Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
File: CjC2NdNXRo1_ky0-H1nVNzz59GU.cer (raw, json)
Hash identifier: LSgJuriPNL3gmOozkjv7HPN4CFlUFaLOztg3r9xPO2U=
Subject key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DC6A7BBABC1A00275D79C8FD5F139F
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:05 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 35085
AS: 57855
AS: 210960
IP: 45.12.184.0/22
IP: 45.95.116.0/22
IP: 2a0e:b700::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:6a:7b:ba:bc:1a:00:27:5d:79:c8:fd:5f:13:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:05 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fb:2c:a3:f9:ad:23:7e:bc:1c:5a:0f:4f:57:
d6:18:f3:e7:7e:d9:90:89:bf:57:37:9d:57:f9:8c:
2e:48:ac:bf:0f:ab:df:5e:31:5b:ab:bb:1a:8d:6b:
3f:58:b9:25:76:22:2d:4a:9c:4a:71:66:c5:2a:da:
31:bc:7d:c9:28:da:85:c7:b4:0a:e7:45:73:6d:df:
61:31:64:de:f7:44:a9:90:9c:10:47:6f:b0:b9:e5:
e3:61:d0:dc:9e:de:be:b7:75:9c:c5:93:04:4e:7e:
2c:64:d9:b1:64:c8:78:4d:7f:9a:45:c0:53:f4:cf:
2d:83:02:6f:29:b7:3e:f8:95:7b:24:f8:7c:6e:09:
2e:89:08:8e:38:d4:71:83:4d:af:ff:c3:e1:ec:40:
8a:eb:94:42:8b:db:08:75:de:29:72:f4:f2:16:3c:
50:ba:2e:e5:90:ec:59:a5:75:4c:53:31:6c:f8:c6:
5f:ec:13:a9:0c:09:16:65:a2:9c:63:cf:67:69:14:
34:7f:09:39:5b:47:a6:a4:46:37:d9:99:6f:a7:e5:
aa:72:b2:54:9a:ee:79:44:bf:98:3a:13:45:f1:10:
dc:da:ae:8c:7e:96:f4:40:d0:8f:62:7f:9b:9c:ba:
be:01:cc:07:c3:4c:0d:e5:f2:e3:99:b5:ec:10:a2:
87:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.184.0/22
45.95.116.0/22
IPv6:
2a0e:b700::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
35085
57855
210960
Signature Algorithm: sha256WithRSAEncryption
8d:22:5e:18:97:11:07:c3:25:17:46:29:1a:4c:28:e9:a5:8f:
27:f8:2f:15:7f:b6:d8:3e:1e:94:27:55:4c:6e:7a:05:2c:31:
b1:4f:a2:b5:73:43:30:c3:1d:0a:2d:2d:9d:6b:1f:6e:b8:41:
de:f6:8b:66:41:8d:31:0a:d0:a4:8a:ee:15:57:2c:86:4a:28:
39:91:7d:b3:9a:38:2c:45:79:de:4e:9b:87:b6:c0:f5:88:d0:
4f:0d:c7:d7:e3:fa:78:ad:18:fd:be:f7:f0:61:30:d8:14:38:
67:37:e9:e4:a8:fb:8c:9b:a5:26:c3:fe:f4:b9:5b:86:f4:24:
0c:78:40:a2:de:09:70:24:80:d1:47:8b:e6:0f:86:0d:70:82:
b6:ea:27:cf:d0:85:34:48:a7:ce:db:77:6b:8c:fe:89:a2:ec:
e6:78:9f:7c:df:80:5e:b5:e1:bc:e0:a2:24:85:04:8c:f8:0f:
02:93:69:de:eb:8f:77:9d:f3:a7:89:ae:19:72:5a:cb:20:59:
6f:37:b9:c8:76:3f:95:9a:6f:9e:f0:78:e5:ac:09:07:c6:ab:
4b:e0:be:2f:7d:31:c1:99:cb:87:1a:23:c0:8b:39:d8:d7:29:
e6:1f:a4:97:1e:52:96:a5:13:85:39:69:20:9f:26:e0:58:bd:
60:c9:89:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:40:00 2024 by rpki-client on console-fra.rpki-client.org