Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2eeOhm6SBNAab1LTn9hP8JALIdQ.cer
File: 2eeOhm6SBNAab1LTn9hP8JALIdQ.cer (raw, json)
Hash identifier: jBXY72c1TwJuWxrPeMSS8F7W35vDOwfXlmfCu2ldS9U=
Subject key identifier: D9:E7:8E:86:6E:92:04:D0:1A:6F:52:D3:9F:D8:4F:F0:90:0B:21:D4
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01910CF09753EDAB6B7BFB9B4A43D81EF71A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/2eeOhm6SBNAab1LTn9hP8JALIdQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 01 Aug 2024 07:56:19 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56816
IP: 91.228.16.0 -- 91.228.21.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:0c:f0:97:53:ed:ab:6b:7b:fb:9b:4a:43:d8:1e:f7:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 1 07:56:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9e78e866e9204d01a6f52d39fd84ff0900b21d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:66:4a:5e:18:81:a8:5e:28:13:9a:8a:2f:6c:
99:d5:ff:d3:e8:5b:76:95:77:fc:5f:6b:48:9d:78:
16:d7:d6:93:f3:b0:42:19:cb:18:24:d6:17:86:e7:
55:96:5b:8e:a7:eb:7e:32:e9:03:79:9e:97:72:5c:
62:f7:b6:25:95:b7:8a:15:ed:bd:a3:a2:c0:b9:ba:
a4:27:80:42:fa:cf:52:35:b4:42:42:72:8a:d3:44:
57:43:c0:0d:1e:61:a2:b0:e8:4a:60:7c:83:11:37:
b0:62:b6:3f:71:45:fc:fa:61:95:d3:70:09:6e:a6:
53:f2:5e:5e:ca:81:fc:55:88:a8:61:27:ab:ea:a9:
c0:39:91:e7:f2:08:7d:de:d3:e6:3f:28:a0:23:3c:
91:a8:3d:a8:67:0f:15:13:31:5d:97:cf:0a:8d:a8:
39:ef:7f:2b:a2:61:d7:61:d3:a6:e8:2b:bb:a7:3d:
5f:d0:7f:f7:97:7b:ca:72:15:c0:a5:f1:f4:66:b6:
ad:4d:5f:6b:26:b5:2e:8d:8a:50:96:a2:95:8b:fe:
ec:b6:77:09:67:2d:a9:b9:8d:c7:59:db:7f:16:aa:
14:8e:fb:8c:ab:bf:e1:e4:4d:4d:22:54:49:bb:8d:
ca:20:ce:1a:85:57:b8:1a:cd:43:86:ca:de:ef:8a:
3c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E7:8E:86:6E:92:04:D0:1A:6F:52:D3:9F:D8:4F:F0:90:0B:21:D4
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/32915b-9ea1-4c64-8ff1-d76d6627fb2e/1/2eeOhm6SBNAab1LTn9hP8JALIdQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.16.0-91.228.21.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56816
Signature Algorithm: sha256WithRSAEncryption
26:24:70:3e:e3:7f:95:fe:8f:8f:51:d0:25:b9:72:81:c4:27:
d9:5e:3a:9f:06:43:54:2e:26:84:b2:15:a1:17:17:a9:e0:35:
2e:4f:db:1d:71:df:e9:d8:c9:37:4b:26:3f:e8:76:d5:9b:6c:
66:b8:a9:e5:9c:17:52:9c:e0:c5:d6:fc:7f:48:4d:42:4d:1f:
df:37:86:b6:37:6a:da:db:82:bb:39:80:ee:8c:0b:b1:78:8f:
d6:4a:e3:0a:f8:e1:fd:5f:93:37:88:44:00:98:39:38:6e:27:
fc:78:5e:42:c6:29:d0:1f:40:e5:a4:d4:d2:57:83:98:ce:ef:
c9:56:a3:c8:a8:1a:28:0c:ed:c8:50:59:7f:2c:ae:b0:0c:68:
85:2b:cc:dc:3a:33:85:d0:e5:31:47:06:7c:a2:ba:fc:dd:91:
56:e8:87:b6:37:62:2e:d0:17:c8:3b:d1:d0:1b:91:6e:4f:0d:
03:d6:52:f3:35:c2:d3:2d:f4:d6:d5:6c:a7:1a:6b:43:ad:50:
cd:41:ff:97:2f:af:6e:00:d1:02:d2:22:cd:bb:fa:37:f3:d8:
07:7f:ce:0b:f6:7a:5f:78:f8:cf:9a:e1:88:74:f4:bc:92:49:
d6:f5:d7:ea:62:f2:28:af:5f:91:a7:de:48:c4:96:56:85:38:
f3:b5:32:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 16:51:29 2024 by rpki-client on console-fra.rpki-client.org