6d:e9:da:ee:51:1c:7e:5e:e7:d5:c8:ef:bd:c8:83:
51:79:d4:ef:0e:07:14:89:71:c7:b1:5a:d6:6d:39:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:79:96:8E:66:ED:BE:A3:72:EF:95:BA:A2:BF:68:91:38:56:7A:40
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/94bf5b-d38a-4c76-b01f-6e6fa39bb1ec/1/13mWjmbtvqNy75W6or9okThWekA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.228.0/22
194.15.137.0/24
IPv6:
2001:67c:2fd8::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205496
Signature Algorithm: sha256WithRSAEncryption
9e:2a:4e:21:e9:46:26:18:cf:a0:c7:ca:f9:43:dd:a1:20:39:
4f:70:91:2e:90:c6:82:76:7c:34:0f:87:ea:f7:d8:10:d9:03:
68:4b:1f:ee:1f:98:6f:2d:d8:73:81:a1:af:a5:33:de:d5:ef:
ed:d3:ac:8d:a9:5e:6f:0b:c1:4f:c1:dc:8c:61:84:71:58:9f:
38:a1:67:5e:7f:a0:5c:ba:cf:6d:de:16:4b:8a:31:09:38:09:
ac:64:0c:19:1b:62:c6:e1:81:bc:19:b1:19:57:7c:5b:68:f1:
b9:1a:b3:24:3a:db:c2:a1:4a:7d:46:1c:57:2f:a3:2e:8d:74:
84:17:50:71:6c:a6:e2:b1:2b:2d:12:03:c9:a3:ab:93:61:85:
60:bb:82:d1:f2:c7:f1:79:f0:a2:09:16:82:3a:da:b1:bc:0c:
70:87:3e:86:5c:ba:f1:a4:80:6f:bc:f6:35:cd:93:0c:a9:e9:
31:9f:d7:99:58:95:46:b3:40:66:71:a3:dd:06:49:e6:c1:6e:
cd:69:51:3c:46:08:fd:02:c8:fc:8f:ad:1c:f9:51:63:2a:c0:
b7:b7:28:60:d4:1b:64:2f:5e:44:1d:1b:69:ce:a1:c6:54:3e:
4f:8e:2d:e3:c2:63:37:68:c8:5e:fb:2d:42:1f:ec:52:6e:3d:
f7:97:9e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 16:49:07 2024 by rpki-client on console-fra.rpki-client.org