Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer
File: 7Lp3S6gvsEJ_dm54PncPS9lkFvk.cer (raw, json)
Hash identifier: eIzYlDob6+S7eboNO9fPznYxmBmlT14vrgL7yElDm5I=
Subject key identifier: EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018F15371EDD063EE3F82D85BC67F41E55B8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 25 Apr 2024 12:24:45 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 21057
AS: 25259
AS: 51007
IP: 31.187.68.0/24
IP: 80.84.128.0/19
IP: 157.97.64.0/23
IP: 178.249.8.0/21
IP: 185.100.180.0/22
IP: 2a03:a420::/32
IP: 2a03:de40::/32
IP: 2a06:1880::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:15:37:1e:dd:06:3e:e3:f8:2d:85:bc:67:f4:1e:55:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Apr 25 12:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ecba774ba82fb0427f766e783e770f4bd96416f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5f:08:91:7f:9f:70:32:f6:44:8c:d3:8c:4c:
d2:1b:86:04:b2:52:d4:46:d0:6c:9d:3e:5d:62:e8:
d6:49:c4:61:e3:b2:52:34:c6:db:f6:c1:63:c9:f7:
34:b5:0a:47:59:bb:0d:1b:24:60:ea:14:6e:84:1e:
08:37:4e:d5:9a:ab:b1:f9:82:5f:a9:eb:aa:46:16:
66:93:3b:96:36:17:4b:e2:7e:07:e4:b6:3c:64:c1:
c8:3f:75:cc:0b:81:96:e9:21:1a:67:26:4c:dd:83:
c3:6b:d3:f1:0b:fd:df:fe:7a:09:3b:34:33:28:50:
6b:af:1b:31:e3:bb:4d:16:8f:de:98:82:43:36:c3:
50:3a:28:62:4e:8c:e2:cb:64:b5:83:ca:cc:45:b2:
07:b8:2c:84:1b:45:44:e1:61:d3:f4:d2:be:16:c8:
48:06:34:4d:e2:6d:28:e7:59:14:c5:ec:a0:ba:e3:
fb:0a:f0:7d:13:2a:65:2c:8e:f8:e1:b5:a1:4c:9e:
ce:78:21:d8:48:c7:e6:07:a7:8e:69:b7:5a:33:e6:
01:1d:67:d9:63:40:68:d0:f0:09:0d:28:1e:4d:f6:
a3:cc:99:cd:cb:2b:06:2a:80:dc:3c:cb:ea:49:ff:
b6:09:d6:2c:15:85:53:09:b8:4b:40:3f:50:fa:1a:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BA:77:4B:A8:2F:B0:42:7F:76:6E:78:3E:77:0F:4B:D9:64:16:F9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/810c11-a105-4db1-a6b5-392b863c9f03/1/7Lp3S6gvsEJ_dm54PncPS9lkFvk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.187.68.0/24
80.84.128.0/19
157.97.64.0/23
178.249.8.0/21
185.100.180.0/22
IPv6:
2a03:a420::/32
2a03:de40::/32
2a06:1880::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
21057
25259
51007
Signature Algorithm: sha256WithRSAEncryption
4c:1a:26:4a:81:c8:49:d3:7f:de:59:3a:aa:14:2d:3e:65:55:
91:6c:bf:5b:8d:38:6d:fb:77:62:5c:d9:74:63:5e:8e:02:a8:
32:18:4a:35:4e:3d:ee:ce:a2:72:93:50:0d:52:e0:d2:c3:c8:
dd:08:de:e4:b7:c9:1a:a7:e0:bb:19:1b:a2:40:56:b3:15:3b:
f3:a7:27:03:d7:d6:ce:ec:06:b3:fa:58:81:c6:05:19:0d:9b:
6a:95:d9:f7:bc:ec:28:ad:ff:5c:4f:f8:82:bb:17:c5:9a:ca:
6b:74:64:28:2c:e3:27:71:57:b5:ef:ef:6c:54:4c:28:85:ba:
37:22:c6:1a:54:3d:e7:85:8b:30:3a:a3:e1:8c:67:6c:14:bd:
e3:f2:7f:19:5a:7f:dc:09:5a:b3:8a:10:cf:ad:62:8f:c4:53:
a9:c1:8b:83:60:e5:0a:ae:30:a1:35:06:97:a4:75:9c:b8:45:
10:bb:f9:b9:4a:44:00:78:aa:70:de:de:01:fd:12:cc:72:1d:
58:69:e4:b6:d9:1e:a6:30:84:ef:b0:e4:22:bb:c7:a5:2a:24:
18:1c:0d:31:9f:75:74:4f:14:f1:48:69:77:29:c2:16:b9:64:
75:b8:8b:53:96:c1:9f:14:e9:e5:96:3d:ff:bc:1a:b8:da:1c:
2e:cd:47:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:11:26 2024 by rpki-client on console-ams.rpki-client.org