Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30bUnMNHZ_jQJK_yla1qky55FeA.cer
File: 30bUnMNHZ_jQJK_yla1qky55FeA.cer (raw, json)
Hash identifier: CmDOpgLvP5DOZtsJSWTv5qid8/Ho7uXMlsdZIJMQ5BI=
Subject key identifier: DF:46:D4:9C:C3:47:67:F8:D0:24:AF:F2:95:AD:6A:93:2E:79:15:E0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B2EC5A634D742234D72BDC9F8D06E
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/30bUnMNHZ_jQJK_yla1qky55FeA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 48079
AS: 60557
AS: 206064
IP: 2001:678:ce4::/48
IP: 2001:678:ce8::/48
IP: 2001:678:cec::/48
IP: 2001:678:cf0::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Apr 2024 02:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:2e:c5:a6:34:d7:42:23:4d:72:bd:c9:f8:d0:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df46d49cc34767f8d024aff295ad6a932e7915e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:00:39:59:97:06:31:7f:c5:3d:19:84:5a:d4:
65:f0:c4:dd:70:b6:66:dd:30:a2:d1:37:7b:25:84:
3f:85:bd:9e:12:9f:fb:e9:5c:1f:3f:52:23:47:fb:
e1:64:a3:f1:36:20:61:21:a9:91:1f:f4:4b:06:ee:
02:05:6f:a5:55:31:01:3f:4d:4e:4e:02:75:ff:a2:
dc:61:69:f3:8e:9e:ca:8c:84:04:24:e5:57:68:79:
cf:28:dd:41:b3:c9:e1:05:8b:6b:43:33:99:00:fe:
86:d9:c3:32:5c:18:70:cc:39:15:26:ee:f1:90:74:
05:88:1d:b8:2b:70:67:d2:d0:dd:d1:bc:89:9f:9c:
6f:5a:d7:b1:78:09:3f:fb:2e:5c:cb:fe:1a:ee:2f:
51:c7:11:93:3f:af:a7:32:98:26:4f:f7:ea:54:74:
51:bf:57:75:38:1b:1a:26:35:c0:c0:df:5c:14:d0:
5f:5d:4c:2d:5e:da:4d:78:b8:11:3b:69:f5:c2:86:
57:b7:a1:81:02:c4:17:1f:da:88:f1:43:f2:56:63:
d2:e7:7f:9c:2d:b1:da:51:57:20:35:60:8a:c8:17:
ea:d4:b7:52:88:ab:f3:ee:9a:0e:a5:ad:ae:1e:6c:
f2:5a:47:4d:40:b2:a2:c8:55:cf:15:e4:cb:4c:9a:
3c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:46:D4:9C:C3:47:67:F8:D0:24:AF:F2:95:AD:6A:93:2E:79:15:E0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/30bUnMNHZ_jQJK_yla1qky55FeA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:ce4::/48
2001:678:ce8::/48
2001:678:cec::/48
2001:678:cf0::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
48079
60557
206064
Signature Algorithm: sha256WithRSAEncryption
2e:f1:a5:b7:e1:8d:ed:f8:eb:8a:8b:61:9b:01:bc:e3:46:74:
ef:76:26:dd:ac:d6:01:77:8b:e5:9d:6f:b1:53:d6:5d:04:81:
05:10:f7:fe:e5:6b:7a:c4:0a:22:4a:cf:88:c2:18:00:27:97:
1f:2a:25:a5:5e:7a:e8:1e:db:55:78:db:94:af:24:19:31:41:
c9:0f:c3:af:61:c9:b8:df:e9:e8:aa:e7:f5:86:db:b1:ff:71:
fe:17:79:a6:ff:86:a4:9e:70:e3:6d:e7:32:a8:49:e4:2b:96:
4e:0f:2a:7f:55:ea:f5:df:b5:2f:8a:96:01:fb:3d:81:14:0f:
1d:d1:dc:6f:69:7f:ae:da:5f:4e:c4:20:11:87:2d:cf:a6:7a:
40:37:f0:07:ba:19:33:9e:81:6f:86:d6:c1:4b:56:c7:71:ef:
6c:01:44:fe:f2:dc:33:47:24:f4:e8:b1:8c:5c:98:df:8a:7e:
d3:d2:fe:04:59:20:da:9e:6d:31:af:a0:af:88:da:21:44:0a:
e3:ad:35:84:ad:93:de:e0:a7:8f:69:f0:a3:98:10:cf:76:55:
ff:5a:a2:dc:ca:5e:19:0b:58:3e:b2:c8:a0:05:7f:47:8d:56:
b4:19:0e:a7:73:06:fb:4a:5c:8c:6a:a0:88:f4:13:44:99:48:
ba:a6:c5:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 09:58:29 2024 by rpki-client on console-ams.rpki-client.org