Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/F7zvn6HzsThCEzqtT3tAHtyY4Eg.cer
File: F7zvn6HzsThCEzqtT3tAHtyY4Eg.cer (raw, json)
Hash identifier: WBhSs8el8v1ZOLxqCdecxzow8VoAoIbTwzy9ZKczYlc=
Subject key identifier: 17:BC:EF:9F:A1:F3:B1:38:42:13:3A:AD:4F:7B:40:1E:DC:98:E0:48
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5000D8D28B1A207B0E4241C25A69F03
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/F7zvn6HzsThCEzqtT3tAHtyY4Eg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 41790
IP: 195.8.220.0/23
IP: 2001:67c:2374::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Apr 2024 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:0d:8d:28:b1:a2:07:b0:e4:24:1c:25:a6:9f:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17bcef9fa1f3b13842133aad4f7b401edc98e048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8f:95:2a:c6:d8:d2:28:b9:1d:27:e2:c7:45:
35:4c:32:36:0a:c2:21:da:5f:fb:51:e8:d6:20:9b:
0b:ef:c7:b9:15:8b:57:e4:e7:b6:22:6f:cb:c7:22:
27:3c:80:82:b7:31:a6:40:76:3d:40:2d:68:48:f6:
73:aa:4b:0d:33:01:e5:96:eb:e2:a8:21:7b:ab:78:
3f:ba:7c:c6:2a:5e:fa:08:5a:b8:76:d7:03:e8:e8:
df:61:e3:f1:cd:7a:24:fb:0b:0f:a7:ad:83:b7:fc:
4c:88:91:68:93:d7:a6:aa:a5:b4:11:cc:50:f6:ed:
d5:0b:ce:09:20:b5:ab:ef:48:1f:39:96:60:0e:33:
82:8b:b6:fc:0f:26:2e:cc:08:45:32:c3:72:7e:f6:
a0:60:07:ca:e6:7a:d2:81:c6:c2:f7:da:89:1f:b0:
e8:80:6d:52:2e:61:75:44:0c:b0:e9:b6:b4:d0:21:
82:d0:34:54:69:23:b5:43:30:96:44:bc:87:37:50:
29:12:3f:18:60:44:bb:9b:6b:a0:83:f8:76:c7:05:
60:ef:e6:39:82:47:b7:c4:6e:48:bf:ae:cd:64:73:
92:ae:ff:6e:91:66:f6:5d:16:97:da:43:eb:5a:b8:
6f:ff:f9:63:b0:6c:ee:00:e0:d9:1d:5b:42:19:ae:
32:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:BC:EF:9F:A1:F3:B1:38:42:13:3A:AD:4F:7B:40:1E:DC:98:E0:48
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/b3d8c4-37fb-40e8-82de-f8419fe5872b/1/F7zvn6HzsThCEzqtT3tAHtyY4Eg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.8.220.0/23
IPv6:
2001:67c:2374::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
41790
Signature Algorithm: sha256WithRSAEncryption
00:bb:32:e8:66:09:ef:51:ff:64:22:a6:c9:78:31:69:45:6c:
ee:8c:e4:90:8d:78:2b:4e:7c:8e:e6:21:ab:36:29:32:48:e9:
8a:b0:d5:bd:f5:fd:ee:70:b9:d5:df:4d:2f:c7:6b:3b:88:09:
a2:58:30:f9:1d:59:c0:3e:36:2f:69:b7:67:72:d8:b9:1b:33:
47:ea:24:29:47:8b:08:55:d2:8c:f7:7e:fc:0a:82:63:85:84:
19:b1:b2:75:4d:f9:00:18:f8:eb:98:dc:e8:00:c3:b3:1e:4e:
84:6d:e7:4d:05:f1:44:af:4f:39:e2:86:a5:22:4e:65:87:11:
ec:cc:a1:c1:b7:34:d3:6e:18:09:aa:45:69:8f:f2:ce:9e:74:
ec:1e:86:76:0e:83:23:af:2e:ab:fd:a7:a3:21:fc:37:ad:08:
83:79:d7:e9:69:25:53:99:55:7e:ab:e5:6d:d1:62:e8:ed:04:
24:9f:9a:75:44:c8:0f:2a:e8:f4:96:59:1f:8e:ca:fe:f1:3b:
62:88:97:06:c0:e9:89:19:24:58:33:b7:b9:fd:2e:0a:bc:cf:
04:dc:a0:83:d5:6e:ff:c5:7c:5c:6c:e9:15:46:41:58:c8:03:
a3:9d:95:f2:8a:22:54:b6:44:f7:f4:8c:92:4d:d5:00:40:8c:
0f:7b:6e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 20:45:33 2024 by rpki-client on console-fra.rpki-client.org