Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7qArGX269963Tgon2dTs0_rh6O0.cer
File: 7qArGX269963Tgon2dTs0_rh6O0.cer (raw, json)
Hash identifier: Jge0g+nguVzeTNXxVKs6EKD8oXQjd6nwW95f+hGwFO4=
Subject key identifier: EE:A0:2B:19:7D:BA:F7:DE:B7:4E:0A:27:D9:D4:EC:D3:FA:E1:E8:ED
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC500F01D684B7B4FFB2C4B4B901021AB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/7qArGX269963Tgon2dTs0_rh6O0.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208002
IP: 104.247.160.0/19
IP: 185.73.128.0/22
IP: 185.137.212.0/22
IP: 2a03:a5a0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:f0:1d:68:4b:7b:4f:fb:2c:4b:4b:90:10:21:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eea02b197dbaf7deb74e0a27d9d4ecd3fae1e8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1a:03:cf:2d:75:02:ec:ea:e9:4f:fe:f3:cf:
5c:fb:aa:96:72:1d:4e:bf:43:ed:4c:c7:60:e5:51:
03:8f:00:27:63:a8:70:37:38:28:b0:0e:80:53:1f:
84:96:00:1e:96:0a:5f:75:e3:75:7c:46:21:b4:01:
a8:bc:a7:77:86:02:7b:6e:9a:30:2a:e0:84:c4:d4:
37:c0:06:0c:e1:5e:89:70:0b:42:2a:f0:8e:b2:ff:
8f:4e:e3:75:f4:b8:d1:3b:dd:93:f0:96:34:a1:8b:
71:6a:87:ab:92:49:3e:fd:a6:b6:d0:ec:e0:44:cb:
f4:9e:5e:56:00:b1:21:df:07:f7:1a:03:b2:26:b8:
7b:9e:f6:bb:7d:34:f8:c6:10:58:6b:97:10:8a:de:
f6:fd:fc:09:b2:e6:90:2e:77:ca:47:8b:b2:5f:26:
2d:cd:a9:31:6b:5e:59:39:58:51:fe:55:cd:48:ad:
ae:56:6a:94:08:25:15:07:02:e0:9f:89:22:5d:11:
3d:cb:51:d4:86:b5:2b:c9:c2:ef:d1:1d:c5:83:b6:
e3:65:c3:11:ff:01:ed:57:c9:7d:8d:4d:76:a3:9c:
96:84:20:5a:59:d1:35:b3:1c:b3:97:5e:cd:c7:69:
8a:39:32:94:2f:9e:d6:c5:3e:84:d7:44:f9:7b:fc:
cd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:A0:2B:19:7D:BA:F7:DE:B7:4E:0A:27:D9:D4:EC:D3:FA:E1:E8:ED
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/971b11-280e-4ced-b99c-bbccab913b5d/1/7qArGX269963Tgon2dTs0_rh6O0.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.247.160.0/19
185.73.128.0/22
185.137.212.0/22
IPv6:
2a03:a5a0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208002
Signature Algorithm: sha256WithRSAEncryption
4d:ab:eb:f4:37:07:83:f1:f8:88:0d:52:f4:d6:b9:3b:cb:09:
67:16:26:1f:a8:e2:0a:86:20:05:eb:d8:a0:0a:54:9e:31:58:
fd:61:2b:26:4b:a4:14:48:64:8d:57:a9:19:44:01:ce:11:de:
bd:21:8c:35:1e:c7:44:b5:8e:fd:9b:b2:88:d6:7d:8b:b4:ae:
dd:fe:56:1e:96:76:2f:e3:7c:76:18:21:6b:45:ed:bc:c6:30:
9f:d2:4d:49:8d:57:23:18:33:78:e6:80:bb:ac:b5:8c:70:b1:
eb:df:2d:0d:17:5c:db:83:6c:ae:d4:fe:f4:56:70:63:35:68:
e0:42:b9:5e:0f:d1:3b:c4:1d:59:5e:6c:f2:f2:86:ee:99:04:
1b:2f:96:f5:70:3d:3c:27:f3:31:3d:d3:66:36:72:bf:6a:1c:
0a:8b:e5:1b:4e:f2:4b:11:14:64:dd:04:8e:fb:65:4d:7c:bc:
bd:f1:50:45:6c:66:7c:5e:2c:e9:87:6b:f6:c1:41:41:0b:c2:
43:32:d0:55:c8:cf:b3:47:5e:d9:69:35:1b:f9:d7:f6:c9:b0:
69:af:57:cb:c5:dd:73:7f:77:b9:76:f0:56:52:df:03:18:03:
f3:cb:61:ea:cf:39:06:ca:da:54:cf:7f:75:ea:68:70:bf:fc:
84:28:fb:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 20:12:03 2024 by rpki-client on console-ams.rpki-client.org