Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer
File: 3oBMnIpDOX0Wd5qpNPcGc4j8fXw.cer (raw, json)
Hash identifier: Rj6h3zKowiERgDR6Wa67UeIZQwSO/cHHC9yRNBn1dJ4=
Subject key identifier: DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0192E2F96B0BD59BB8EB381EEB5F155DED14
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 31 Oct 2024 14:27:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205747
IP: 91.212.77.0/24
IP: 185.188.196.0/22
IP: 192.175.38.0/23
IP: 193.247.254.0/24
IP: 2a0b:d080::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e2:f9:6b:0b:d5:9b:b8:eb:38:1e:eb:5f:15:5d:ed:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 31 14:27:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=de804c9c8a43397d16779aa934f7067388fc7d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d6:8a:d5:a3:44:49:d3:03:e1:71:39:39:59:
0c:e2:6d:6a:82:45:ec:45:ea:93:ed:cf:1c:9f:02:
5f:b5:bc:35:2e:7b:9a:b2:4d:96:6b:82:b7:5f:19:
b9:1d:fb:a0:91:13:d5:33:a6:12:22:29:73:66:53:
77:ff:80:7d:00:ff:e8:31:fc:f8:ca:db:56:fe:fa:
26:81:00:2b:18:eb:5c:7f:bd:ac:87:9c:3c:72:33:
8e:f3:b2:16:f2:e1:ab:68:df:e5:d0:ad:61:2a:1c:
91:97:dd:13:d2:e7:4e:50:25:bc:8d:d1:e7:2e:48:
b6:36:72:2d:60:ab:f9:53:00:ce:25:6b:13:2a:fd:
7e:cf:de:1a:cb:f7:55:99:05:83:92:71:b6:22:c0:
43:09:26:c4:f6:c1:24:4a:fd:61:2f:50:1b:ed:e4:
c1:f8:9d:e5:ca:27:a8:51:ad:ba:1e:28:cd:f3:8e:
3b:f2:c3:f2:cf:9e:c4:1b:4c:47:95:51:de:5d:19:
12:01:4e:f3:a2:78:79:13:98:d2:ac:08:2d:5b:3b:
83:5c:0b:33:13:64:f1:5d:67:24:06:97:c4:e0:82:
09:9c:61:f2:1b:9d:4b:ba:4f:a8:8e:3e:a7:d2:ed:
55:91:13:1e:a4:1d:c0:d6:18:0e:0e:1c:01:9b:a4:
69:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:80:4C:9C:8A:43:39:7D:16:77:9A:A9:34:F7:06:73:88:FC:7D:7C
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/96254c-fc0e-4f58-95e2-af4e5241bf20/1/3oBMnIpDOX0Wd5qpNPcGc4j8fXw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.77.0/24
185.188.196.0/22
192.175.38.0/23
193.247.254.0/24
IPv6:
2a0b:d080::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205747
Signature Algorithm: sha256WithRSAEncryption
29:a4:e0:f8:6d:ea:03:c1:21:e8:bd:cf:39:0d:37:bd:44:95:
5b:c9:97:ff:f9:6a:7c:89:e0:2a:83:1b:cf:83:a1:45:1c:da:
37:95:3f:35:66:6c:75:15:af:7a:63:9c:3c:1f:3d:8c:62:20:
8b:75:f0:a4:22:3c:56:5f:11:cc:81:41:e1:7d:3b:34:07:9f:
5f:3c:2b:b2:1e:0a:4f:15:e5:5f:c2:38:38:5e:0a:39:37:4f:
94:9e:2a:40:8a:59:ab:c8:b8:9a:06:8b:1e:6e:f7:c5:64:bf:
86:af:bf:2d:23:c7:8e:a4:e9:6a:03:79:f0:f2:5e:be:b0:8c:
f7:b9:0e:7b:60:9c:d6:35:29:c0:04:e5:5c:7b:1d:3c:8d:22:
a8:20:20:fd:ac:88:3c:f9:6c:16:dd:6a:03:75:46:97:f0:8f:
18:c8:e7:14:0a:01:8c:f5:65:3a:ef:17:67:6e:9d:13:f4:3f:
6c:20:af:ff:16:b4:ba:df:4e:a0:84:b0:1d:0c:a9:6d:45:da:
2a:e7:55:8b:2c:0d:8c:77:0c:56:b1:61:92:39:c9:1e:74:72:
ba:bd:c2:f4:fc:a0:17:48:9d:71:c7:f0:47:ad:1b:59:ec:92:
15:04:64:e1:aa:42:54:15:49:29:cc:5c:77:79:58:0d:de:f1:
b7:ce:69:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:18:28 2024 by rpki-client on console-ams.rpki-client.org