Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4uj1a8H1AQKRaBvC2MAvmsv3FKA.cer
File: 4uj1a8H1AQKRaBvC2MAvmsv3FKA.cer (raw, json)
Hash identifier: v0uZQ+NCJWTBAi9eY6ug1DFMeffxXIqWykamfivMYgk=
Subject key identifier: E2:E8:F5:6B:C1:F5:01:02:91:68:1B:C2:D8:C0:2F:9A:CB:F7:14:A0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CCA9922483DFB59E97E9D956BE2382049
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/4uj1a8H1AQKRaBvC2MAvmsv3FKA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 14:34:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 8326
AS: 12618
IP: 46.238.192.0/18
IP: 46.239.128.0/18
IP: 82.146.224.0/19
IP: 89.191.128.0/19
IP: 94.101.16.0/20
IP: 94.141.128.0/19
IP: 185.174.152.0/22
IP: 212.122.192.0/19
IP: 2001:908::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:99:22:48:3d:fb:59:e9:7e:9d:95:6b:e2:38:20:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 14:34:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2e8f56bc1f5010291681bc2d8c02f9acbf714a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6d:06:89:57:0a:3e:eb:a9:99:f5:ba:e6:1a:
2b:c5:21:6a:3b:48:0e:89:1e:e4:3d:d6:54:65:6d:
b3:4f:ff:de:a8:94:b7:f4:29:cf:d6:91:25:bb:77:
6c:86:e0:90:f5:29:63:9c:ae:ff:a8:a9:1c:f4:ff:
17:58:71:63:f1:5b:6b:fc:9f:c4:4f:a6:95:30:e7:
e4:fc:33:4f:29:e2:57:6c:75:93:af:fa:24:eb:03:
79:5d:fc:f2:b7:f8:8f:01:c5:ee:8c:ce:9d:53:da:
a7:1b:f7:66:eb:73:30:34:63:01:6d:a9:1c:4c:19:
0a:ff:ce:44:68:5d:3b:0c:50:cd:75:cf:4d:1c:38:
67:11:cb:b7:91:52:2c:10:cc:bd:86:14:bd:87:ad:
49:ec:84:3d:5e:c2:bc:95:03:f0:f0:c0:94:90:b6:
0e:cd:b7:02:69:c8:aa:83:b3:3f:de:10:61:db:07:
eb:33:9a:27:ed:68:83:e3:bc:da:89:59:91:85:51:
4e:b7:42:72:40:92:f0:7a:b4:13:bb:dd:7c:f5:6a:
cc:4b:25:fc:d4:76:6b:9d:4b:9a:df:3a:e0:b6:0b:
e2:4f:f6:31:fc:f8:5c:06:26:3c:1a:11:cb:95:fd:
c3:d6:dc:5e:9e:03:73:8b:57:40:f0:cb:dc:e0:e2:
a0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:E8:F5:6B:C1:F5:01:02:91:68:1B:C2:D8:C0:2F:9A:CB:F7:14:A0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/8042bf-71ba-4fbd-9e17-447edc4f9af6/1/4uj1a8H1AQKRaBvC2MAvmsv3FKA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.238.192.0/18
46.239.128.0/18
82.146.224.0/19
89.191.128.0/19
94.101.16.0/20
94.141.128.0/19
185.174.152.0/22
212.122.192.0/19
IPv6:
2001:908::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
8326
12618
Signature Algorithm: sha256WithRSAEncryption
12:c0:81:81:5b:ad:e8:44:df:24:e6:5f:4f:d8:22:e6:32:04:
e3:85:56:f1:16:b3:0d:27:03:0b:5c:05:f5:80:ef:8f:4b:30:
d8:ef:19:11:14:23:6d:11:39:f6:4a:d7:1b:f3:40:dd:f4:a5:
2a:e7:c9:97:a7:3b:ef:f1:97:0b:bb:a2:78:48:92:bf:a4:88:
0e:83:3f:ec:3b:d8:4c:11:d5:6d:77:00:7f:7f:91:d2:f7:4b:
59:dc:5d:39:c1:b5:79:8c:50:ad:45:7f:47:71:5e:bf:70:94:
5d:6a:6a:df:7f:51:b1:02:c7:2c:b9:dc:86:59:3d:08:8f:8a:
78:07:7b:f8:01:06:1a:d2:73:d1:ee:fa:73:e5:12:fd:d1:15:
46:0d:0c:ea:0c:95:a2:c7:b1:e3:2f:d0:38:16:69:b0:ed:5b:
71:55:c8:20:64:10:6c:6a:60:ec:a3:6d:9c:9c:3c:e1:82:47:
6d:70:88:30:34:09:33:aa:8b:60:08:12:fb:c6:ed:86:f5:30:
77:f9:c3:6b:16:81:cb:0b:52:05:f4:7d:97:cb:6c:21:73:de:
0e:64:73:0e:cd:fa:47:90:02:92:5a:fc:e7:22:b2:ea:55:ee:
3a:c6:25:21:ca:be:dd:6f:0c:ca:b9:76:3e:06:0e:20:9d:0c:
20:cd:47:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 09:57:47 2024 by rpki-client on console-fra.rpki-client.org