Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8AoiTeba0aHtExtflbgyMaKryvE.cer
File: 8AoiTeba0aHtExtflbgyMaKryvE.cer (raw, json)
Hash identifier: O7Jl2RgUQpcGdFP/E9l4bRGeU08uFeZRCugl1kmGw9Y=
Subject key identifier: F0:0A:22:4D:E6:DA:D1:A1:ED:13:1B:5F:95:B8:32:31:A2:AB:CA:F1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01927111EC285E796781D3DEB1C6A784AC5A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/8AoiTeba0aHtExtflbgyMaKryvE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 09 Oct 2024 11:37:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43362
IP: 78.108.80.0/24
IP: 78.108.82.0/23
IP: 78.108.86.0 -- 78.108.95.255
IP: 83.220.164.0/23
IP: 178.250.240.0/21
IP: 185.84.108.0/23
IP: 2a02:dac0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:11:ec:28:5e:79:67:81:d3:de:b1:c6:a7:84:ac:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 9 11:37:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f00a224de6dad1a1ed131b5f95b83231a2abcaf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d0:d4:e5:1b:ac:df:b3:16:f0:6e:d6:d6:68:
0c:7e:68:5a:fe:f8:04:04:f2:d3:76:f5:7d:eb:f9:
25:6c:ee:c1:5e:21:6f:56:13:e4:76:6a:58:1a:b9:
39:aa:7e:8f:ee:cc:79:2c:fb:7f:44:bc:7e:7a:e2:
dc:a4:31:81:9b:70:c1:49:1a:fb:bb:bf:37:44:5c:
81:14:dc:0b:78:d4:32:31:ff:3e:24:b6:ce:1c:cb:
df:32:43:03:db:2d:90:0f:71:64:1d:fc:a8:3f:25:
d6:af:c8:8e:97:7a:61:70:6e:ce:c7:a9:9c:ca:f6:
68:79:ba:2c:a4:75:cd:90:6c:35:b4:36:a6:39:f5:
fd:2b:6e:f0:c0:43:5c:23:39:14:33:b0:7a:48:7e:
21:02:39:11:72:a8:ec:71:6f:7d:02:05:bc:e5:f1:
f4:4a:07:bc:bb:32:82:bb:27:f6:aa:78:c6:df:d9:
74:e7:42:ba:2d:56:f5:a1:dc:00:d9:e6:96:db:53:
f8:3d:6e:fb:58:e1:b2:f9:f7:86:a1:9a:e3:8d:8f:
d6:ab:f2:ce:54:3f:14:d1:97:f4:a3:5c:f5:28:97:
47:0d:ee:b4:91:bb:47:3b:92:a7:3d:05:13:e4:f1:
00:38:27:fd:7e:4f:40:fe:56:0f:25:ec:91:b7:36:
da:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:0A:22:4D:E6:DA:D1:A1:ED:13:1B:5F:95:B8:32:31:A2:AB:CA:F1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/8AoiTeba0aHtExtflbgyMaKryvE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.80.0/24
78.108.82.0/23
78.108.86.0-78.108.95.255
83.220.164.0/23
178.250.240.0/21
185.84.108.0/23
IPv6:
2a02:dac0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43362
Signature Algorithm: sha256WithRSAEncryption
3f:7f:c8:37:4f:c4:0b:54:e7:82:e5:cd:41:15:d4:c5:a7:cf:
5e:3a:91:25:8e:ee:b5:17:f8:9c:82:32:fd:8b:a0:d1:17:15:
98:36:e8:28:9f:69:01:dd:b5:79:06:4a:6e:c2:8a:22:94:5e:
00:68:f6:eb:18:bb:29:42:6a:b1:a2:d6:b0:96:76:f6:a0:83:
3b:8a:e9:bb:2a:44:32:91:2d:de:44:f6:ad:db:1e:c4:9b:d0:
06:21:dc:75:0d:63:db:35:99:97:b4:71:71:e0:56:5d:e1:09:
2e:48:d1:42:c6:a0:04:3b:b6:ab:ed:ac:dc:13:30:89:d2:31:
ff:9e:84:0c:75:84:c2:39:51:ea:6b:d1:72:03:81:09:4c:b8:
7d:4e:2c:17:15:75:73:1b:cd:4f:92:42:db:60:26:4e:c5:c0:
bb:7d:b2:ce:a9:b3:da:08:26:f8:02:ea:cb:ae:4c:61:00:a2:
05:57:52:9a:e2:a7:f2:db:da:8a:b8:c2:ba:85:c8:95:64:fe:
e9:3d:ef:3a:ae:ea:b9:78:c1:78:2a:65:4f:40:39:e2:cc:58:
73:c7:10:11:83:f6:d7:6c:8e:59:87:6c:37:fa:06:e2:87:35:
b4:a6:9c:81:84:ca:ba:2a:1f:08:3f:c6:b8:99:f1:1f:9c:c9:
d2:66:0c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:46:50 2024 by rpki-client on console-fra.rpki-client.org