Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3x4tS9NitiuARQIdw1CxIOVTAmU.cer
File: 3x4tS9NitiuARQIdw1CxIOVTAmU.cer (raw, json)
Hash identifier: HaNWy63wYxN317OM9tSSW44uXFzZ+JbT3hL0RVMHgC0=
Subject key identifier: DF:1E:2D:4B:D3:62:B6:2B:80:45:02:1D:C3:50:B1:20:E5:53:02:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DEAAA11B1D04E724E7821BDF92C02D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/79/2879fb-629c-4abf-a35f-03afae688657/1/3x4tS9NitiuARQIdw1CxIOVTAmU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/79/2879fb-629c-4abf-a35f-03afae688657/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:31:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 62282
IP: 37.156.216.0/21
IP: 185.38.164.0/22
IP: 185.79.244.0/22
IP: 185.175.176.0/22
IP: 185.193.24.0/22
IP: 2a01:41a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:aa:a1:1b:1d:04:e7:24:e7:82:1b:df:92:c0:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df1e2d4bd362b62b8045021dc350b120e5530265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7e:26:7c:3c:22:87:bd:00:e8:56:db:7c:5e:
3b:54:67:67:81:7d:53:59:64:72:a1:1e:6e:de:5b:
c1:71:0e:00:93:4a:74:18:7a:78:92:01:8e:e9:2c:
f8:7b:36:65:64:45:4f:83:4e:c8:ed:08:56:45:e1:
b0:9a:05:4b:36:07:ad:96:d2:2c:7d:e0:74:d0:60:
56:e0:0f:1f:21:11:44:c5:b9:89:42:ab:cf:70:6c:
58:26:b3:3b:f9:74:b2:3a:e9:ae:6e:84:13:18:91:
d4:e0:3b:d4:e6:8b:6a:ed:d0:34:75:c4:40:34:ec:
90:d3:a6:6f:43:45:04:a2:47:18:27:31:00:b9:05:
9a:91:20:c9:f6:40:c3:0c:b2:dd:30:5f:cf:da:99:
da:48:6a:41:61:8d:66:e3:d4:26:0e:2a:b8:cb:13:
dc:fc:17:5f:bb:bf:b4:5c:f5:26:7a:7f:28:b6:86:
f2:ec:0a:a7:3f:d6:3d:eb:dd:02:c5:1d:91:cf:43:
6a:5d:73:16:40:8a:60:80:42:82:a4:75:27:fe:0f:
d4:03:cf:b0:81:9f:1a:d8:0c:9c:4e:65:75:f9:15:
5f:83:fd:9e:bc:d6:a3:b9:f8:c8:74:69:21:ed:03:
96:fd:1d:0a:81:87:5e:12:60:6b:b6:fc:98:87:45:
ee:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:1E:2D:4B:D3:62:B6:2B:80:45:02:1D:C3:50:B1:20:E5:53:02:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/2879fb-629c-4abf-a35f-03afae688657/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/2879fb-629c-4abf-a35f-03afae688657/1/3x4tS9NitiuARQIdw1CxIOVTAmU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.156.216.0/21
185.38.164.0/22
185.79.244.0/22
185.175.176.0/22
185.193.24.0/22
IPv6:
2a01:41a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
62282
Signature Algorithm: sha256WithRSAEncryption
ac:2d:22:82:11:1e:9c:be:7b:a0:e6:44:c5:f9:d0:61:55:b0:
cf:32:ea:75:8a:04:88:9c:16:e6:8a:ec:c5:c4:1e:f2:d0:16:
32:a0:eb:d2:3a:19:a2:12:73:d3:71:6e:23:e9:89:f3:80:4d:
e0:d7:c3:38:f9:fa:d1:91:ea:6e:1f:c1:86:e2:d8:73:00:87:
f9:ca:7f:55:7f:c1:7a:28:7f:4a:06:fc:8d:92:1c:71:4f:e4:
fd:37:c5:74:1c:24:9e:bb:e4:de:3b:b0:f5:1d:a5:3f:26:bf:
2b:4f:e0:54:e3:52:7e:cd:30:33:aa:03:98:d9:cb:23:97:3f:
b7:79:d9:39:f4:8e:2b:40:fe:cf:ae:f6:b0:0f:c6:30:7a:90:
31:b5:04:0e:65:5f:da:df:97:95:5b:79:92:db:ea:e1:8b:cb:
3d:40:6c:9f:07:6c:ff:08:08:f2:b3:9f:57:fa:54:38:22:5f:
65:0c:95:80:d8:6d:d3:94:ac:b4:2f:96:99:be:37:33:27:a4:
7e:5a:ef:fb:47:f8:d6:b1:40:60:7b:00:1f:1a:77:ce:5a:2b:
cb:7b:81:ae:a0:1f:59:c6:05:c7:86:60:8a:d6:f5:81:24:36:
27:b8:11:16:b6:bb:00:13:b4:09:5f:0c:9b:43:88:8b:a2:a6:
c9:e1:f9:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:38:35 2024 by rpki-client on console-ams.rpki-client.org