Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DS7-O2P6myp5MsW17IVLcMPxiDk.cer
File: DS7-O2P6myp5MsW17IVLcMPxiDk.cer (raw, json)
Hash identifier: ZatbHmiyo+yBRaOBiGMriPikd+YKzEiSK1naL+T/Isg=
Subject key identifier: 0D:2E:FE:3B:63:FA:9B:2A:79:32:C5:B5:EC:85:4B:70:C3:F1:88:39
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01926C532328E585BF27E40EF4593D6F3EAD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/DS7-O2P6myp5MsW17IVLcMPxiDk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 08 Oct 2024 13:30:40 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 215120
IP: 91.227.33.0/24
IP: 93.157.142.0/24
IP: 193.178.186.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 26 Nov 2024 16:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6c:53:23:28:e5:85:bf:27:e4:0e:f4:59:3d:6f:3e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 8 13:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d2efe3b63fa9b2a7932c5b5ec854b70c3f18839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e2:4a:3d:66:69:d6:51:a5:96:15:f9:d9:b5:
6a:bc:7c:94:b0:4a:bd:7f:e7:04:de:96:62:ed:f6:
71:72:0c:6d:b9:88:3d:d9:43:8b:53:17:cf:b0:99:
84:66:5e:71:81:01:74:e6:ca:d2:45:83:ef:c9:76:
04:91:9f:e0:d6:fa:5c:29:10:9e:bb:44:37:a8:70:
8c:f8:a1:61:3f:38:77:e6:0b:e0:c6:f0:59:0f:12:
87:ac:73:59:d8:3d:b0:df:db:c5:2a:bf:65:79:ca:
10:69:07:22:f1:c5:97:a8:be:89:52:64:4d:69:d5:
0d:55:b8:43:cb:b5:81:e4:ce:f5:21:5f:e1:48:fc:
a3:dc:92:e6:39:f3:25:b6:fe:93:15:9f:0f:18:15:
61:60:6d:1d:be:14:e2:3a:bc:8d:a2:4c:a2:5a:9e:
a4:29:df:1a:fb:49:34:24:06:d6:e7:8f:44:f2:33:
f8:31:00:9b:9c:5c:90:96:dd:1a:5d:56:f4:bc:f5:
40:3f:d9:df:e3:5f:5f:5b:10:81:c6:5a:6e:d7:b4:
67:52:8f:9d:f2:cd:60:71:cc:6b:9b:9b:7c:1b:87:
a2:23:fa:a7:06:23:95:8a:dc:e2:1a:d1:b0:fc:ff:
1b:97:0d:9c:e6:a7:10:3c:5c:f8:37:6c:2b:49:99:
bc:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2E:FE:3B:63:FA:9B:2A:79:32:C5:B5:EC:85:4B:70:C3:F1:88:39
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/ae0a93-f690-4e36-befa-91a349e77478/1/DS7-O2P6myp5MsW17IVLcMPxiDk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.33.0/24
93.157.142.0/24
193.178.186.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
215120
Signature Algorithm: sha256WithRSAEncryption
4e:84:e6:84:d4:b5:49:63:ec:95:0a:8c:49:67:f7:d3:2e:6b:
78:a4:23:45:5c:75:91:f2:21:ac:15:73:6f:cd:cc:7d:75:c2:
28:90:17:11:58:63:a1:8b:8c:15:4a:4a:af:e2:6c:b6:23:8e:
05:2f:73:6f:66:53:4e:e3:6b:56:3e:bd:39:86:af:19:c7:53:
58:31:44:ab:26:7c:a5:df:64:a9:b8:8d:e2:89:17:74:09:5d:
d7:1c:74:8f:af:ea:a4:c6:fa:a0:44:9c:6f:2c:67:62:1e:41:
8b:f8:64:aa:67:20:ea:7b:a2:ca:c7:97:e1:ba:cb:1a:a9:f7:
0f:ad:82:2a:83:d2:28:71:1c:47:a7:ea:87:73:fa:0f:0d:52:
51:41:37:bd:e6:51:c2:45:d1:26:16:54:86:0b:8e:61:65:e1:
e6:18:d2:36:10:1e:85:d5:b5:23:b3:d4:ea:30:ad:90:0a:3c:
51:b2:87:df:bc:a1:3c:84:a1:cc:3b:a1:e8:8c:63:90:a8:9d:
9e:51:fd:e7:ae:d0:88:a8:8a:78:e1:5b:34:60:f6:d9:c0:08:
0c:01:5b:0b:f6:71:5d:50:c0:b6:a4:c2:da:4a:73:2f:66:fb:
4c:0a:a1:1a:fe:46:00:28:45:bf:89:d8:93:22:e2:68:d5:a2:
7c:38:ee:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 26 00:44:42 2024 by rpki-client on console-ams.rpki-client.org