Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/C_4rJzg320FmbWipe8esN9zJbyA.cer
File: C_4rJzg320FmbWipe8esN9zJbyA.cer (raw, json)
Hash identifier: 3gPdwjIcKlD1O8nBSAD7cPw7fno9WjcLAOGiRBz9sg4=
Subject key identifier: 0B:FE:2B:27:38:37:DB:41:66:6D:68:A9:7B:C7:AC:37:DC:C9:6F:20
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190FAF18C3C3E7FB931F1404BB0AAE71E37
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/feb927-7a83-403a-a1c1-eb1e91644f2d/1/C_4rJzg320FmbWipe8esN9zJbyA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/feb927-7a83-403a-a1c1-eb1e91644f2d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sun 28 Jul 2024 20:04:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 210116
IP: 217.147.0.0/22
IP: 2a0e:dcc0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fa:f1:8c:3c:3e:7f:b9:31:f1:40:4b:b0:aa:e7:1e:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 28 20:04:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bfe2b273837db41666d68a97bc7ac37dcc96f20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7a:da:67:e2:c4:04:0d:94:ab:97:b8:b3:03:
ba:b1:c9:dd:bd:33:7b:a7:5d:5d:eb:fb:a7:52:20:
fe:f2:a6:5f:51:4a:46:ad:92:12:b6:1a:cb:72:fb:
75:f7:e0:1d:f6:b0:29:f3:2a:79:fa:c7:e9:33:ff:
0e:80:d0:96:79:c0:1c:63:3d:92:e8:34:e2:0f:71:
68:da:cc:49:7c:a5:74:5b:25:3d:65:90:74:48:c9:
91:ea:36:27:7c:f5:d8:74:19:55:7d:01:cf:a9:50:
d6:45:35:58:8c:cc:37:88:67:0b:26:f1:2a:9a:71:
4e:65:53:73:d3:f0:71:02:d9:35:0c:05:ee:32:ec:
29:fa:a1:e9:77:19:6d:b0:ba:cd:9d:2b:5f:e0:0a:
05:47:e2:9b:49:de:59:9b:96:ea:f8:e9:fc:aa:8a:
35:c5:32:f0:39:73:af:62:4a:a7:b3:14:ec:6d:98:
29:56:92:25:0e:a8:dd:17:27:bb:d8:87:b9:55:64:
18:72:ae:41:92:52:ff:f3:17:f8:53:38:94:d3:cb:
f9:39:a0:a8:24:81:06:ad:68:62:fe:44:9a:00:e9:
57:38:87:bc:0e:e9:8a:96:1d:ca:dc:58:73:58:7d:
45:46:4b:34:05:9c:49:a2:60:f2:0f:1c:d8:f9:88:
51:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:FE:2B:27:38:37:DB:41:66:6D:68:A9:7B:C7:AC:37:DC:C9:6F:20
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/feb927-7a83-403a-a1c1-eb1e91644f2d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/feb927-7a83-403a-a1c1-eb1e91644f2d/1/C_4rJzg320FmbWipe8esN9zJbyA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.0.0/22
IPv6:
2a0e:dcc0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
210116
Signature Algorithm: sha256WithRSAEncryption
57:9e:e8:8a:62:40:b8:9b:d3:d7:09:21:ab:84:04:06:40:01:
78:44:e2:b7:61:05:cf:21:52:12:2b:48:7d:62:a2:19:ed:cf:
75:4f:ce:00:06:6d:13:ec:c3:34:9a:8b:96:e7:a3:0d:b1:13:
76:c9:a0:5c:48:e3:d3:f6:50:7f:06:02:79:94:76:45:7a:07:
20:35:94:af:09:6a:42:54:8f:d8:92:3f:21:06:07:94:e4:9b:
29:88:6a:1d:98:7f:c4:4f:eb:80:8c:bf:31:c7:9b:96:48:66:
ff:b9:ed:57:a5:67:0b:c3:1a:5b:20:a6:bf:08:ba:8d:d7:38:
f4:f9:3e:f5:52:8e:7b:dd:be:01:c7:af:01:d8:8d:a6:cc:20:
26:fc:ba:a4:ce:c5:c2:40:d7:96:c5:17:c2:70:82:f3:a2:17:
4a:77:2d:e9:6a:96:16:c5:f0:32:74:6a:77:c6:f9:d1:0a:38:
53:7a:ce:2a:d4:41:18:f0:a6:89:d8:5e:a0:90:32:26:f9:f5:
a5:ba:94:75:18:e1:19:ee:58:7a:fe:3b:d7:74:54:7d:13:c5:
16:aa:15:9d:a4:2c:cd:6f:cb:e5:4d:ab:be:fe:14:2f:42:74:
cf:1f:cc:e1:92:a9:d5:b9:67:05:9c:17:bb:95:29:5f:7f:cf:
5a:2c:ff:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:46:41 2024 by rpki-client on console-ams.rpki-client.org