Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
File: 1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer (raw, json)
Hash identifier: G2lmdGxjwA7S9m/XK5Tktp+I1qw48O7Ju/9sjzdwhMM=
Subject key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA299DE9DC93E01CC9F5F4C49CE5ED03
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 12:32:54 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60256
AS: 60423
IP: 5.145.112.0/21
IP: 185.24.252.0/22
IP: 2a04:2f00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:9d:e9:dc:93:e0:1c:c9:f5:f4:c4:9c:e5:ed:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 12:32:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ed:4a:d3:99:58:f9:84:c9:21:64:e3:47:14:
22:e7:3e:84:a2:df:9d:ad:04:61:25:ab:7a:45:27:
ce:b9:3f:5c:62:e7:b5:18:47:58:59:b0:e7:e3:fa:
1b:c7:43:73:ce:9d:8b:74:84:eb:c1:1b:0f:86:09:
8f:cf:b5:2a:f7:4e:4e:ae:b2:f6:b7:f5:0c:96:cc:
fb:ed:89:80:2c:ca:cb:4a:6a:d3:16:39:d7:28:0e:
76:85:64:6c:ec:3c:5e:21:8b:4f:38:e7:87:22:d9:
cf:25:73:18:66:fc:2b:f5:c3:cf:d8:0a:74:9e:16:
f1:46:6a:f2:7e:c8:4e:55:a8:58:7d:cc:72:6a:2b:
ca:8b:64:a6:f9:2a:99:18:e8:b7:4f:43:1d:c3:64:
5a:7d:a1:58:0a:ee:d2:7d:e7:71:10:85:85:eb:c5:
8f:5d:73:81:a3:e1:db:57:6c:22:f6:3d:09:67:94:
5c:a8:ac:f8:16:e2:81:99:10:76:05:d5:65:04:76:
74:5c:aa:33:c9:cf:86:56:4d:5c:56:9e:c9:ce:b5:
a1:e1:24:91:d0:0f:56:14:ff:7b:2b:9c:25:f0:2e:
9e:c9:91:95:2b:1f:d3:a1:d8:06:5b:8b:56:fe:1b:
3b:79:e9:c3:26:1a:aa:46:46:2f:fc:04:d3:3d:89:
36:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.112.0/21
185.24.252.0/22
IPv6:
2a04:2f00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60256
60423
Signature Algorithm: sha256WithRSAEncryption
0d:0a:5c:9c:21:a9:2a:f6:36:78:66:19:22:bf:b3:ef:79:57:
5a:bb:d4:0a:3e:96:27:d8:ce:a1:ac:c3:ee:c1:d8:c8:ca:aa:
5b:6b:5f:5e:dd:a4:40:62:98:e4:c2:57:c1:d6:bc:3c:5e:5c:
9c:e2:15:7f:89:fa:39:84:f2:05:e3:ec:3d:c3:2b:17:a7:45:
e2:b4:6e:25:c6:69:d9:2e:ce:59:8b:22:f8:35:62:3d:03:a8:
ee:ee:81:16:c2:6c:d1:e9:08:28:74:0e:82:f5:38:78:65:ad:
21:0d:7b:d1:59:22:3d:e3:ee:ca:c5:a2:75:20:7c:2f:76:52:
95:67:da:6a:cb:45:a4:78:a5:66:83:aa:8a:3f:68:a4:d5:5e:
c6:81:bc:8b:f9:7b:87:71:a4:b0:05:ee:e8:ee:fa:77:0b:72:
b0:9f:84:c9:3c:15:55:db:dc:95:03:d7:1e:85:57:f8:5f:3a:
81:34:49:bf:43:df:29:e9:09:0b:4b:ab:0b:3d:97:f5:cd:98:
74:99:ee:50:25:2b:5a:88:4d:32:1e:b7:54:3f:64:a4:a3:2e:
93:b7:16:ef:ad:8c:c4:c6:af:a9:b1:9f:d9:13:3f:71:fe:9b:
f4:7d:cf:2a:72:e8:79:0f:a3:3b:1a:d1:8e:01:03:4a:6a:ab:
96:62:d4:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:00:28 2024 by rpki-client on console-ams.rpki-client.org