Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f9GumzY4vNa_bW1-fhlAvg0w0o.cer
File: 9f9GumzY4vNa_bW1-fhlAvg0w0o.cer (raw, json)
Hash identifier: /E2rYk17oV2jpEdtEdndJLJidO749q6TVX+fFnf6i9Y=
Subject key identifier: F5:FF:46:BA:6C:D8:E2:F3:5A:FD:B5:B5:F9:F8:65:02:F8:34:C3:4A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7953D9033CDF0FDD792D25A7A164F7D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/9f9GumzY4vNa_bW1-fhlAvg0w0o.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:35 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 15915
IP: 185.140.64.0/22
IP: 213.194.128.0/18
IP: 213.195.64.0/18
IP: 2a01:1a0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 13:25:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:3d:90:33:cd:f0:fd:d7:92:d2:5a:7a:16:4f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f5ff46ba6cd8e2f35afdb5b5f9f86502f834c34a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:41:5d:58:20:62:3b:4b:01:19:5d:37:06:fc:
e5:57:f0:53:35:6a:eb:62:d9:d6:49:20:32:33:3e:
6b:fd:4c:40:25:fc:ee:f2:a3:72:36:6f:fc:db:9f:
b4:77:3b:8f:f7:9b:df:58:90:35:4e:aa:d7:29:4a:
48:bb:25:97:33:5e:8a:78:e0:00:50:5d:39:40:ca:
a9:43:88:35:21:1a:78:be:db:5b:ba:e0:f2:74:1e:
97:65:31:61:42:e8:74:5f:f5:e8:36:38:14:40:0d:
1f:d8:3e:5d:2f:87:17:cd:05:5f:13:08:cf:36:53:
0e:d1:4b:10:67:d5:9a:0c:e5:52:0c:28:47:dc:7e:
be:d5:41:13:44:38:ae:b1:2f:f6:6c:ff:45:75:de:
38:35:ea:3d:75:07:a6:4a:ab:d2:03:d3:37:03:8c:
be:f6:9c:67:2d:e4:b8:b0:19:ba:24:4e:4b:18:d5:
41:1a:47:6e:34:e5:40:3e:f5:6c:b2:97:62:5f:83:
81:d7:5e:7a:db:d1:ac:eb:8c:22:0c:ea:94:b4:ea:
6a:a0:43:05:4f:c5:d1:7f:ff:fd:41:f6:cd:f4:56:
04:11:bd:28:63:66:94:b1:b7:57:1c:43:ba:83:a6:
66:44:6e:73:dc:df:a1:26:b9:a9:4a:93:6d:c5:b1:
c9:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:FF:46:BA:6C:D8:E2:F3:5A:FD:B5:B5:F9:F8:65:02:F8:34:C3:4A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/1fde04-587b-4085-b585-6ad20a2eacb8/1/9f9GumzY4vNa_bW1-fhlAvg0w0o.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.64.0/22
213.194.128.0/18
213.195.64.0/18
IPv6:
2a01:1a0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
15915
Signature Algorithm: sha256WithRSAEncryption
80:b1:49:c8:80:34:92:68:ea:62:af:16:80:84:53:82:fd:53:
79:d0:49:40:73:cc:2b:49:b4:4c:b1:d8:fe:cf:43:ae:b9:e3:
82:11:ea:f7:16:19:c1:6b:b9:42:8c:ee:dc:95:f1:ef:ab:85:
09:76:17:04:38:11:1c:6a:e1:fe:14:5b:69:44:31:d0:4f:d9:
f3:7b:58:4d:af:d5:12:26:c4:3f:30:4d:6b:40:25:a7:00:9a:
10:96:a1:bb:6d:96:4c:33:6e:f2:cd:da:f6:df:a5:66:56:43:
27:8e:16:96:12:f2:56:df:c9:8d:f5:66:78:27:56:27:a7:f0:
8d:b6:76:3a:81:10:65:fd:e6:42:c1:ad:9e:b6:c1:a3:b4:fd:
82:79:b9:54:41:0f:9b:8a:b9:27:26:26:aa:30:76:3d:8c:80:
3e:70:88:b6:5a:33:7f:12:24:7a:2a:92:a5:32:ca:35:11:ab:
66:0a:66:8b:a4:98:42:97:b3:b9:4f:6c:4f:ed:21:66:a2:53:
1f:d9:59:c7:01:f2:df:64:2b:95:1f:53:20:ba:08:42:fb:9c:
2d:a5:ff:e9:10:70:0f:66:a8:34:1f:4e:42:16:96:84:23:bb:
38:0d:14:c8:49:34:c4:50:15:1b:86:de:9f:cc:c0:7e:39:1d:
d6:ac:9f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 14:57:42 2024 by rpki-client on console-fra.rpki-client.org