Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FWKPn9qri4VJS8M4gJGhIrC7pcg.cer
File: FWKPn9qri4VJS8M4gJGhIrC7pcg.cer (raw, json)
Hash identifier: ylWnObrr9Y6GTctRpRig5tDaUcBg9W6A/91d553cJMw=
Subject key identifier: 15:62:8F:9F:DA:AB:8B:85:49:4B:C3:38:80:91:A1:22:B0:BB:A5:C8
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CD4A01B672C9246935EB35FDFAA02B0BF
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/FWKPn9qri4VJS8M4gJGhIrC7pcg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 04 Jan 2024 13:18:31 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 202964
IP: 37.208.88.0/21
IP: 2a14:6180::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d4:a0:1b:67:2c:92:46:93:5e:b3:5f:df:aa:02:b0:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 4 13:18:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15628f9fdaab8b85494bc3388091a122b0bba5c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:b1:ec:7b:b9:c8:d4:0a:21:15:7c:cd:04:42:
30:d0:36:06:20:cf:3c:10:9c:69:d8:c0:b0:6e:2a:
1f:ad:b7:f1:9b:6b:ae:cd:7f:fe:00:ce:ce:19:b6:
fe:d6:68:fd:4e:e8:55:b7:0a:22:54:10:ca:7d:f1:
56:00:2f:0f:17:71:a7:7a:c3:90:74:7d:5c:fb:e7:
bb:45:7b:46:61:39:2b:df:86:e3:ff:a0:39:89:7d:
18:31:67:ee:b1:2d:b1:ed:49:8f:78:76:f8:c2:75:
8f:57:b0:a5:e8:c5:54:61:cb:de:58:65:c7:bb:e4:
7e:52:90:7e:fb:75:90:48:ad:47:94:4c:d7:47:e8:
e0:66:18:3a:bf:2d:43:9c:4b:33:fb:2a:ee:0f:01:
4e:df:0c:ff:29:97:ca:80:d9:ae:26:1f:e9:45:34:
50:48:23:d0:01:3a:81:f4:63:46:45:b1:be:35:7b:
5b:5d:cd:81:34:a6:c0:99:14:48:0d:86:c1:d3:55:
1e:a7:18:ee:bd:03:e2:54:66:1c:b1:12:16:7d:02:
de:a7:04:34:6c:a1:dd:12:58:6d:c2:6b:9f:e6:9d:
a7:35:70:6f:cf:c9:2f:7a:8b:25:fe:d6:1f:55:42:
46:89:42:63:00:21:a5:90:c9:bc:d8:db:b7:c5:2d:
f2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:62:8F:9F:DA:AB:8B:85:49:4B:C3:38:80:91:A1:22:B0:BB:A5:C8
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/db2692-4b71-43cb-a389-96f040bbba0d/1/FWKPn9qri4VJS8M4gJGhIrC7pcg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.208.88.0/21
IPv6:
2a14:6180::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
202964
Signature Algorithm: sha256WithRSAEncryption
3a:24:cd:7d:e6:76:5e:7c:14:b5:dc:63:1f:bf:f2:57:94:09:
73:3b:c6:7f:11:0d:52:7c:66:ae:5e:11:b0:4d:32:73:fb:09:
c6:65:dc:71:c6:6a:e1:a7:48:32:17:6f:20:4b:07:e5:40:5d:
d1:8d:ca:6b:25:f2:9a:ac:8b:8b:02:c1:00:a2:90:83:ad:6b:
9d:e6:b5:15:af:c6:ea:4f:37:f1:b3:e2:dd:58:2a:be:78:7b:
2d:38:43:0e:30:bb:ca:d1:c7:fc:b8:43:3a:5b:40:92:c5:1c:
da:5e:aa:2c:aa:25:ea:56:58:7e:ce:92:d8:1f:28:b8:05:57:
b6:46:a7:ae:fd:81:07:4f:6f:e6:ce:24:25:18:60:ba:77:fe:
80:1f:cb:99:2d:c0:d0:96:b9:92:5c:83:e8:c9:4a:4e:5f:7c:
8e:b8:ba:4f:9d:bb:59:db:66:bc:2f:a9:b1:fc:d0:42:97:12:
81:4f:a3:72:13:d6:9c:3d:bb:35:8d:0d:c1:3a:92:96:4d:ec:
4c:91:5e:77:d5:88:cd:be:3e:55:a5:33:9e:91:f4:f4:c6:b7:
85:fe:02:66:d5:c9:18:27:84:dd:54:2d:d3:0a:90:1c:cd:a1:
dd:ba:a9:5c:16:43:cc:3d:8b:80:76:b8:7d:cb:58:9f:ff:fb:
b6:0d:b6:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:06:00 2024 by rpki-client on console-fra.rpki-client.org