Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Eo0NA9Adij4t-t3y29j5fgkPgOk.cer
File: Eo0NA9Adij4t-t3y29j5fgkPgOk.cer (raw, json)
Hash identifier: Qt8BPbImG/04cmYey/EdK+IpwoGNKVbhUcRBDehLxh0=
Subject key identifier: 12:8D:0D:03:D0:1D:8A:3E:2D:FA:DD:F2:DB:D8:F9:7E:09:0F:80:E9
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 0190782EDC028686432B6ECECB2F50C219DB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/dbc6fa-c474-46c3-8945-af50fb5cc77a/1/Eo0NA9Adij4t-t3y29j5fgkPgOk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/dbc6fa-c474-46c3-8945-af50fb5cc77a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Wed 03 Jul 2024 10:40:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 31.214.222.0/23
IP: 45.15.240.0/22
IP: 109.230.244.0/23
IP: 185.143.68.0/22
IP: 2a07:3340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:78:2e:dc:02:86:86:43:2b:6e:ce:cb:2f:50:c2:19:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jul 3 10:40:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=128d0d03d01d8a3e2dfaddf2dbd8f97e090f80e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:df:11:11:48:be:37:b1:73:fc:b1:27:f8:63:
14:16:b9:9f:77:a3:49:2c:d6:32:3a:dd:94:4c:26:
bb:31:06:db:5e:5d:05:b3:10:57:c3:58:9b:11:f8:
f1:2f:f4:ea:2e:97:aa:fd:c6:ae:11:21:6f:61:44:
ed:52:c8:20:e4:70:91:a9:ad:c6:a1:7f:7d:c6:0b:
15:9a:af:ca:79:73:44:3b:19:28:d2:33:95:29:05:
4e:9a:73:db:05:99:9b:b0:bd:f3:b0:3c:89:76:dc:
a9:9f:43:b8:fc:24:dc:8d:93:cf:01:03:a3:7a:e8:
b7:00:70:71:eb:1c:c3:60:4c:fb:25:57:14:eb:6b:
e5:d8:9e:90:33:b7:88:1e:41:25:cf:8a:57:f4:5e:
62:14:8c:20:96:48:31:a5:88:de:9f:06:41:72:2f:
98:e0:64:36:12:c8:9d:f7:8c:99:92:e1:6f:4d:c8:
6a:94:96:13:e9:46:89:3d:d3:77:fc:50:60:ce:70:
0f:78:13:11:fd:65:5c:f8:e4:0d:8c:19:4d:39:58:
84:09:1f:52:72:7d:d6:d7:83:4c:c0:79:45:80:ce:
2a:cf:4f:37:48:c3:e1:6c:81:25:01:6e:26:00:6a:
35:3c:34:e7:6e:f1:11:38:26:1d:ba:3a:fe:b9:f0:
13:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8D:0D:03:D0:1D:8A:3E:2D:FA:DD:F2:DB:D8:F9:7E:09:0F:80:E9
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/dbc6fa-c474-46c3-8945-af50fb5cc77a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/dbc6fa-c474-46c3-8945-af50fb5cc77a/1/Eo0NA9Adij4t-t3y29j5fgkPgOk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.222.0/23
45.15.240.0/22
109.230.244.0/23
185.143.68.0/22
IPv6:
2a07:3340::/29
Signature Algorithm: sha256WithRSAEncryption
45:8d:17:2c:98:8e:98:8c:6e:5b:9b:ac:d7:1d:2c:de:26:6f:
47:99:a5:d3:f3:bc:fd:cc:26:b5:14:ed:6d:92:c1:80:cb:e1:
18:86:75:9b:71:41:3f:1b:d1:a7:a1:ee:f8:47:e5:64:f6:52:
ed:be:e7:e8:04:02:f6:ac:14:4b:7a:9c:ab:09:2a:05:ec:2c:
b9:a6:1f:f3:92:18:03:3e:13:ff:e2:94:00:72:7c:ff:49:cb:
9f:80:21:e9:e2:f4:4a:f8:58:09:86:77:16:6c:6b:37:45:19:
6f:8f:ce:f6:2c:54:7a:9e:9e:bd:e4:12:70:e6:f3:77:f4:7c:
4e:43:f9:4a:91:4f:84:6d:91:25:5c:e2:50:a2:b0:2a:f0:3b:
8e:b6:4a:c5:90:93:a3:3a:57:f9:0b:46:14:ba:f8:2a:64:17:
b6:bd:ca:c0:77:13:89:61:00:e2:fb:4f:18:d6:a9:75:04:d5:
45:c5:17:9e:f5:8a:4c:e2:bf:7e:d7:d3:80:84:9a:66:a0:75:
c0:c1:38:60:b4:ee:77:b1:c1:c1:e0:d1:19:23:dc:88:2f:fa:
90:c9:a1:4c:18:dd:35:6e:b7:1c:d2:3e:31:96:3b:d3:4f:75:
5a:32:02:28:d2:44:1f:7c:96:67:56:a8:b4:8e:1c:3b:cd:c7:
2d:b1:64:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:47:13 2024 by rpki-client on console-ams.rpki-client.org