Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30bUnMNHZ_jQJK_yla1qky55FeA.cer
File: 30bUnMNHZ_jQJK_yla1qky55FeA.cer (raw, json)
Hash identifier: SKthJC4N0LXleUrYJioHry/v36BDoVVFrgg7ieWxMcE=
Subject key identifier: DF:46:D4:9C:C3:47:67:F8:D0:24:AF:F2:95:AD:6A:93:2E:79:15:E0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01907370C6592848867998AAA2D6512F8F1C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/30bUnMNHZ_jQJK_yla1qky55FeA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jul 2024 12:34:49 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 60557
IP: 2001:678:ce4::/48
IP: 2001:678:ce8::/48
IP: 2001:678:cec::/48
IP: 2001:678:cf0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:70:c6:59:28:48:86:79:98:aa:a2:d6:51:2f:8f:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 2 12:34:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df46d49cc34767f8d024aff295ad6a932e7915e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:00:39:59:97:06:31:7f:c5:3d:19:84:5a:d4:
65:f0:c4:dd:70:b6:66:dd:30:a2:d1:37:7b:25:84:
3f:85:bd:9e:12:9f:fb:e9:5c:1f:3f:52:23:47:fb:
e1:64:a3:f1:36:20:61:21:a9:91:1f:f4:4b:06:ee:
02:05:6f:a5:55:31:01:3f:4d:4e:4e:02:75:ff:a2:
dc:61:69:f3:8e:9e:ca:8c:84:04:24:e5:57:68:79:
cf:28:dd:41:b3:c9:e1:05:8b:6b:43:33:99:00:fe:
86:d9:c3:32:5c:18:70:cc:39:15:26:ee:f1:90:74:
05:88:1d:b8:2b:70:67:d2:d0:dd:d1:bc:89:9f:9c:
6f:5a:d7:b1:78:09:3f:fb:2e:5c:cb:fe:1a:ee:2f:
51:c7:11:93:3f:af:a7:32:98:26:4f:f7:ea:54:74:
51:bf:57:75:38:1b:1a:26:35:c0:c0:df:5c:14:d0:
5f:5d:4c:2d:5e:da:4d:78:b8:11:3b:69:f5:c2:86:
57:b7:a1:81:02:c4:17:1f:da:88:f1:43:f2:56:63:
d2:e7:7f:9c:2d:b1:da:51:57:20:35:60:8a:c8:17:
ea:d4:b7:52:88:ab:f3:ee:9a:0e:a5:ad:ae:1e:6c:
f2:5a:47:4d:40:b2:a2:c8:55:cf:15:e4:cb:4c:9a:
3c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:46:D4:9C:C3:47:67:F8:D0:24:AF:F2:95:AD:6A:93:2E:79:15:E0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/30bUnMNHZ_jQJK_yla1qky55FeA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ce4::/48
2001:678:ce8::/48
2001:678:cec::/48
2001:678:cf0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
60557
Signature Algorithm: sha256WithRSAEncryption
2f:1c:9c:cb:3a:d5:42:83:49:d2:e1:58:79:f2:d1:89:54:04:
f2:0b:37:b2:61:6a:23:5b:24:7a:a8:78:ad:29:49:46:e3:e8:
cb:8e:aa:93:19:cf:dc:c6:df:c3:20:2a:d2:b6:49:a2:ed:50:
a9:f3:8f:4e:31:d9:ef:e7:e7:fa:06:da:9f:3e:43:3d:10:5d:
53:d9:9f:e2:54:58:67:57:37:4c:45:5e:02:aa:fb:ee:c7:28:
ed:92:8d:f4:75:cc:d1:45:af:da:e3:23:8a:69:6e:de:94:f2:
a3:59:29:79:1d:bd:3a:c2:97:10:87:4a:dd:91:26:69:83:3e:
16:9f:59:ac:4e:7a:95:d4:16:56:b9:da:e8:3e:0c:63:b6:e6:
ba:eb:5c:f9:a3:f0:7e:1a:13:55:ae:13:da:d8:ca:4c:91:90:
1a:d9:3e:08:84:df:7a:1f:58:a3:ad:ed:57:e9:38:f6:55:95:
22:2e:78:a0:2a:c1:78:2b:65:61:34:9e:a5:63:d6:d3:de:c3:
de:3e:df:d9:9f:4c:8b:01:e0:e8:5f:a5:dc:4d:c9:27:e6:12:
af:56:be:fb:03:d2:55:d7:9d:18:79:42:c0:fb:be:a0:dc:2e:
a7:00:ef:61:69:70:b4:a7:e9:14:b4:ee:35:54:2a:ef:81:f4:
d8:21:2a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:17:14 2024 by rpki-client on console-fra.rpki-client.org