Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EWYPCgX8TPczIjCFLZ14vXrC8ks.cer
File: EWYPCgX8TPczIjCFLZ14vXrC8ks.cer (raw, json)
Hash identifier: ea6zlDv4qOyBil6sPmtnaE0jgJiGZukQADVkxx3b/2w=
Subject key identifier: 11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DD17D86BE9204D54EEF6837EFB639B
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/EWYPCgX8TPczIjCFLZ14vXrC8ks.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:50 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211713
IP: 185.93.24.0/22
IP: 2a03:8e20::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dd:17:d8:6b:e9:20:4d:54:ee:f6:83:7e:fb:63:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11660f0a05fc4cf7332230852d9d78bd7ac2f24b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1c:58:f8:2f:30:63:a3:36:7b:f1:20:09:6c:
fd:11:e7:dd:81:15:75:5c:87:4c:d4:b0:30:8f:97:
60:8b:f1:39:12:37:4e:25:49:b5:87:01:0d:43:75:
ef:65:64:42:42:fc:df:0a:39:0b:00:ab:b0:bc:4d:
5f:00:ee:d0:56:e2:26:c6:2a:3c:0f:b5:e0:5c:d0:
a6:85:24:7e:11:79:a2:38:70:9f:b6:fe:a1:f2:e9:
b9:9f:cb:47:a1:fe:88:19:cb:89:d6:57:a5:e7:aa:
f0:99:9d:b2:04:c1:5f:c1:85:d2:93:e9:e5:4e:cc:
c7:fd:e6:a5:d4:31:89:a7:10:8e:57:01:9d:59:cd:
66:aa:ba:46:28:e9:ef:a0:b4:2b:25:51:b9:a9:23:
5a:82:e2:7f:ce:76:78:f0:d6:1b:31:16:40:83:f8:
60:15:5d:18:1c:8a:68:5d:3c:74:74:99:3b:70:0f:
9e:a6:cb:5d:c3:1c:75:c2:80:93:cc:14:4b:81:ba:
0e:af:1f:94:1c:bf:18:86:84:87:89:f1:14:8e:04:
bc:aa:92:4c:de:02:b3:77:ba:40:38:67:5a:43:3b:
7b:29:07:41:06:0c:79:f3:c0:30:e3:fa:6d:9c:f4:
0d:fd:18:c3:1a:6f:e0:f6:a0:a7:52:19:22:4f:4f:
8b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:66:0F:0A:05:FC:4C:F7:33:22:30:85:2D:9D:78:BD:7A:C2:F2:4B
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/81b2c7-f454-4119-894a-7a06ff002517/1/EWYPCgX8TPczIjCFLZ14vXrC8ks.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.24.0/22
IPv6:
2a03:8e20::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211713
Signature Algorithm: sha256WithRSAEncryption
61:9a:69:40:c1:7c:1d:3d:5c:67:31:84:b0:11:63:6e:c2:da:
9e:af:88:8f:d8:a8:08:b8:0a:4c:6b:f3:6a:eb:8b:9e:83:f6:
c3:ec:78:45:25:cd:92:b6:c9:a5:81:49:98:a3:2d:ea:40:a3:
74:72:a3:73:44:0d:97:4e:85:01:02:e5:c1:cb:aa:62:0e:58:
46:ff:da:c8:d4:6b:d9:12:06:7f:b6:56:d9:2a:95:d8:49:ed:
da:c6:43:7c:91:fb:21:2a:64:e5:25:71:33:c2:81:5f:ae:98:
27:12:e4:b7:92:28:40:6f:7e:47:db:29:68:f8:4a:8d:09:de:
80:12:f5:7a:c8:4f:c4:01:be:ca:45:d3:90:ff:79:bf:8a:2d:
63:73:12:0c:f2:a6:46:61:3d:04:24:c5:89:78:c5:06:ad:4b:
15:23:1e:3f:f4:56:d3:3a:84:4e:ac:52:c9:21:0b:f9:d3:0d:
2d:0e:63:c3:2c:14:d6:06:0f:7b:92:c4:7a:c5:6b:5f:4e:fa:
e2:58:21:90:0b:bd:15:18:b1:4e:a0:f2:4c:c3:c7:d4:41:1d:
73:69:05:d2:8d:f9:ad:cb:0c:d2:b5:8b:7a:39:68:da:ca:89:
d0:7c:ac:b6:7c:b5:db:43:86:e7:9c:05:5c:8d:e7:c6:31:65:
f1:a1:6a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:05:47 2024 by rpki-client on console-fra.rpki-client.org