Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/FdH_a-yfvLielQo6Ae8taG8OejE.cer
File: FdH_a-yfvLielQo6Ae8taG8OejE.cer (raw, json)
Hash identifier: qdNan6cpE/D4tUWN7H1o2NDQJnNDhikOiCuO4eWVyBo=
Subject key identifier: 15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC79516043E2C37A780C6F2DB26F811EE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:31:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 203147
IP: 185.150.216.0/22
IP: 2a07:7c40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:16:04:3e:2c:37:a7:80:c6:f2:db:26:f8:11:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:31:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15d1ff6bec9fbcb89e950a3a01ef2d686f0e7a31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9c:d8:19:75:a0:8b:9d:27:87:e3:fd:58:18:
e8:18:06:90:29:99:55:73:c9:bf:59:c4:d9:56:61:
6b:1f:c7:1b:ca:4f:ea:f4:1a:7d:bc:a5:de:6b:bc:
a3:62:07:6b:4a:60:e9:8c:5f:c4:bd:07:65:ab:de:
a3:bc:02:cd:be:a7:b9:f5:d0:e6:9e:3c:c2:00:33:
a3:63:d4:e4:73:80:90:a4:9e:71:b3:8e:21:ae:0f:
e0:bc:2b:ea:40:5d:4c:f2:40:86:6a:b6:d2:a4:2a:
32:72:d1:7f:7a:71:4d:aa:ef:59:81:00:90:cb:94:
fa:c3:9e:8e:b2:18:a5:f5:86:f3:89:b2:75:b0:a1:
c2:5f:57:49:4f:f6:73:8e:36:f7:e4:fe:c2:ff:d6:
a0:84:f3:fd:1e:71:ab:5f:e3:65:e8:38:70:17:1d:
d0:c4:f2:58:97:c6:aa:2e:34:a2:b2:fb:46:b1:bd:
b9:cd:17:3c:f4:a6:45:da:79:90:26:a5:7a:b8:bf:
cd:05:00:a7:b2:c8:fa:fb:40:4a:ec:41:65:fa:21:
9e:8b:40:86:82:51:88:45:31:c8:e6:ba:62:18:f9:
ac:c3:f2:d6:5b:87:34:d1:bd:48:4f:0e:ba:60:f6:
18:96:88:d4:8e:7b:25:8a:7e:72:0d:1a:86:9f:06:
61:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D1:FF:6B:EC:9F:BC:B8:9E:95:0A:3A:01:EF:2D:68:6F:0E:7A:31
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/f501f6-1702-48d3-8027-96b8691f5260/1/FdH_a-yfvLielQo6Ae8taG8OejE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.216.0/22
IPv6:
2a07:7c40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
203147
Signature Algorithm: sha256WithRSAEncryption
18:ed:b5:73:b6:c2:9e:6e:ed:51:40:9e:ac:4c:20:dd:17:71:
35:78:04:bb:e0:ef:58:91:dd:01:f3:38:0b:d5:c4:d3:30:e2:
83:28:9d:a1:f7:40:30:2c:f0:86:f9:67:d2:04:35:09:92:8d:
10:f5:a3:79:2f:d5:d8:8e:f9:ff:f1:0b:89:a6:8e:45:ad:db:
6c:8d:95:50:d1:94:f1:e5:66:43:93:a9:8b:49:18:bc:25:41:
67:44:80:e6:03:2e:3f:1f:3a:d5:0b:e6:27:e9:66:00:56:45:
30:89:86:9a:42:ba:da:56:b3:3d:f0:6c:17:ef:ae:11:30:a1:
b8:cd:c8:03:0d:7e:c9:68:e5:01:61:5f:fe:21:ba:07:d8:ec:
05:22:1d:b0:5f:d5:2b:48:a6:4d:d5:8b:a6:df:34:4f:f1:5c:
ce:86:c9:37:63:0c:3e:fd:b9:a1:4a:29:5a:03:05:00:a5:6f:
93:cc:b1:b2:90:96:e1:46:26:57:10:1d:07:33:21:d3:1e:af:
1d:9d:5f:3b:d7:d6:ad:c4:c4:25:29:0e:c0:0e:57:16:2c:6e:
bc:1a:7c:e9:cd:26:04:45:fe:50:a2:05:ba:a5:76:56:f0:3a:
38:33:7d:21:7f:57:68:1d:3d:aa:5b:a8:58:bc:36:f5:6a:f4:
66:14:43:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:21:06 2024 by rpki-client on console-ams.rpki-client.org