Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A1DfePx4WBNyTsZmSN-bSU-bjac.cer
File: A1DfePx4WBNyTsZmSN-bSU-bjac.cer (raw, json)
Hash identifier: InK1VG7suKaNA81EJ10vFVynDAcsc1ekvBUkAgMgcLY=
Subject key identifier: 03:50:DF:78:FC:78:58:13:72:4E:C6:66:48:DF:9B:49:4F:9B:8D:A7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B865A58755BD0115E19983790C3EB4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/A1DfePx4WBNyTsZmSN-bSU-bjac.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 59905
IP: 91.220.77.0/24
IP: 147.78.136.0/22
IP: 185.49.220.0/22
IP: 185.92.124.0/22
IP: 2a03:8b20::/32
IP: 2a04:b980::/29
IP: 2a09:2440::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:65:a5:87:55:bd:01:15:e1:99:83:79:0c:3e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0350df78fc785813724ec66648df9b494f9b8da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c6:88:23:07:f8:e2:f9:e6:12:bb:5f:1e:7d:
50:55:ef:81:a1:05:25:2a:ad:c6:91:6a:ec:92:c5:
74:96:94:ec:99:0c:92:23:1e:5f:bb:96:0f:96:5d:
1e:bc:52:94:ab:40:26:04:a9:4e:74:ec:55:4f:26:
74:55:9f:a8:2d:41:0f:2b:84:e6:1c:af:7e:d9:61:
07:77:c0:40:90:6f:16:9d:f4:dc:89:69:81:0b:a2:
57:2d:d4:6e:0f:b0:0e:bc:0a:ce:9d:9c:13:24:c0:
40:fa:54:c0:e7:04:0f:3b:07:5c:97:83:be:56:62:
5e:f4:8f:c3:66:6d:af:b8:31:41:af:cc:7e:0e:cf:
80:7b:82:85:3e:30:6e:b7:83:cb:41:93:8a:29:a2:
b6:2c:11:5c:f7:e2:33:93:4e:80:0b:01:d8:7e:a5:
2f:47:25:e1:39:b7:99:83:b7:5b:54:e3:1e:88:9d:
2a:75:a6:27:d4:87:c8:46:a3:f0:e6:ed:fd:1a:07:
1e:0e:b1:9b:d8:0e:08:41:4f:25:7f:6a:2e:4b:0f:
fd:8b:55:55:fb:56:68:cd:52:03:c3:2f:4b:bb:a2:
41:bd:f6:a3:eb:16:6a:d5:b6:4f:bd:be:ab:e5:d7:
d8:50:d6:b4:d8:d8:e8:e0:a2:08:d3:c7:c4:0c:0f:
5d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:50:DF:78:FC:78:58:13:72:4E:C6:66:48:DF:9B:49:4F:9B:8D:A7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/A1DfePx4WBNyTsZmSN-bSU-bjac.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.77.0/24
147.78.136.0/22
185.49.220.0/22
185.92.124.0/22
IPv6:
2a03:8b20::/32
2a04:b980::/29
2a09:2440::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59905
Signature Algorithm: sha256WithRSAEncryption
11:b3:6a:d5:16:27:cf:29:98:65:0e:d7:95:3f:35:8f:cc:66:
ea:fb:3c:a2:77:4a:eb:99:33:b5:55:0f:02:29:1c:68:f8:79:
4b:8a:63:a8:e1:75:3e:48:40:af:0d:54:74:b5:3e:76:00:a5:
75:12:97:ee:87:c4:68:67:d7:cb:ad:d9:95:fe:df:a5:fb:18:
67:fe:34:40:d1:9c:79:8d:da:6d:93:a0:6b:f8:d1:be:94:ba:
76:dc:44:ea:ee:0a:21:5a:12:d5:2f:42:42:4b:30:f4:2d:cb:
99:5d:cb:79:71:7f:20:2d:86:9d:ba:d8:39:f1:34:d4:eb:78:
a7:11:d3:38:5b:83:b5:49:5d:2b:5a:c9:45:dd:c1:64:8a:09:
79:3c:7b:6c:f7:b7:e6:c3:64:3b:8e:6a:46:7f:ff:cf:88:9b:
2e:ed:61:4f:48:07:e5:02:a1:d6:9d:68:ba:b9:be:1d:fc:c9:
47:7e:5c:72:3d:11:bd:9a:93:d5:be:7a:9b:3f:64:85:dc:79:
cc:9b:03:7e:03:fb:99:e5:33:52:14:24:40:b9:d4:4a:cc:0f:
ee:49:66:81:01:c2:93:2f:33:b6:17:50:45:4a:a3:40:92:02:
87:12:de:f6:67:1d:f0:76:c3:aa:4e:30:cf:62:69:4d:cb:d1:
a5:cb:3f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 02:11:54 2024 by rpki-client on console-ams.rpki-client.org