Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93n18CiJhaveCYJ-A9eHpSFJ5-w.cer
File: 93n18CiJhaveCYJ-A9eHpSFJ5-w.cer (raw, json)
Hash identifier: PjvOVcR6K93Riz6KqqZg2OVDy1XCzm2b2bUrX1HAeMM=
Subject key identifier: F7:79:F5:F0:28:89:85:AB:DE:09:82:7E:03:D7:87:A5:21:49:E7:EC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DA2569531A1D9A8D7936116BA84E3FF17
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/93n18CiJhaveCYJ-A9eHpSFJ5-w.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 13 Feb 2024 11:59:59 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 29467
AS: 197264
AS: 203789
IP: 5.149.112.0/21
IP: 153.92.48.0/20
IP: 178.251.160.0/21
IP: 185.4.124.0/22
IP: 185.97.244.0/22
IP: 185.123.216.0/22
IP: 2a02:70c0::/32
IP: 2a03:2f00::/32
IP: 2a03:92e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:56:95:31:a1:d9:a8:d7:93:61:16:ba:84:e3:ff:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 13 11:59:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f779f5f0288985abde09827e03d787a52149e7ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:31:93:22:70:f3:6e:76:40:95:5a:0b:d9:56:
9b:8b:bd:e5:a9:d4:92:07:61:1a:54:85:3b:d9:23:
80:a6:8d:f1:5a:33:63:9f:f8:68:d0:9c:09:0a:df:
10:6b:55:6e:76:98:99:83:e2:06:d0:b2:70:82:56:
77:1a:91:e6:b6:4e:b4:5a:8f:b9:42:82:c4:40:5e:
98:26:bf:ac:5b:bb:d6:b7:b0:0d:b1:82:c3:fc:9f:
a8:7b:31:93:45:1a:65:9b:24:86:f5:4e:a8:4b:ed:
1e:b9:06:e9:e7:44:b6:9f:aa:23:3f:7a:07:a5:c0:
7f:f0:56:30:21:16:99:99:2d:bd:f0:23:3f:59:3a:
6e:b1:77:fa:5e:5f:68:44:88:58:37:ae:29:39:d6:
eb:1f:9a:45:02:ad:16:fd:eb:92:cc:2a:93:bc:e3:
ca:3a:0a:d6:f1:ab:cd:b6:db:94:bc:03:e4:9c:7a:
69:f3:e5:55:25:27:4b:fd:8f:85:6f:c6:10:dc:90:
1d:3e:39:a2:7e:a6:2e:3f:e1:4a:ad:a9:67:c7:14:
f1:2d:45:17:b0:33:47:63:86:13:d3:60:c9:35:38:
7a:ea:df:d1:fc:22:0a:48:89:c4:a5:a5:c3:ef:9a:
c0:a6:24:49:d5:0d:df:4e:76:f5:cf:ab:6f:43:d2:
80:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:79:F5:F0:28:89:85:AB:DE:09:82:7E:03:D7:87:A5:21:49:E7:EC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/aed381-45cc-44bc-a5c3-fe7963bec7d3/1/93n18CiJhaveCYJ-A9eHpSFJ5-w.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.149.112.0/21
153.92.48.0/20
178.251.160.0/21
185.4.124.0/22
185.97.244.0/22
185.123.216.0/22
IPv6:
2a02:70c0::/32
2a03:2f00::/32
2a03:92e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
29467
197264
203789
Signature Algorithm: sha256WithRSAEncryption
5f:85:8b:4e:9d:1c:6b:0f:ba:90:8c:ec:ab:b3:62:f1:45:7a:
53:6a:89:7f:46:21:6c:32:4e:24:c2:5f:4c:d3:5d:ee:64:df:
02:11:1b:16:c2:83:5c:c2:53:4a:93:77:78:79:10:ee:5b:9d:
4e:cb:9e:c5:2f:aa:f8:c6:9a:73:0d:ec:f4:2b:4e:f3:e3:83:
dc:5f:c7:21:b4:dc:9b:67:28:51:59:95:e9:df:83:d8:4f:ce:
cc:96:c6:25:c4:c1:ee:b1:ab:e5:c5:db:e9:a7:b4:30:34:c1:
8b:fe:37:00:09:fd:e8:b2:aa:fa:5d:b5:36:65:fb:3d:da:c9:
26:be:01:bd:60:a6:a5:4b:4d:21:7a:0f:cd:f7:bc:3c:64:73:
8d:31:c6:51:c2:ff:b8:99:39:4b:37:df:e6:a2:6e:ff:6c:e6:
20:39:70:29:fb:d5:1d:b6:ac:71:c4:02:0c:da:00:3d:fd:8d:
08:56:c0:ca:6f:df:e5:c4:41:de:56:85:16:5b:9f:fd:33:e0:
24:aa:dc:a6:35:85:9f:36:1e:21:45:ac:af:93:3a:d7:1e:69:
c3:8a:9d:4f:40:75:80:95:dd:4c:c8:1d:9f:17:ec:bd:08:8c:
b8:38:b6:04:c0:15:e2:b2:e4:f4:37:e9:86:6a:0a:ff:6b:f3:
fb:e5:01:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:03:37 2024 by rpki-client on console-fra.rpki-client.org