Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
File: 5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer (raw, json)
Hash identifier: csbRWsSrQeLaT1cO8unIOtwurbO6JBOqW9MA/TOLx7Q=
Subject key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC50043A11F4B9D6402A134A3129FD2A2
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203966
AS: 211251
IP: 79.98.176.0/22
IP: 213.171.64.0/19
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:43:a1:1f:4b:9d:64:02:a1:34:a3:12:9f:d2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3e:51:0a:0d:83:d9:7a:49:37:00:56:33:62:
82:c4:10:8e:93:c1:6d:e9:0d:00:8e:45:69:a9:83:
4e:76:0b:2a:a5:9a:6a:ff:46:06:dd:50:c8:f0:19:
6d:10:94:1a:43:12:25:7a:d6:88:53:38:6b:f0:2d:
02:0f:8f:07:ad:27:22:df:9c:7e:5a:2a:af:43:4c:
32:68:be:a8:1b:30:be:d5:a8:9c:db:1f:bb:80:5d:
16:d2:b9:cc:4e:f9:eb:45:80:c7:d6:94:95:4b:39:
5d:4a:0d:22:a0:9a:91:e8:15:e7:d5:1a:ac:19:4a:
db:be:6e:a0:1b:61:8b:3f:22:df:d3:d8:2d:c9:e8:
30:ba:0f:70:ec:24:0b:16:34:38:1f:3f:44:9a:91:
ef:74:91:16:16:d6:c1:e7:cc:04:d3:74:74:45:0a:
59:78:f9:0b:a6:07:64:0d:d9:17:a7:71:2f:58:53:
e8:ba:fa:53:e7:13:72:dc:10:2c:17:8c:d1:bc:c6:
b1:f9:95:8b:b7:2a:9a:6c:14:3f:e4:9f:50:8d:ae:
fe:3d:c1:17:fe:d5:17:95:d1:42:d7:2e:6a:92:93:
b6:88:a5:5a:7c:ec:0b:3d:e5:4a:1d:a6:64:c3:33:
ef:72:ab:92:d8:b5:5e:75:7b:61:9c:11:ba:e6:6f:
b6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.176.0/22
213.171.64.0/19
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203966
211251
Signature Algorithm: sha256WithRSAEncryption
85:ab:3a:b6:d4:64:27:95:16:4a:61:ae:ba:70:00:b5:ec:66:
af:9e:be:f1:33:d0:cf:c7:c3:99:ba:5f:b4:af:af:1e:ac:53:
89:a0:47:d5:cc:56:9e:26:f0:f7:45:62:eb:3f:d2:7a:74:94:
8a:8e:e7:41:03:6d:c5:69:8d:99:69:b2:cb:64:be:6a:b4:3a:
45:5b:d0:b7:09:d3:f3:48:a7:28:f5:30:f3:ac:aa:d1:d3:b3:
12:7d:8a:8f:5b:43:9d:92:cb:1e:56:1d:a6:56:b1:96:d0:4a:
c8:22:f1:c9:9c:82:69:86:e4:8d:87:1c:2b:b7:48:48:c8:47:
cc:ca:0b:ff:23:d0:a0:f2:7d:1f:cc:21:7e:84:d2:e1:3e:5b:
1d:f3:43:f9:a4:2f:6d:14:72:48:23:cf:8c:b5:b3:3a:eb:cb:
1e:04:94:b3:62:f3:de:86:f4:58:6a:6f:97:13:66:a3:d6:e0:
e8:66:2d:39:1f:5b:b7:7a:ca:76:b8:05:e8:f6:66:b6:b1:50:
50:2a:9b:78:7d:fe:3a:c5:d4:d6:9a:42:98:f8:97:67:f7:38:
76:94:2a:ce:ce:c4:bd:b9:a9:10:ae:47:48:bd:46:bd:3c:bc:
03:c9:b0:80:b4:95:19:2c:24:47:77:74:4f:f2:d6:f0:22:30:
4e:bc:fe:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:40:35 2024 by rpki-client on console-ams.rpki-client.org