Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DiKD5uavmRQidDcR96cjE3aA5p4.cer
File: DiKD5uavmRQidDcR96cjE3aA5p4.cer (raw, json)
Hash identifier: b0EC0L6uupznAzyysbD22PXRXcLoIrFF6RvWBSJ+R7I=
Subject key identifier: 0E:22:83:E6:E6:AF:99:14:22:74:37:11:F7:A7:23:13:76:80:E6:9E
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190618831ABD2F344BCDB467C54691E1C64
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/DiKD5uavmRQidDcR96cjE3aA5p4.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Sat 29 Jun 2024 01:07:13 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204641
IP: 45.80.148.0/22
IP: 185.244.128.0/22
IP: 2a0d:2f80::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 21:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:61:88:31:ab:d2:f3:44:bc:db:46:7c:54:69:1e:1c:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jun 29 01:07:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e2283e6e6af991422743711f7a723137680e69e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:c5:ac:d6:af:51:2b:3f:af:60:9c:14:6f:
93:68:7e:78:08:3e:90:0a:1b:ad:eb:25:a4:c8:75:
84:35:8d:1b:d6:c2:56:d9:7d:25:d3:68:0e:c9:04:
e5:34:e7:12:bf:49:c2:54:fa:62:5e:20:33:c7:93:
71:c3:4a:58:07:be:af:46:31:03:4b:22:e2:9c:07:
36:bb:9c:6e:68:f3:72:63:60:bc:76:0c:9f:f6:dd:
49:90:93:f4:c2:fa:0b:79:8c:ae:ec:0e:3e:76:6c:
93:fd:92:fe:49:ef:92:13:28:b2:62:06:72:fc:aa:
e8:4b:e2:d5:b4:e8:50:28:e1:dd:94:1b:b9:13:f4:
03:b3:63:a5:52:88:5c:d0:db:b7:1b:ba:79:83:0d:
38:8b:6b:31:db:fc:2b:15:6e:79:1e:9f:f1:f7:88:
a8:48:88:30:fa:05:de:6c:a3:96:2a:a0:eb:95:7e:
47:2e:55:67:af:2d:ef:0d:45:2f:96:f9:a9:a4:b2:
9c:a2:56:d2:3c:d1:7e:c2:10:bb:d4:5e:22:5c:16:
49:c5:fc:cc:45:61:42:75:d9:20:1f:50:db:16:e3:
5a:23:0e:30:fb:fa:8e:a6:9a:77:21:f8:ce:57:b5:
97:ed:e0:65:50:89:ee:71:4e:1b:29:dc:c1:d9:94:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:22:83:E6:E6:AF:99:14:22:74:37:11:F7:A7:23:13:76:80:E6:9E
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/84750f-76c4-41ee-8517-e0adab7f1112/1/DiKD5uavmRQidDcR96cjE3aA5p4.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.148.0/22
185.244.128.0/22
IPv6:
2a0d:2f80::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204641
Signature Algorithm: sha256WithRSAEncryption
7a:88:d1:a2:81:05:e2:59:28:98:8d:b6:5b:1e:54:25:b0:90:
3f:e4:a0:77:eb:20:ce:3c:e5:72:4a:92:83:86:0f:35:80:12:
05:3a:3c:27:72:b2:2d:13:10:d1:63:b5:b5:70:e2:b4:7a:e5:
e6:b0:94:a6:95:77:9d:65:58:fa:69:74:42:d4:33:63:ab:ee:
8a:89:0d:0d:ba:f1:28:76:07:c9:cf:72:fe:7a:97:83:7e:4c:
35:9c:02:3a:8a:52:ce:09:b3:7b:2f:0c:96:6a:12:34:4c:0a:
a3:c9:cf:e7:a7:5f:e4:a1:e9:e9:1a:fc:dc:40:60:85:a6:99:
27:23:96:26:66:6e:b2:55:43:9c:36:0f:21:b5:ec:da:9c:3f:
9a:e8:6d:af:a8:2f:07:17:c3:c2:d1:f4:4a:9a:75:ba:70:15:
5b:a5:9c:72:f6:1a:81:7c:17:e2:ed:4c:dc:fc:41:1d:78:72:
f5:ca:9f:ae:1c:8f:a0:6a:ae:48:a1:cc:b8:d8:2d:a9:06:a0:
1e:ee:8d:77:84:90:8d:88:ee:db:6e:f9:35:bf:4c:f5:73:da:
5f:72:21:b3:96:08:4a:62:c0:57:e3:22:9e:99:27:cd:dc:ea:
98:0a:fd:3e:a1:7d:37:e4:ef:cb:9e:02:fd:24:ac:3f:89:64:
be:39:b5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:27:57 2024 by rpki-client on console-fra.rpki-client.org