Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer
File: 6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer (raw, json)
Hash identifier: iLRuMb4aG4K6lquuAaFLJcBxmNL24kfR3tnFM6aCH6c=
Subject key identifier: E9:20:23:7E:72:5C:F0:A5:3E:F4:3A:74:B5:56:95:51:AF:F7:4E:04
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC26D81F0B73743603CC8FBCF1DDCBC3D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 00:30:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 61999
IP: 185.52.104.0/22
IP: 2a04:c780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:81:f0:b7:37:43:60:3c:c8:fb:cf:1d:dc:bc:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 00:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e920237e725cf0a53ef43a74b5569551aff74e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0e:6c:2f:2d:96:d5:9e:9a:62:75:61:95:d0:
48:d9:be:7f:b1:e5:53:ef:cd:11:7b:f4:b7:64:61:
44:89:28:31:a8:db:5b:35:6d:8f:3d:e1:9b:04:d8:
4c:fd:09:b3:24:1e:af:2d:32:ce:0d:26:a4:bc:68:
69:5e:1a:7b:50:1d:e5:f9:fd:ca:b2:9a:d3:0e:5c:
9f:c0:bd:46:6b:ac:4c:87:53:4f:9b:20:dd:95:5b:
9b:53:1c:82:ed:d6:93:b6:d9:a0:1d:7a:28:21:40:
d5:24:a3:c9:e0:a2:88:e3:c7:00:a8:5f:1c:c8:d7:
84:e0:6a:31:ad:66:4d:bd:62:a0:7e:34:46:6e:9e:
63:02:33:b8:52:25:b5:af:15:71:0c:86:9f:e5:99:
c6:99:ef:21:50:bc:4e:a6:a8:80:c7:47:e8:87:02:
7e:e0:03:8d:cd:33:f0:c4:15:06:03:e1:67:12:d1:
c8:ef:cf:d8:3c:96:e8:66:d6:48:b5:26:fc:3c:4a:
7c:8c:60:53:fe:e1:e1:f4:41:dd:7f:93:9f:5c:0f:
85:6b:da:2c:26:2c:54:a8:97:60:ce:db:f8:7d:87:
10:37:55:a7:65:c1:eb:ce:d3:74:10:59:c5:69:35:
19:37:7e:26:fa:76:59:20:5d:54:f3:4e:cf:58:83:
3b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:20:23:7E:72:5C:F0:A5:3E:F4:3A:74:B5:56:95:51:AF:F7:4E:04
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.104.0/22
IPv6:
2a04:c780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
61999
Signature Algorithm: sha256WithRSAEncryption
6c:27:45:35:d7:f5:e5:5f:09:68:6c:61:1c:cb:fa:37:83:3f:
ff:f1:7b:64:0a:e6:82:0c:32:27:96:69:8d:61:47:85:56:d8:
94:6d:6b:1d:72:d9:4f:d0:9f:f0:52:0c:20:d9:49:64:75:63:
cf:49:a1:18:ef:2f:03:1c:37:3c:14:ca:25:a5:ef:8e:4b:fa:
4a:21:0f:76:1a:1e:bd:3e:f7:fe:3f:23:eb:3f:72:43:ae:5a:
bf:3a:9d:1a:14:f3:1f:8c:6c:8e:36:33:a9:56:b1:f0:d9:07:
1b:a1:f5:14:dc:84:e5:4a:d2:65:ec:60:cc:14:74:8d:f0:a3:
88:8f:3e:25:09:98:91:c0:35:43:6c:b2:8f:85:ef:c5:94:c6:
8e:20:4b:f2:7d:a8:ee:74:ca:85:de:ba:03:a2:5b:50:de:fa:
48:ac:f2:1f:e2:ad:da:2a:27:64:23:70:db:45:61:7e:f0:8c:
33:2e:4d:0d:3a:72:21:55:fc:77:4a:05:bd:57:fa:e6:32:ca:
19:d4:49:fe:b0:3c:4f:5b:7a:fc:e5:df:5e:e2:19:56:46:0b:
1b:b9:eb:9a:db:31:2b:41:08:5a:cc:e8:a9:fb:0b:22:53:20:
9c:cc:66:6d:ed:cb:4b:f9:a3:17:a5:3b:0d:e1:fa:3a:e9:4f:
13:f6:5d:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:41:53 2024 by rpki-client on console-ams.rpki-client.org