Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3fHfWY9KjzotB0zLb20WtU0dERw.cer
File: 3fHfWY9KjzotB0zLb20WtU0dERw.cer (raw, json)
Hash identifier: 9/kDQPVtRsQnhGF18SnsLU4x35/+BObxJKMzfxhEDb4=
Subject key identifier: DD:F1:DF:59:8F:4A:8F:3A:2D:07:4C:CB:6F:6D:16:B5:4D:1D:11:1C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC794AD155542A84470ED4695F2ECC9F1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/3fHfWY9KjzotB0zLb20WtU0dERw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:30:58 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 5435
AS: 15393
IP: 185.0.38.0/24
IP: 185.178.224.0/22
IP: 192.160.15.0/24
IP: 212.93.224.0/19
IP: 2001:7f8:151::/48
IP: 2a02:23d0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:ad:15:55:42:a8:44:70:ed:46:95:f2:ec:c9:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:30:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ddf1df598f4a8f3a2d074ccb6f6d16b54d1d111c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:af:27:fb:6b:5f:59:29:29:b4:ef:65:ad:93:
2a:98:b8:54:5a:4d:4d:c2:07:52:82:a1:76:90:a0:
a1:e1:78:da:7c:89:ec:58:2c:0d:49:4c:13:a2:5c:
cd:80:81:c0:2a:7c:4c:b6:52:19:0c:82:7d:34:8d:
27:30:4f:68:ec:54:8b:90:78:a5:55:71:ed:e6:b7:
a2:cb:96:f0:d7:92:1e:1c:45:69:4c:40:23:ad:6f:
4a:44:ce:e5:e0:60:8f:4e:3c:bb:4b:de:0b:3b:54:
7f:8c:3b:9f:af:f9:65:c9:37:c5:a9:50:16:af:22:
45:c6:07:18:ac:17:1b:55:34:e9:a6:28:3b:34:4c:
f4:dc:50:b8:96:2c:01:f9:94:18:8f:e7:7b:2a:54:
ec:cf:7f:00:fc:3b:41:a9:52:a7:6b:d0:ac:e9:0d:
9f:84:e6:a9:7b:20:02:69:fc:3c:7a:bc:b8:ca:b7:
45:25:6e:39:f0:8e:07:2c:2c:cd:bb:67:80:6d:98:
4a:5b:43:5e:74:1e:3e:74:c6:a5:fe:9c:2b:80:d3:
eb:72:2c:3c:cc:ad:32:0e:45:fb:55:7e:d1:0b:54:
b0:ef:e7:ee:14:fa:e8:0e:dd:e6:4d:f3:01:ea:3f:
9f:82:3c:b4:f3:51:8a:ed:a0:6e:20:2f:a1:ad:07:
ff:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:F1:DF:59:8F:4A:8F:3A:2D:07:4C:CB:6F:6D:16:B5:4D:1D:11:1C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6b8bce-584c-492c-bd7e-d0f31bc93079/1/3fHfWY9KjzotB0zLb20WtU0dERw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.0.38.0/24
185.178.224.0/22
192.160.15.0/24
212.93.224.0/19
IPv6:
2001:7f8:151::/48
2a02:23d0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
5435
15393
Signature Algorithm: sha256WithRSAEncryption
10:07:55:dd:80:df:e7:bf:ae:85:46:21:14:f6:e8:05:29:c4:
65:fc:27:4c:fb:04:ec:33:4f:32:67:2f:9b:bd:7e:f0:c8:ad:
69:93:29:9c:77:e2:1a:1f:47:5b:2d:80:16:52:61:72:fc:72:
10:57:9d:e3:30:d3:a6:2a:de:91:71:31:73:6e:d7:52:38:85:
f1:ec:b3:65:23:6f:cd:6e:d7:43:ed:87:74:e9:1b:e0:e7:71:
72:1c:0f:b7:b2:3f:bf:d2:06:33:a3:5d:90:e5:df:cf:90:5d:
f8:82:96:d0:e8:b5:38:18:1e:02:26:44:7e:88:b6:47:c1:da:
c7:58:79:04:33:01:f9:15:89:f2:4e:fe:20:db:60:30:a9:66:
5b:d7:04:2d:7f:98:14:ec:38:b1:cb:b3:6b:50:03:19:42:65:
f5:56:e1:60:4f:4a:74:a1:05:77:9d:48:84:9a:5c:0d:0b:22:
98:e3:d9:c3:da:81:b1:02:94:61:f1:ee:47:d1:63:3b:b2:dd:
f9:66:db:d1:dd:32:d9:cf:4d:79:08:55:d9:39:de:3f:4d:2d:
8b:e1:bc:d7:32:a0:c1:c2:86:26:7c:af:e4:b8:76:d6:62:f8:
49:b4:89:5d:03:c5:00:05:17:d5:bd:40:00:7e:3e:87:23:01:
51:c0:d7:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:56:24 2024 by rpki-client on console-fra.rpki-client.org