Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EkSUR-va8tRKSYs9rlJaL1In8Yo.cer
File: EkSUR-va8tRKSYs9rlJaL1In8Yo.cer (raw, json)
Hash identifier: c89hv/nCLuKn/K0I2/3Ad9C998W6biA//jaJiYFI7jo=
Subject key identifier: 12:44:94:47:EB:DA:F2:D4:4A:49:8B:3D:AE:52:5A:2F:52:27:F1:8A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7276DEF061E649413BF9380AD25A189
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/EkSUR-va8tRKSYs9rlJaL1In8Yo.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 22:31:39 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209138
IP: 185.167.104.0/22
IP: 2a0f:62c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:6d:ef:06:1e:64:94:13:bf:93:80:ad:25:a1:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 22:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12449447ebdaf2d44a498b3dae525a2f5227f18a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fc:f4:7c:45:11:05:e9:f7:f9:df:07:e0:9e:
ff:c7:e4:9e:f2:2b:2d:62:23:f6:7b:6f:42:70:03:
b8:b1:98:b6:8a:0f:4b:8d:28:0d:02:54:53:91:f4:
5e:a0:42:79:f2:1b:e8:80:20:47:98:78:c3:dd:81:
cc:58:57:77:a6:c6:52:9d:f7:1e:59:b4:18:e5:fc:
5e:8d:42:72:5f:84:8d:50:1b:6f:6e:a1:cf:52:10:
11:e5:62:fc:52:11:fc:85:19:8d:97:b3:06:5b:a3:
f8:09:f7:28:4f:14:02:80:93:74:15:43:b8:6a:2e:
74:a4:81:58:c8:96:13:d2:9c:f8:44:5d:46:5a:9e:
9d:eb:44:b7:99:0e:fe:f7:d1:63:65:8c:b9:6c:56:
75:f9:68:97:cc:cf:94:1f:aa:4f:cd:e8:06:bb:f8:
b8:37:83:11:42:b9:b2:42:b3:9d:64:e6:73:a9:7e:
03:cb:2f:02:d9:1a:65:62:7e:94:de:75:b6:e9:39:
85:45:f3:e4:b8:39:a6:e2:16:b3:d8:51:5a:bf:00:
72:ae:5d:cd:71:24:ab:03:7d:85:64:a7:3f:20:66:
26:7f:cd:77:e5:fc:06:67:6b:cd:94:48:cb:bd:bd:
78:0d:65:f5:a8:6c:45:61:88:a7:17:8a:fc:72:94:
ec:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:44:94:47:EB:DA:F2:D4:4A:49:8B:3D:AE:52:5A:2F:52:27:F1:8A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/9fb171-11f4-4c5f-83e7-2ed1fde68516/1/EkSUR-va8tRKSYs9rlJaL1In8Yo.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.104.0/22
IPv6:
2a0f:62c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209138
Signature Algorithm: sha256WithRSAEncryption
43:76:ca:44:9b:62:9e:b7:b7:3b:d8:d3:f5:25:6d:60:2d:c0:
19:67:a8:3a:90:c6:d4:73:47:9d:46:13:c9:79:18:17:fe:df:
97:51:54:c7:3b:b4:fe:81:94:a3:71:ab:fe:09:55:74:82:64:
e7:8a:14:ce:28:e5:9d:1a:d6:3d:a3:2e:fb:a7:15:bf:74:b4:
37:1c:ad:43:a8:0c:fb:4a:67:d1:14:11:c1:45:ca:6a:de:26:
fa:4b:a3:a5:95:41:9d:b2:28:06:ad:45:09:4b:64:87:36:9b:
7e:f3:70:43:28:ac:2a:cb:c6:ca:d7:ec:5b:d2:a0:ea:81:72:
f7:00:53:bf:2b:1e:e2:63:4d:48:b6:2f:be:a2:b3:01:6b:3e:
24:5d:ee:8d:fb:13:45:71:50:19:48:c0:ea:e3:eb:0d:d9:33:
8b:d4:f4:74:a6:b1:53:a2:99:4d:76:b8:6a:11:ca:27:fc:67:
a0:3c:7a:92:6f:b2:00:03:03:a2:bd:9f:b8:24:71:79:4a:fa:
49:a9:18:15:18:b2:59:7b:56:e0:18:4a:28:11:f4:51:0d:27:
00:3e:43:af:a0:a5:65:94:0e:c1:a7:fc:7c:54:4d:1b:7f:b9:
d9:59:c1:8d:9f:d5:28:cf:9c:25:50:13:cc:0d:0f:33:9d:1d:
84:26:ae:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:30:23 2024 by rpki-client on console-ams.rpki-client.org