Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BE1l50JUsl_gDrjqBrtY--aKwZs.cer
File: BE1l50JUsl_gDrjqBrtY--aKwZs.cer (raw, json)
Hash identifier: 0j+p+eMMIgYoB/VtfjG1U2SFSbqPDYT5dy7YYZuVm2s=
Subject key identifier: 04:4D:65:E7:42:54:B2:5F:E0:0E:B8:EA:06:BB:58:FB:E6:8A:C1:9B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4936BB10099D77278825202C076F564
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/28/d39c6c-45e1-4126-a4e2-40438a999414/1/BE1l50JUsl_gDrjqBrtY--aKwZs.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/28/d39c6c-45e1-4126-a4e2-40438a999414/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:44 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 176.123.12.0/22
IP: 185.137.144.0/22
IP: 2a07:4c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:6b:b1:00:99:d7:72:78:82:52:02:c0:76:f5:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=044d65e74254b25fe00eb8ea06bb58fbe68ac19b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:f0:75:95:5d:aa:2a:73:26:30:44:89:22:ef:
f0:71:75:90:8f:1d:56:0e:7d:6f:3f:1a:cb:3b:89:
f2:2c:ef:f8:28:51:cd:f0:fe:8e:e2:3c:b5:8e:e6:
9e:ba:42:1a:4a:41:c2:1d:90:b8:1e:b4:2a:b8:e0:
db:bf:f9:de:3c:88:1f:f0:0c:05:2f:22:6e:75:43:
12:7c:11:1d:27:d7:cd:69:7f:5c:5e:2b:ad:a8:cd:
10:f7:49:2a:ec:09:a5:6b:f2:a8:6e:6b:91:ee:17:
8e:1b:27:2f:0a:1b:32:73:6e:1f:85:b7:e6:9c:7c:
d0:ab:62:78:a3:1e:09:52:72:cb:e2:f3:cb:33:c2:
6f:a9:d0:4a:de:4f:b9:cd:76:85:bc:eb:e0:2d:9f:
58:c3:5f:57:14:1e:99:87:41:dd:eb:b4:b9:80:eb:
e6:9a:6d:39:79:10:26:2c:eb:d7:46:8b:c5:20:f6:
af:88:35:05:89:93:cc:ce:90:a5:34:24:eb:ab:7a:
97:3b:64:5f:14:d8:a3:b4:c6:74:bb:89:94:32:69:
b4:7f:5a:56:b0:88:6f:d3:99:ec:35:73:17:38:42:
1b:19:6b:f8:14:a7:c7:2b:52:87:c2:89:2e:57:f9:
ba:71:31:8f:ce:b3:3b:99:b2:92:3b:6b:48:80:87:
00:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:4D:65:E7:42:54:B2:5F:E0:0E:B8:EA:06:BB:58:FB:E6:8A:C1:9B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/d39c6c-45e1-4126-a4e2-40438a999414/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/d39c6c-45e1-4126-a4e2-40438a999414/1/BE1l50JUsl_gDrjqBrtY--aKwZs.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.123.12.0/22
185.137.144.0/22
IPv6:
2a07:4c0::/29
Signature Algorithm: sha256WithRSAEncryption
52:e0:4b:ab:dc:cc:59:b2:1b:2f:de:8b:91:79:d9:d3:0f:f5:
d3:77:f0:77:8a:6d:a9:79:e8:2b:25:d2:1e:2c:78:c4:02:c5:
be:7e:9b:b2:d7:37:f8:4b:31:32:c1:88:ac:eb:8c:79:8f:ce:
41:fb:a1:40:b5:f3:ae:a6:15:95:17:82:17:00:6d:61:c0:be:
03:b0:19:5a:bd:2d:37:93:e8:cf:11:b9:6d:a4:77:cc:54:60:
a3:b0:ab:74:25:f7:6e:81:cf:2c:51:ba:f1:bb:af:4d:99:8c:
91:95:6c:f5:03:5e:f5:fb:2d:91:a8:5c:c4:ee:81:1e:c6:e9:
5d:5e:45:9b:f3:3f:4c:34:2d:e5:bd:d8:4a:96:2c:02:a7:77:
35:26:8e:de:68:62:87:a1:0d:10:3b:7c:08:3b:88:2f:b2:08:
72:95:27:7b:0e:97:15:13:ee:21:74:e9:b1:fc:1d:a0:14:58:
6b:de:b2:de:30:a4:31:5a:5c:91:32:5b:54:57:03:48:d1:bf:
cd:b9:b8:ea:88:90:25:31:39:7b:f1:d8:34:ba:0f:5f:ee:d3:
f6:0a:74:9b:c4:18:f1:d9:b7:39:71:f0:a5:0f:1c:7e:99:fb:
3c:1b:31:c2:7b:89:3a:45:d8:17:eb:6a:64:40:02:22:d7:99:
2f:94:6f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:46:22 2024 by rpki-client on console-ams.rpki-client.org