Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Bk3NDucBTvsuO1VPu3BjhO8R0FE.cer
File: Bk3NDucBTvsuO1VPu3BjhO8R0FE.cer (raw, json)
Hash identifier: Yb++g1UER+Hi2c/zIt/UjNG3SBx8W2FXboPKrPjFxfo=
Subject key identifier: 06:4D:CD:0E:E7:01:4E:FB:2E:3B:55:4F:BB:70:63:84:EF:11:D0:51
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B8D97E93385D19ED9D7CB15FAEB8FE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/Bk3NDucBTvsuO1VPu3BjhO8R0FE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:30:52 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209830
IP: 193.135.120.0/22
IP: 193.141.23.0 -- 193.141.24.255
IP: 2a09:fb00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d9:7e:93:38:5d:19:ed:9d:7c:b1:5f:ae:b8:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=064dcd0ee7014efb2e3b554fbb706384ef11d051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:eb:11:59:db:33:05:92:2d:64:2b:3c:c2:af:
ce:07:2f:8f:8f:7d:18:b6:ed:85:df:64:c4:11:29:
9a:be:f4:59:bc:49:39:78:84:fb:c7:30:f5:41:f5:
be:71:51:6e:9d:af:30:2e:af:ab:7a:c8:67:71:3d:
a4:82:09:6f:7d:0d:4d:be:02:63:76:ee:61:f2:60:
33:f3:49:6f:30:8c:22:be:ee:15:48:34:b1:c5:05:
da:3c:87:50:a7:84:0a:e8:da:a0:3b:c9:bb:66:41:
31:9d:92:fb:d6:a4:a5:22:6e:db:ad:0a:99:ce:6e:
fc:84:29:61:6b:8f:cd:4e:7d:27:8e:22:7d:4a:5b:
b6:36:9a:2a:05:94:e0:72:42:62:9f:ae:29:33:d7:
c4:fb:56:4c:b8:e4:3c:58:ad:b9:b0:7f:11:e9:4a:
6d:f3:57:48:8c:8b:17:e9:a1:67:48:41:e7:14:6e:
67:ac:a4:5f:9a:db:7d:a9:9b:46:79:ed:c9:e6:ff:
15:94:bb:53:3e:8b:01:32:92:7c:4f:c4:00:d0:e2:
b7:45:b2:70:cf:76:c2:05:5e:f9:99:cf:f9:3e:18:
9c:f6:1a:53:e5:18:93:94:6b:c6:65:0a:69:1e:4a:
8a:6c:aa:57:17:0d:b3:c0:d6:6e:cf:17:82:60:ca:
99:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4D:CD:0E:E7:01:4E:FB:2E:3B:55:4F:BB:70:63:84:EF:11:D0:51
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dcb08c-5515-445c-ad99-fb4740fda250/1/Bk3NDucBTvsuO1VPu3BjhO8R0FE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.120.0/22
193.141.23.0-193.141.24.255
IPv6:
2a09:fb00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209830
Signature Algorithm: sha256WithRSAEncryption
05:6b:7a:af:90:08:4b:92:61:f1:60:01:cd:9f:e6:24:64:99:
53:c1:ec:3e:1f:19:03:31:fe:20:b0:c0:82:89:7a:80:73:3b:
de:d0:98:67:49:44:1c:5e:c8:18:65:eb:18:9c:95:d4:1c:20:
1c:17:af:4a:8a:f4:34:c9:c1:fa:2a:0b:dc:11:ab:8b:c9:67:
11:85:27:9b:76:ce:fa:36:28:54:73:97:1f:e8:79:fb:49:fe:
7e:ef:34:9f:19:21:70:2d:ce:f0:ee:44:ea:9f:a7:44:20:77:
af:bf:d4:c6:ec:06:31:c6:3d:02:ee:cb:33:47:b3:3e:b7:60:
ca:95:5a:d4:d3:c3:5a:f8:9f:0f:35:d7:56:27:ee:c1:cc:be:
c2:6f:e4:3e:8b:08:07:61:36:3f:df:f2:cc:17:22:3c:10:ff:
a5:87:46:ca:ec:f9:73:b9:c1:4c:cf:33:82:b2:23:89:ef:6f:
96:aa:15:f5:7a:b7:57:ca:41:a9:a2:19:3e:eb:7d:88:ca:8e:
47:0c:1f:50:eb:e6:18:76:3b:98:7a:e1:76:9b:28:0a:f0:34:
0f:f8:a9:d6:22:24:df:45:f4:74:e1:4c:f8:d6:51:bd:ef:ec:
5d:27:c1:c9:b4:90:93:e1:8f:e9:50:2a:cc:e4:8e:3f:a3:12:
db:c5:6d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:04 2024 by rpki-client on console-fra.rpki-client.org