Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/E-37kQ__5H1RrZ0PiDsbZJZp4TU.cer
File: E-37kQ__5H1RrZ0PiDsbZJZp4TU.cer (raw, json)
Hash identifier: DWdl3AKHxsrNj7natDj6dWa1iFlCPRqkqVomIrZgKMY=
Subject key identifier: 13:ED:FB:91:0F:FF:E4:7D:51:AD:9D:0F:88:3B:1B:64:96:69:E1:35
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DAF631D3591E30B657DA886DCC5E77
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/E-37kQ__5H1RrZ0PiDsbZJZp4TU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:38 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211361
IP: 194.48.176.0/22
IP: 2a07:5d00::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 12:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:f6:31:d3:59:1e:30:b6:57:da:88:6d:cc:5e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13edfb910fffe47d51ad9d0f883b1b649669e135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:30:f5:e9:d7:eb:18:5d:97:db:16:d7:20:63:
b8:ae:9e:b8:46:59:9b:be:f6:fa:e8:4e:d2:56:41:
df:f4:3a:1d:25:57:15:ce:7f:8b:28:17:8b:5e:6d:
2f:ba:75:e2:76:f8:af:e9:96:71:cd:38:07:b2:d2:
42:fc:1e:b4:22:b0:f3:de:0b:6d:8e:86:8c:b2:b3:
bf:dc:55:3a:9e:87:f4:da:51:bb:98:7e:d3:7b:2a:
bb:76:36:5f:d9:3c:5b:85:75:53:1d:98:61:22:16:
1f:e4:05:88:f9:b7:aa:bd:d6:a8:2e:a3:f6:47:a8:
9f:5f:40:8e:63:69:a4:ae:d2:e5:5a:6a:1e:6e:f3:
e5:98:2c:d0:22:bd:8e:31:ee:e4:e4:11:17:52:fd:
db:68:fc:e2:d3:72:4e:d4:9d:ba:6a:86:43:ba:2d:
99:55:79:45:7d:57:e4:a0:4d:99:f0:da:50:15:c9:
58:ba:72:23:ca:73:28:3b:0c:80:b1:84:ae:7c:5b:
80:ab:9f:c5:e2:80:b9:2c:c3:91:25:c8:6d:51:dd:
3d:45:86:31:f4:34:cb:26:2f:14:ee:7a:ba:02:6d:
2d:94:1c:3f:53:c3:4c:9e:48:81:1a:3f:f6:4c:ef:
e1:91:f1:f9:a2:75:19:7d:d8:8d:5f:72:1b:54:37:
e0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:ED:FB:91:0F:FF:E4:7D:51:AD:9D:0F:88:3B:1B:64:96:69:E1:35
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/143b5c-c5ab-4d98-ae4b-d141a8692039/1/E-37kQ__5H1RrZ0PiDsbZJZp4TU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.176.0/22
IPv6:
2a07:5d00::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211361
Signature Algorithm: sha256WithRSAEncryption
7b:77:9a:bd:03:a2:86:11:0b:ef:f1:a9:28:32:6b:02:6c:ff:
1d:85:92:97:68:96:91:b1:7a:1c:de:85:d4:ad:f0:63:6c:9a:
10:a0:49:b4:90:cf:5c:cf:d8:47:3b:06:95:58:3b:ca:6f:c3:
3f:b4:84:34:56:a8:13:d5:cf:aa:c9:ef:b7:c6:48:5d:db:6e:
53:8c:93:59:34:61:47:28:a1:8e:f1:22:0c:fe:69:14:b9:13:
65:a3:03:a5:b0:e8:d3:1c:95:b6:4c:d3:2b:e0:44:14:84:a8:
28:d9:3e:57:6c:c2:5c:4c:56:90:4c:0e:7d:46:01:c6:10:58:
f5:d3:b2:49:e9:ac:ad:6d:cd:0f:44:0e:58:86:98:be:1f:96:
26:72:e2:5e:b0:aa:df:d3:17:c4:60:e7:8b:d4:19:d4:27:ff:
65:1e:92:98:31:ca:f8:60:af:15:32:37:ea:63:e1:01:07:6b:
ef:2f:67:66:46:4b:06:b9:58:9b:65:8b:75:97:63:61:e7:c4:
d9:5c:60:80:35:ee:b5:16:65:6c:e3:3c:e4:d2:a4:db:14:41:
8c:e1:bc:1c:bd:09:0a:da:88:0f:d1:82:0f:b6:83:4b:df:d8:
77:49:de:3e:fc:03:25:11:29:c3:95:aa:70:85:77:b0:b0:7c:
97:c4:2f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 14:48:53 2024 by rpki-client on console-ams.rpki-client.org