Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer
File: G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer (raw, json)
Hash identifier: MGFx9LfUBibFl52edJkesTD9MrCN/SEzWRZ9FDKCrX0=
Subject key identifier: 1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC6B7AFC2FAB454284A7B1E05C0C34603
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/G1RDfJLB4IsG4Hdhh8eITdUcDjg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 20:29:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205291
IP: 91.235.206.0/24
IP: 2a12:e0c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:af:c2:fa:b4:54:28:4a:7b:1e:05:c0:c3:46:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 20:29:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b54437c92c1e08b06e0776187c7884dd51c0e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:70:21:3b:46:8e:99:00:62:13:a0:a3:b9:1c:
4a:40:9b:3a:86:7b:47:bd:45:8c:bf:d2:6d:a5:e6:
1f:03:5a:dc:31:0b:c1:e0:2c:86:b4:0d:5d:de:f2:
84:19:77:91:31:42:18:a5:16:3b:15:60:96:cb:65:
e3:34:69:90:19:96:11:db:0f:ae:02:e9:1f:8d:cf:
ae:f3:1b:37:47:d6:2a:df:af:b1:66:4c:4d:50:5b:
e0:2e:81:e1:d8:61:98:1b:d1:a2:4c:9d:45:c4:8d:
d8:c4:10:d4:92:9d:dc:13:6b:13:e6:fa:c8:45:f8:
eb:f4:75:b1:62:d0:38:68:e3:3a:da:74:18:20:c5:
b2:ac:45:f4:8b:11:c8:61:49:d7:a8:2a:20:a8:ed:
4f:e8:e4:b3:60:ac:65:65:d2:f5:49:03:4d:a0:a1:
96:ad:2f:3b:48:3a:0f:78:a6:49:33:33:b1:00:ad:
0e:44:74:3f:26:a1:e1:1d:24:7a:db:f7:22:e4:c0:
b2:41:ee:84:06:0b:5a:9c:9a:d6:9f:71:ee:e0:3e:
e4:4d:6f:29:05:5e:fe:2d:9b:30:bf:60:12:6f:9d:
2d:77:ba:2d:63:e7:14:ed:ec:11:b9:8b:e3:c6:e0:
e8:59:6e:03:48:45:7e:7d:e5:85:d8:0e:0a:48:87:
54:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/G1RDfJLB4IsG4Hdhh8eITdUcDjg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.206.0/24
IPv6:
2a12:e0c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205291
Signature Algorithm: sha256WithRSAEncryption
06:ca:a8:92:07:7c:e3:1a:4f:44:a1:70:18:bf:cb:58:b0:e3:
e5:ec:9e:76:9a:21:26:b1:ad:39:44:37:ec:a2:88:98:3d:c7:
de:2a:29:68:bf:1d:ba:f6:3a:2c:87:f8:43:c8:91:74:f2:3a:
81:5c:d5:43:9d:0c:b7:9b:7f:c0:37:c3:b1:bd:8d:f7:84:81:
9e:66:8c:8d:8e:79:b5:ca:7d:12:cd:66:bb:f8:44:48:ff:dd:
1b:9d:db:76:ab:20:e8:7a:9b:68:96:f1:0d:be:e9:e2:28:77:
cf:a1:bf:00:8b:21:af:e6:40:9f:5f:f4:78:80:58:3e:7e:ae:
30:3e:ea:08:eb:bf:18:3d:1d:ac:81:9d:12:40:1b:93:72:7f:
3d:86:cf:e2:63:9a:f8:1b:98:03:d2:14:33:47:9d:ae:3a:87:
bd:20:7d:af:3d:2e:86:42:14:ab:32:9d:47:c7:0c:ca:6c:2c:
b9:79:a5:bd:d8:0d:ad:8e:95:78:be:94:8c:ae:84:84:ba:21:
1b:33:1e:05:6c:57:5c:30:c8:02:a7:71:9a:2a:18:32:2a:3f:
13:87:30:01:19:5d:9e:b2:2e:63:49:54:a0:fa:f9:03:fa:01:
fe:36:c9:66:79:90:52:db:48:6e:c7:55:53:65:c5:1e:59:75:
ed:80:ff:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:50:23 2024 by rpki-client on console-fra.rpki-client.org