Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9EYNZVTVgeu4DjnkUBXNfTbZP2Y.cer
File: 9EYNZVTVgeu4DjnkUBXNfTbZP2Y.cer (raw, json)
Hash identifier: XMYQcbkLeXNsoLtnHNXxPOk+PwD1uBXLQ5ceiH2LGpU=
Subject key identifier: F4:46:0D:65:54:D5:81:EB:B8:0E:39:E4:50:15:CD:7D:36:D9:3F:66
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC803027ACFB179AA29A27A0C9FF31743
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/9EYNZVTVgeu4DjnkUBXNfTbZP2Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:31:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15752 -- 15753
IP: 149.177.128.0 -- 149.179.255.255
IP: 149.180.128.0/17
IP: 149.181.128.0 -- 149.185.255.255
IP: 149.187.0.0/17
IP: 149.189.0.0/16
IP: 149.191.0.0 -- 149.196.255.255
IP: 193.29.160.0/20
IP: 193.36.173.0/24
IP: 194.53.121.0/24
IP: 194.127.154.0/23
IP: 2a12:3680::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:03:02:7a:cf:b1:79:aa:29:a2:7a:0c:9f:f3:17:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4460d6554d581ebb80e39e45015cd7d36d93f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:67:52:d3:e9:1b:0b:9c:0f:90:09:33:1d:c4:
c2:4b:db:09:4f:de:37:ea:f8:66:a6:d7:b7:07:bf:
cf:8e:55:3b:75:60:29:b3:8d:48:00:73:0b:10:31:
2b:f0:00:6f:f5:1d:c0:6f:dc:28:d1:ec:2c:d4:e0:
96:ea:79:90:03:f0:6d:40:4e:92:a2:11:78:f3:86:
36:ca:f2:7f:6f:ab:db:17:cf:5f:60:3c:d9:5f:56:
71:3e:7b:bb:40:ed:24:ab:d5:05:65:8c:10:d0:31:
a7:cc:b8:de:b3:06:c6:16:39:70:47:a7:fa:3a:59:
c6:d7:6c:1d:d4:72:a5:d0:3e:6c:23:dd:c4:c4:22:
52:7b:ca:b3:52:1c:df:30:74:78:f0:2f:99:e6:be:
9e:2e:13:13:71:a1:a8:43:94:e9:71:a8:2d:a2:28:
08:b3:c7:b4:8d:46:4b:ee:1c:3b:8a:f6:ef:08:3f:
aa:96:ab:75:a4:1c:84:18:d7:03:6f:fa:81:a1:80:
04:d7:88:50:d3:1b:e6:02:a5:8c:52:1e:cd:86:44:
b4:1c:fb:19:c7:cd:b4:b3:94:28:ed:1f:3b:ab:15:
15:7c:61:ff:eb:fd:32:56:b4:b6:28:df:23:44:e9:
58:40:fc:07:b3:54:4f:19:b2:2a:6b:06:d0:a7:da:
36:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:46:0D:65:54:D5:81:EB:B8:0E:39:E4:50:15:CD:7D:36:D9:3F:66
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/9EYNZVTVgeu4DjnkUBXNfTbZP2Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.177.128.0-149.179.255.255
149.180.128.0/17
149.181.128.0-149.185.255.255
149.187.0.0/17
149.189.0.0/16
149.191.0.0-149.196.255.255
193.29.160.0/20
193.36.173.0/24
194.53.121.0/24
194.127.154.0/23
IPv6:
2a12:3680::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15752-15753
Signature Algorithm: sha256WithRSAEncryption
77:f9:1f:da:a1:97:9f:83:73:8b:e4:e2:8b:f6:e2:e1:4b:d1:
14:24:a7:de:fa:82:80:51:66:49:4a:be:69:fb:4b:2c:9f:65:
53:f1:47:cf:82:bf:01:5e:bf:59:e6:4f:20:7a:3f:41:3b:4a:
86:81:00:49:5e:97:4a:40:86:15:a4:a2:8e:98:f1:5d:be:ec:
9b:84:c0:60:db:1a:44:57:3e:9a:c7:63:91:3f:7f:62:3b:71:
36:b6:d6:db:87:15:bc:4f:75:c5:36:f2:db:82:5a:7a:8e:20:
ab:19:1a:a3:3d:fc:39:70:d4:a7:5b:5c:37:0f:9f:71:34:a2:
db:f7:af:bc:28:c2:bb:af:82:58:a8:49:f5:9d:10:74:b2:36:
b0:ce:e8:c5:f5:6f:28:d3:9c:41:1c:04:a7:95:54:d0:90:2a:
e9:d5:56:3d:5f:98:3c:04:6c:d6:af:55:f6:ab:44:0b:5d:64:
1a:88:df:ec:10:9d:f3:a3:3a:93:b7:80:f1:6b:e7:2b:fd:a7:
a0:31:f4:63:b0:bf:bf:d5:27:25:6b:73:ae:fe:f5:dc:04:ac:
92:35:71:c7:a2:25:7a:5c:5c:9b:ea:2a:85:c6:85:b4:45:9f:
55:d8:eb:ef:73:d2:10:96:09:11:c0:23:37:1f:57:52:3b:2a:
b0:cc:6e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:04:04 2024 by rpki-client on console-fra.rpki-client.org