Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer
File: DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.cer (raw, json)
Hash identifier: wrvInBBuHPObprkaGA8QoTdINMW1qbc21nb4jOWdg6w=
Subject key identifier: 0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8DF7B29E57A598B09CBB869DE3D2FD4
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 06:32:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207505
IP: 104.129.174.0/23
IP: 185.242.219.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7b:29:e5:7a:59:8b:09:cb:b8:69:de:3d:2f:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 06:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ef47d753d25289fd98794974aa0536010567bd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b2:e5:f2:a8:c2:a8:41:0a:17:58:22:2d:4a:
d6:f6:15:cd:f6:8a:5b:4f:ee:d9:20:10:86:df:37:
2e:fe:02:0f:e5:0b:73:99:63:e5:73:2f:6c:7e:79:
a4:e0:f1:3b:ff:90:e4:99:44:10:08:0b:f1:23:e9:
df:a2:db:f9:d3:de:49:9e:ba:19:1a:af:36:43:ec:
5a:36:1d:93:9b:ce:95:ae:65:f2:76:92:bc:8e:74:
e6:5d:cd:2b:ec:2f:f7:5d:1f:84:8f:81:c6:e3:65:
ac:6b:1a:06:11:7b:ed:9b:a3:da:bb:74:f6:46:92:
3e:ad:36:88:fa:86:a1:69:56:be:1e:4e:d6:1d:ca:
d9:98:fd:38:2e:7d:20:1e:f5:9d:3b:8f:2b:47:fc:
f3:b1:39:f9:c4:69:cd:00:cc:96:5a:e0:2a:42:bf:
a4:52:57:a6:07:e9:f4:e0:35:a2:01:9e:b6:80:32:
44:18:76:9b:17:7b:ea:ff:b2:26:a2:91:3f:82:57:
06:c2:b1:db:4c:e9:bf:7c:a1:b1:e4:9c:c1:45:f8:
49:be:35:62:03:a9:42:c3:d9:c7:2a:22:e3:20:2d:
02:98:16:df:44:da:3f:a4:05:ae:56:e3:e4:6c:f8:
4d:25:ec:63:ba:93:bd:aa:43:4f:60:4c:ff:b1:c1:
c4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F4:7D:75:3D:25:28:9F:D9:87:94:97:4A:A0:53:60:10:56:7B:D9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/dd8bc5-86ef-4135-bf1f-a4c8d9895a43/1/DvR9dT0lKJ_Zh5SXSqBTYBBWe9k.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.129.174.0/23
185.242.219.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207505
Signature Algorithm: sha256WithRSAEncryption
7e:b3:a6:c9:d9:6b:bf:3d:49:82:01:a9:50:4f:34:a1:2b:3c:
97:b0:58:cc:81:11:cc:59:c2:f7:7c:28:84:af:d6:11:4b:b5:
ec:77:1d:0b:2a:b8:25:04:12:2b:6b:0f:f6:63:77:a1:90:a3:
32:7d:4a:cb:e3:1b:e7:c1:5f:e0:54:57:66:53:30:27:2e:c5:
29:7b:53:9e:e2:55:9a:bc:4e:0a:6c:2e:90:e0:66:40:45:83:
5e:10:93:c0:69:43:b5:ff:dd:03:ea:2d:8b:56:6b:7a:d9:28:
5f:0e:19:90:76:61:38:e2:66:a5:5a:c9:8f:5f:d3:13:91:ca:
90:f7:fa:7d:99:71:90:d5:75:28:77:f9:c0:20:e6:ea:ce:40:
c7:96:cb:84:e9:f3:59:25:97:26:2b:bd:00:29:fa:d6:a9:8b:
a8:6d:32:06:79:f8:39:76:54:de:4d:d0:40:ed:40:15:c2:23:
c2:2b:47:88:07:67:06:3b:e9:90:1b:57:f0:07:e0:45:5b:ba:
f1:a3:47:bc:1d:62:90:88:84:fc:62:90:85:6b:d6:70:94:2b:
3e:e0:41:c5:69:5e:ea:e0:ad:a3:a4:a7:87:37:84:f7:10:20:
48:34:aa:07:1c:28:7c:34:79:50:28:df:67:24:e5:52:09:70:
f5:35:e3:ef
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:36 2024 by rpki-client on console-fra.rpki-client.org