Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5tF7E2U_8ePngi6x5eChf01PeIE.cer
File: 5tF7E2U_8ePngi6x5eChf01PeIE.cer (raw, json)
Hash identifier: sVYOCnrkvaEQnosYdrqykguzto2MvwxV2iD9Wo5C8sg=
Subject key identifier: E6:D1:7B:13:65:3F:F1:E3:E7:82:2E:B1:E5:E0:A1:7F:4D:4F:78:81
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCC800A4021B087597C8C11A7AF358
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/5tF7E2U_8ePngi6x5eChf01PeIE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57031
IP: 89.22.0.0/21
IP: 2001:67c:7c0::/46
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:c8:00:a4:02:1b:08:75:97:c8:c1:1a:7a:f3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6d17b13653ff1e3e7822eb1e5e0a17f4d4f7881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ca:c7:69:2d:16:c2:cb:ff:42:a6:c6:b1:b9:
eb:48:69:bc:1d:ce:e0:91:10:11:e4:ec:64:32:6d:
a9:7d:74:8d:94:6d:24:8c:25:7f:d8:ab:2b:03:84:
3f:6e:33:5f:07:ab:22:0f:f8:aa:68:1c:b0:a7:36:
77:d5:40:27:19:b3:d2:16:a2:da:73:cd:e9:79:49:
a4:b7:15:9f:dc:69:f8:b4:1e:33:79:eb:eb:b5:b3:
39:42:14:f7:4f:b2:3a:39:5c:88:d1:d5:48:18:e2:
1f:37:88:b5:ab:51:c5:2d:7c:28:76:f4:ea:4c:2a:
63:d5:b7:ef:b9:cd:bc:47:21:11:ce:1d:ff:1b:c4:
d3:b0:99:b2:f5:49:8d:0b:2b:16:e4:2e:ee:95:ac:
fd:11:b2:7a:27:99:d2:18:9e:83:f1:6b:09:70:7a:
f6:2c:54:ab:82:19:94:3f:89:96:6d:60:08:7b:d9:
bb:2b:af:00:d3:2b:02:fb:90:44:ad:1c:7f:d6:90:
a5:3d:71:3c:b3:d6:be:34:bd:d0:5b:82:51:dd:fe:
88:61:c2:8a:66:61:53:47:6a:56:6e:4c:7a:9f:4a:
73:38:53:70:5e:c2:06:79:a2:72:ff:d0:8d:cf:03:
b7:29:90:0a:fa:d5:f6:3a:5a:75:4d:f2:ea:0a:c6:
fc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:D1:7B:13:65:3F:F1:E3:E7:82:2E:B1:E5:E0:A1:7F:4D:4F:78:81
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/884e3e-7b53-475c-861f-6acd581d4b0f/1/5tF7E2U_8ePngi6x5eChf01PeIE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.22.0.0/21
IPv6:
2001:67c:7c0::/46
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57031
Signature Algorithm: sha256WithRSAEncryption
1f:f8:6f:17:9d:f0:7c:76:d7:58:9b:6e:27:35:b9:70:26:4f:
e8:4e:c4:eb:2e:40:c6:a8:ce:b5:49:52:fb:eb:d9:66:29:66:
8d:b9:09:b9:2e:ad:d5:ce:6c:65:e2:bf:c5:7e:bd:79:06:82:
62:51:25:be:cb:fd:1f:88:04:a8:21:f8:5f:3c:b5:e4:93:92:
4c:56:2c:6e:46:41:e4:c6:8b:64:3b:66:ac:f4:e9:6b:eb:c6:
d1:ac:86:dc:4c:44:15:63:09:3c:d6:2f:a3:93:3b:8f:8b:d8:
26:8e:47:06:4d:3a:20:40:ab:37:e6:24:b7:a2:a6:5a:9e:23:
31:20:0f:26:5e:e4:ca:a3:47:be:e4:dc:f8:be:92:d9:9d:c4:
56:f8:06:10:04:ff:9d:04:42:17:fc:00:9c:60:7e:65:a0:79:
1d:67:c5:d2:c3:ef:3d:84:04:d5:6d:52:34:27:0c:c5:1c:58:
72:5b:f4:c0:35:04:8b:d2:75:24:40:24:cd:38:6e:c2:f8:3b:
05:c0:cc:6a:7e:4c:4f:87:8d:96:2b:7d:0d:db:fc:1c:ed:e4:
64:76:d3:b6:23:0d:5f:36:17:2e:c8:84:b9:63:51:32:be:ea:
1e:b6:bf:db:13:4a:55:ea:67:db:fd:f1:26:b1:67:09:d6:ab:
b3:41:73:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:07 2024 by rpki-client on console-ams.rpki-client.org