Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EVNfj6S19RUz1yTq-Q26mXFfxvw.cer
File: EVNfj6S19RUz1yTq-Q26mXFfxvw.cer (raw, json)
Hash identifier: 6AUDPK2O5/U3K4zQUjLrVPm13J7Xo8WgEUlVcwnZfEI=
Subject key identifier: 11:53:5F:8F:A4:B5:F5:15:33:D7:24:EA:F9:0D:BA:99:71:5F:C6:FC
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC8013462CB75EC3B284674D9C72A23AD
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/56/06d683-5a55-42ad-91d9-5f2ee5ce4581/1/EVNfj6S19RUz1yTq-Q26mXFfxvw.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/56/06d683-5a55-42ad-91d9-5f2ee5ce4581/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 02:29:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 204195
IP: 185.115.236.0/22
IP: 2a06:2780::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:34:62:cb:75:ec:3b:28:46:74:d9:c7:2a:23:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11535f8fa4b5f51533d724eaf90dba99715fc6fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:a3:c6:96:68:04:2f:f6:ae:32:19:1b:fa:31:
df:84:6d:ab:e3:17:2b:0b:5c:fb:c5:33:f2:a7:9c:
44:21:b0:3f:5d:a1:b3:47:38:97:bf:e0:39:73:4d:
b9:8b:a1:3a:9c:e0:33:d4:54:e9:92:a3:ad:e1:46:
e7:7d:e7:df:fc:7f:ef:b7:71:9a:e9:0b:1c:f1:eb:
d3:ea:52:42:56:93:ed:81:0d:49:e1:c4:99:39:05:
d5:27:d1:f2:2d:b8:a1:fe:fc:4b:e5:9b:e4:8d:26:
94:c2:b2:0e:01:d7:9f:93:32:87:16:df:34:d3:33:
c3:d2:ea:27:e1:95:ec:c2:73:1d:2a:84:a6:3f:d8:
e6:79:97:3f:b6:d3:2f:f0:c6:13:38:78:d8:d3:a8:
4f:67:18:42:e9:f2:14:30:0c:27:7c:b2:5e:d4:4c:
97:f0:3b:31:96:f8:b8:79:1d:e3:6a:d6:9d:28:48:
1a:86:23:b9:53:3b:ba:1b:a6:0c:b4:4b:27:e4:d9:
5b:45:06:46:68:a2:99:d3:a8:6d:12:e6:8c:e5:da:
6d:78:79:ab:c5:e7:73:3b:91:05:d4:37:99:8d:37:
79:bf:1d:48:83:d4:2b:1c:78:22:d8:ce:ed:c1:3e:
bf:67:6b:58:08:50:ea:f1:b5:e8:14:95:21:01:c9:
4b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:53:5F:8F:A4:B5:F5:15:33:D7:24:EA:F9:0D:BA:99:71:5F:C6:FC
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/06d683-5a55-42ad-91d9-5f2ee5ce4581/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/06d683-5a55-42ad-91d9-5f2ee5ce4581/1/EVNfj6S19RUz1yTq-Q26mXFfxvw.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.236.0/22
IPv6:
2a06:2780::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
204195
Signature Algorithm: sha256WithRSAEncryption
07:31:74:4c:5f:35:cc:77:54:cd:73:75:85:ca:86:20:fa:f5:
42:96:cc:a1:23:c9:2f:6f:bb:e2:82:3a:b8:e9:26:6c:6a:be:
32:ab:69:ce:3a:08:cc:82:8b:99:ec:96:60:4e:67:44:f0:4f:
0e:11:06:6c:23:a4:96:83:31:62:61:e0:51:26:ae:be:aa:2d:
a8:12:26:14:6d:65:b6:4c:29:13:1c:49:df:22:2a:6e:22:3b:
de:aa:3f:d5:af:2c:a5:f7:e3:e4:3b:1b:09:b2:18:25:36:49:
58:f1:ff:b2:1b:7f:69:05:47:30:0a:99:4b:10:30:b2:f7:4c:
bb:99:fc:b8:d1:ce:3b:8e:9d:e8:5e:05:bf:d5:28:de:83:eb:
f6:07:00:d6:1b:0b:cd:7c:d1:21:b4:bf:75:45:e9:b4:81:3c:
bf:e6:98:40:10:04:bf:dc:3c:09:e5:b4:46:1d:bc:31:85:6e:
bf:32:de:63:48:76:b2:ee:5d:fd:fc:7c:74:bc:60:39:f9:bf:
a6:ef:98:17:2d:74:fa:00:c9:d2:b2:b4:ce:84:1d:8e:b1:22:
c0:b7:2a:3d:bf:13:92:9a:3e:57:37:01:c7:12:8e:68:bb:6a:
fa:ee:b8:80:b9:69:56:ea:f0:13:9d:51:04:6c:f7:bd:85:82:
95:e6:a6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:46 2024 by rpki-client on console-fra.rpki-client.org