Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6lPzPM38X-hLhMFfBDIpBpka-ec.cer
File: 6lPzPM38X-hLhMFfBDIpBpka-ec.cer (raw, json)
Hash identifier: LBI5KGH3o7TsP6/mci12n34o5+xZrCkHdFikQdwh5LI=
Subject key identifier: EA:53:F3:3C:CD:FC:5F:E8:4B:84:C1:5F:04:32:29:06:99:1A:F9:E7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94E1B2EA9B9E8035804D659C044CC59
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:33:08 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205581
IP: 185.213.36.0/22
IP: 2a0b:8240::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:1b:2e:a9:b9:e8:03:58:04:d6:59:c0:44:cc:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:33:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea53f33ccdfc5fe84b84c15f04322906991af9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:10:7f:e7:7d:3b:95:5d:54:ba:d7:72:43:74:
0a:7d:99:3e:6b:2f:24:64:3b:65:7c:cf:07:95:c9:
df:4a:1e:8b:5f:b9:86:20:f7:3d:06:ac:85:75:6a:
de:a2:13:cf:20:3d:c4:2a:05:9a:0e:6c:e7:88:fb:
7c:aa:8b:fa:cc:ec:ec:7b:5b:e0:c3:5a:37:f9:df:
61:5e:3b:b6:50:5d:68:4b:b9:18:21:0d:14:64:c9:
f3:ee:f1:f8:82:23:5f:78:f7:af:7e:89:0c:09:81:
62:1f:3d:29:09:da:f1:e1:67:09:d0:0e:8e:e3:22:
0e:6f:81:54:e7:9d:07:55:cf:05:af:bd:78:d5:94:
83:ef:16:d1:e9:8c:a7:8c:71:e0:b5:5c:dd:8d:9f:
6f:ad:be:9e:60:92:ff:10:61:be:12:e4:79:6a:2a:
b6:f4:5d:58:cd:78:66:9e:a4:e6:2a:c7:6d:50:58:
f7:04:21:c8:ed:cc:62:11:c3:e9:b1:d9:89:6b:85:
20:fd:78:73:4c:ff:a7:77:6a:37:34:8b:ca:b8:0f:
fa:85:bc:c5:27:6f:50:37:aa:81:df:bd:7d:41:61:
00:d6:53:fa:0e:14:c2:69:4f:8c:ee:9e:3b:e8:5c:
5f:79:c4:b2:ea:88:8f:dc:39:2b:9a:c0:02:85:19:
58:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:53:F3:3C:CD:FC:5F:E8:4B:84:C1:5F:04:32:29:06:99:1A:F9:E7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f95298-f909-45c9-9104-8a4f63ea9bf1/1/6lPzPM38X-hLhMFfBDIpBpka-ec.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.36.0/22
IPv6:
2a0b:8240::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205581
Signature Algorithm: sha256WithRSAEncryption
75:08:23:da:ee:0b:e3:f9:f3:ed:1e:1f:c5:cd:33:85:62:20:
14:ad:db:e0:e2:46:1b:6d:cf:a3:95:8d:02:5f:cc:0e:b9:93:
b7:34:e6:de:6b:f5:44:d6:75:11:14:f8:4e:9c:8b:cf:38:1e:
7c:bb:85:dd:be:58:18:0f:79:f0:f2:6f:45:42:b2:e3:35:ec:
f4:27:f5:7e:4b:ae:b6:33:ea:3d:3c:13:89:dc:3e:2e:50:a6:
9c:97:1b:48:b1:dd:7a:68:60:31:68:91:a4:8f:73:dd:f7:56:
2e:39:66:ca:39:61:22:02:19:90:c7:68:05:39:7d:c8:fc:b8:
e1:f4:1f:36:d1:b1:09:4d:3c:1c:f8:42:a9:14:50:0d:2c:eb:
87:a7:76:9e:20:cf:61:23:8b:98:75:e0:a1:91:75:f5:a6:7e:
72:5b:e0:36:2b:8d:d8:83:7b:00:fe:86:69:d6:f1:77:f7:33:
0b:31:75:d1:46:50:af:7c:f1:e9:45:e0:2c:81:f9:d5:62:cc:
a2:c3:51:8e:ed:4b:3e:99:83:ed:3e:78:d1:02:d4:81:cf:20:
26:ae:65:21:f1:40:fb:a0:0c:d7:4a:05:c9:6c:21:ac:0c:ea:
d1:d1:8b:b7:5f:fe:e1:5b:ed:dd:e6:b7:90:b1:8a:cc:8d:ae:
86:f2:f2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:00:34 2024 by rpki-client on console-fra.rpki-client.org