Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EKjG6TCLsACDEAFx4A27YUD09YA.cer
File: EKjG6TCLsACDEAFx4A27YUD09YA.cer (raw, json)
Hash identifier: Xk8vsp9uAWLPvyIih1oVEm8S9nK814G/st8F5AhQeK8=
Subject key identifier: 10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94CD0F8BFA9F850A62A02604C5C8E9A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:31:43 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 57948
IP: 2.57.40.0/22
IP: 91.236.244.0/23
IP: 171.25.229.0/24
IP: 185.70.44.0/22
IP: 2a05:2600::/29
IP: 2a10:43c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:d0:f8:bf:a9:f8:50:a6:2a:02:60:4c:5c:8e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:31:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10a8c6e9308bb00083100171e00dbb6140f4f580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:80:7e:60:2a:25:c2:cb:30:e7:e9:7b:5d:77:
39:3b:2f:96:e6:6f:cf:d1:08:9b:e7:34:6a:71:82:
a0:04:ad:f5:dc:15:f0:49:aa:13:5c:74:74:9a:65:
c5:b5:2a:4f:8d:6e:c7:17:dd:8a:ec:93:54:36:4a:
27:fb:42:5f:61:eb:5a:4e:29:e6:e1:0e:af:fd:b3:
7a:ef:22:ab:46:e3:3c:56:68:a9:f6:fe:8a:68:78:
95:23:f0:2d:75:15:c3:f0:11:c6:29:96:44:aa:a8:
0e:b8:68:de:d0:a4:96:3b:37:fe:89:b5:56:35:d0:
98:05:47:fc:b3:9c:81:4a:2d:fe:eb:7c:3e:e7:bc:
28:ee:c6:08:b4:a3:e5:ac:90:9d:4c:ce:93:52:83:
74:55:d6:8e:f0:0b:ca:a2:6e:31:77:6e:7d:41:8d:
f4:fd:fb:b9:83:d0:be:8a:83:d5:8f:79:c6:64:4b:
50:c9:cb:f7:99:be:cc:38:f2:2c:f9:0c:0c:f3:0b:
fe:43:f6:74:9d:52:59:3d:9d:53:17:55:ff:2e:b7:
30:a2:89:fc:5e:24:87:51:a7:87:9c:52:c9:5e:52:
db:92:86:e5:be:df:af:2b:0c:67:8a:93:0a:eb:89:
50:f0:3d:6d:c7:54:dd:c2:c7:8c:47:4b:c4:b5:ce:
d4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:A8:C6:E9:30:8B:B0:00:83:10:01:71:E0:0D:BB:61:40:F4:F5:80
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/237947-70c2-4661-a36f-6b497b2c0b38/1/EKjG6TCLsACDEAFx4A27YUD09YA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.40.0/22
91.236.244.0/23
171.25.229.0/24
185.70.44.0/22
IPv6:
2a05:2600::/29
2a10:43c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
57948
Signature Algorithm: sha256WithRSAEncryption
37:64:87:57:1b:a5:e3:09:f4:41:10:7e:ec:9d:43:c4:94:a5:
4f:7a:f8:37:e0:aa:10:e8:e9:4f:9d:5e:d1:3c:6c:32:f8:75:
3e:40:91:ef:34:37:07:07:ca:5f:e0:23:9d:8b:10:19:33:17:
60:8e:b4:46:9d:34:a4:57:10:63:12:e6:51:1a:6b:63:c6:92:
ae:2f:b7:88:91:57:e4:13:c4:c4:53:ca:0d:6f:db:74:de:b4:
ee:9f:49:c6:fd:2d:60:b6:b5:8b:89:10:b5:45:08:02:4c:2c:
e6:fe:dd:7a:1c:1d:cb:79:92:18:48:be:41:87:fd:61:24:e4:
37:b7:03:fb:f1:e2:8a:e4:ce:5a:d7:3a:75:19:a9:a3:43:cb:
67:65:a7:f0:fd:a3:50:44:da:e1:44:95:98:a4:f7:a6:1e:31:
e8:c2:44:ca:73:86:01:8a:e8:92:b3:21:12:d7:23:8d:20:3d:
93:04:27:a8:1f:8a:9e:e5:85:7d:b3:e4:01:59:4f:91:0c:1d:
e0:75:24:f5:f2:f1:f3:ff:2a:33:9e:e4:c3:53:b7:6f:8a:e0:
8b:ca:6e:78:14:39:c5:d6:1b:0b:3d:c0:ff:b3:75:b2:54:1e:
0f:e1:d8:b9:83:f2:3b:c8:75:08:f0:3e:8b:af:51:45:ff:24:
d2:a5:30:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:43 2024 by rpki-client on console-fra.rpki-client.org