Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29OCJ0tFdmK6ctGIZXOix9zDVIY.cer
File: 29OCJ0tFdmK6ctGIZXOix9zDVIY.cer (raw, json)
Hash identifier: jAoIeeOdWwoFXKH4PQqwRoE94u9FlOgwWT2AvREjQX0=
Subject key identifier: DB:D3:82:27:4B:45:76:62:BA:72:D1:88:65:73:A2:C7:DC:C3:54:86
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B7A789A78E435187600BE31D7F259D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/29OCJ0tFdmK6ctGIZXOix9zDVIY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:29:33 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57780
IP: 91.210.153.0/24
IP: 2a06:5f80::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:a7:89:a7:8e:43:51:87:60:0b:e3:1d:7f:25:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbd382274b457662ba72d1886573a2c7dcc35486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:01:3c:ba:6a:d8:87:54:4d:12:ec:a1:80:3c:
d9:a1:23:9b:ac:3c:27:f5:98:55:9c:b7:2f:49:36:
ed:d3:f6:40:65:f6:0b:53:29:c8:8d:f6:23:3f:f2:
a6:87:4b:69:23:1a:3a:d4:42:0b:6c:f5:2d:cd:b3:
c8:9c:57:92:c4:0c:65:a6:c0:56:b0:20:b1:01:06:
a3:e5:44:81:6d:86:a4:02:a7:9c:4e:64:96:5b:74:
11:3d:cf:ed:2c:40:fb:38:b6:9f:54:70:30:80:41:
c2:4e:73:bd:58:83:ae:37:06:78:2f:96:b2:0c:4a:
39:e3:1d:f2:7d:09:b3:79:40:fe:8b:fa:3d:d7:20:
de:04:84:53:36:85:cf:af:b2:f3:12:a9:70:a0:9d:
59:3e:03:63:1e:88:ed:bc:51:b8:f1:84:d4:37:04:
26:2c:4f:e2:25:e1:f5:71:a6:12:5f:74:17:b5:90:
9e:1e:02:47:5a:a2:fa:fc:99:5e:38:6a:a0:5e:a7:
52:36:2f:25:62:86:9e:7e:87:e7:53:71:8f:e1:e6:
e3:ed:e6:37:b5:c6:06:2d:d7:ab:d6:c5:c4:5a:29:
a7:47:fa:ea:6c:0c:3d:1b:1a:88:31:ea:d7:32:ff:
43:50:d7:0e:7d:9b:b2:dc:96:d0:35:05:88:d2:b9:
f6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:D3:82:27:4B:45:76:62:BA:72:D1:88:65:73:A2:C7:DC:C3:54:86
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/29OCJ0tFdmK6ctGIZXOix9zDVIY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.153.0/24
IPv6:
2a06:5f80::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57780
Signature Algorithm: sha256WithRSAEncryption
4c:f5:62:d6:77:60:3e:bf:62:53:00:cf:4c:26:27:40:30:0b:
68:4c:43:e2:d9:b8:9a:43:ff:bf:eb:f1:69:6e:fd:0b:b9:f1:
f2:9b:a9:13:e2:af:29:46:24:a6:79:a0:e0:2a:ff:11:90:03:
11:da:e8:3b:07:97:34:94:d1:8f:a6:1a:f1:e2:44:c0:73:79:
56:7b:c9:f7:c1:b1:ad:e1:c7:15:4b:ed:6c:39:fb:d6:3b:66:
03:3c:52:33:0f:f7:9b:5b:20:6d:80:3f:13:63:89:09:43:36:
fb:b0:24:26:8d:f3:41:7b:c6:67:a1:14:f3:97:6e:1a:b3:39:
5d:5c:20:45:be:29:d3:d7:55:10:c7:c3:7b:fd:b8:14:6a:5c:
fb:23:da:28:7e:fb:85:d8:69:e1:67:3d:09:06:2d:c8:47:8f:
d0:2d:2f:65:02:d0:53:a9:79:ae:5d:3e:84:c2:35:77:32:31:
d2:9d:23:2a:a7:77:d8:75:f4:21:e4:ee:04:04:50:33:65:e6:
68:f5:6a:e5:bb:9a:6e:61:9a:dc:79:9c:fd:d6:c3:21:19:4a:
78:69:6a:1b:9d:6d:3a:37:ae:d4:d5:a0:fe:65:9f:f0:8c:65:
45:69:4a:b6:c4:f8:f0:58:1f:64:9c:e6:c8:25:24:f5:3a:44:
8e:6c:fa:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:54:35 2024 by rpki-client on console-fra.rpki-client.org