Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25v841gk9uybXJ85qBFQzhYYEic.cer
File: 25v841gk9uybXJ85qBFQzhYYEic.cer (raw, json)
Hash identifier: ReKTfcX9Rcj7LoqR/OB6dTaPl2Rq/MgoZrQDC4VZt40=
Subject key identifier: DB:9B:FC:E3:58:24:F6:EC:9B:5C:9F:39:A8:11:50:CE:16:18:12:27
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0193720FDB33CECC9486DD9D3F074DD094DE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/25v841gk9uybXJ85qBFQzhYYEic.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 28 Nov 2024 09:17:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35765
IP: 87.247.192.0/19
IP: 195.128.104.0/21
IP: 2a03:7660::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:72:0f:db:33:ce:cc:94:86:dd:9d:3f:07:4d:d0:94:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Nov 28 09:17:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db9bfce35824f6ec9b5c9f39a81150ce16181227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:30:e8:e0:c0:d1:fe:51:52:ea:6b:d9:cd:ee:
6c:bb:1c:ba:e9:0b:ca:00:ef:7a:b0:ed:a8:e6:d8:
8d:af:1b:a7:fb:82:a6:9c:99:de:bb:70:cc:40:3d:
93:65:87:f7:70:2a:2d:5c:a4:89:aa:5c:ae:5c:66:
d1:0d:17:72:4f:6f:a6:94:71:bc:4d:7e:40:34:54:
92:bd:22:c6:bd:b3:db:a5:77:4b:98:0a:eb:e2:19:
47:67:26:aa:6d:37:4b:5c:b7:dc:d6:22:06:ba:af:
9e:73:b5:fb:d9:d0:52:3e:1e:dc:3d:bf:95:d3:65:
40:a3:3d:a6:d4:b2:d0:7b:4f:d0:e4:b9:34:35:f5:
aa:71:6f:60:4c:89:6e:08:de:b2:19:f4:66:15:e6:
3a:94:09:d6:02:b3:66:de:e1:a7:df:5d:02:45:4f:
14:eb:1e:28:56:ac:7c:b1:60:49:b1:d3:03:34:d6:
50:5d:ff:8b:c5:bc:c0:fd:57:eb:4d:5d:06:81:60:
30:fe:e3:5d:0d:de:0c:68:c8:08:fc:f3:0a:bd:24:
9c:5b:bf:57:13:71:7a:ee:72:ec:38:ba:08:f8:84:
bc:95:2d:15:30:6c:23:2c:30:8f:dc:66:56:04:17:
e8:35:c8:8c:10:83:d8:e7:e7:8a:96:2f:76:17:d6:
16:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:9B:FC:E3:58:24:F6:EC:9B:5C:9F:39:A8:11:50:CE:16:18:12:27
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/25v841gk9uybXJ85qBFQzhYYEic.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.247.192.0/19
195.128.104.0/21
IPv6:
2a03:7660::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35765
Signature Algorithm: sha256WithRSAEncryption
72:87:e2:7f:b6:f0:42:6f:e2:4c:80:fe:81:df:1e:fa:d1:e8:
98:06:16:c4:13:a9:ef:c7:84:4b:93:fa:9e:04:c7:16:56:f0:
57:9e:dd:d7:24:6e:fc:9e:91:9d:d0:a8:d6:4c:2e:99:4d:c9:
98:0f:f5:6d:29:df:8f:e7:39:bc:2d:20:34:3b:ef:e9:52:eb:
09:e7:7e:75:cb:cc:20:b0:73:e3:6e:bb:4f:9e:1b:40:06:45:
91:8f:df:b9:6c:dd:d5:36:fa:cd:2a:bc:3a:6f:51:42:8d:d2:
59:fe:48:3a:54:70:06:53:e9:a7:9d:ec:96:fe:fc:c5:6a:12:
99:10:35:7f:1b:11:b8:aa:11:4e:2a:dd:a6:81:b6:1f:c5:c5:
8d:86:09:8e:3a:74:dd:ef:2c:72:9c:e2:2e:62:e2:92:31:10:
ee:fe:ca:9c:77:9c:a6:1f:0b:e1:b7:ee:0e:22:d9:fa:a0:7f:
d9:a2:6c:15:8d:51:bc:c7:08:1c:c1:b8:0f:11:a8:89:c0:33:
51:88:32:dc:c3:1a:51:eb:18:8e:1f:a3:b7:f4:3d:26:7e:24:
07:ee:14:ad:cb:9d:96:9f:f1:56:20:b3:99:70:01:1f:2a:3a:
bd:97:d4:24:32:f1:80:68:a4:8d:34:5a:14:d7:e4:02:c5:62:
59:94:6d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:15:34 2024 by rpki-client on console-ams.rpki-client.org