Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
File: G58hugTl4wd7OR49SP9bClCzNp8.cer (raw, json)
Hash identifier: ekPHt1NL0wWdQuOIe23xpNURAPFldWEHrxJS6skUYfA=
Subject key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94CFF56808EAFD981E249112CA28B8C
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:31:55 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208022
IP: 195.93.226.0/24
IP: 2a0a:280::/29
IP: 2a11:3780::/29
IP: 2a12:ef40::/29
IP: 2a13:63c0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 09:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:ff:56:80:8e:af:d9:81:e2:49:11:2c:a2:8b:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:31:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:55:a1:c8:b0:0a:71:cc:c7:aa:5a:06:7d:d7:
ca:aa:97:14:d9:9c:29:df:cf:ad:b8:ea:a2:70:93:
65:a4:40:a3:b8:1f:29:10:3c:f7:9c:cd:31:dd:46:
a5:f2:88:02:df:a3:5f:fc:71:29:83:d3:0a:30:97:
3f:4e:19:f4:ab:60:99:e7:3a:26:1a:a4:3d:e0:4b:
90:af:83:25:13:81:98:0c:8b:87:e1:d6:ff:75:79:
ce:b7:67:ad:8c:b1:b1:a3:57:b9:c9:12:f9:b2:18:
81:4e:8d:92:e6:a0:9a:8c:c1:d1:e9:15:6a:0c:86:
80:c7:bf:d5:02:94:a6:57:4e:87:5e:6b:55:ca:7c:
ec:d8:71:3d:35:00:2e:86:b9:7f:75:60:0d:ab:bd:
b6:0f:b8:ac:e3:5e:57:90:fe:1b:e6:fd:75:c9:35:
23:21:8a:3a:d4:c2:c4:18:3f:d4:8e:ad:04:da:cc:
66:38:24:4d:59:27:1d:b5:33:a6:a3:78:bf:38:a8:
f3:7e:0e:40:34:1d:79:74:bf:15:f5:c3:92:5d:7e:
58:dd:78:09:07:a8:29:13:de:00:c8:b7:4e:0d:dd:
e6:a7:11:96:0d:5c:0d:e5:a1:b4:3c:f6:3b:73:d4:
4c:ee:bc:04:ce:5d:8f:76:34:4a:73:06:e3:e9:3f:
21:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.93.226.0/24
IPv6:
2a0a:280::/29
2a11:3780::/29
2a12:ef40::/29
2a13:63c0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208022
Signature Algorithm: sha256WithRSAEncryption
59:c0:5a:14:99:67:61:5f:2f:0f:a2:24:7c:4d:cf:3e:77:d2:
7b:c9:8d:7d:fa:c4:ca:2e:75:a1:72:9d:aa:2d:9e:6c:6e:4c:
3e:20:f1:7a:fa:4c:3c:64:d0:83:34:48:87:84:69:65:fd:15:
c0:16:4b:99:a4:05:14:c5:78:5b:74:be:a0:04:55:b3:1a:c8:
55:25:1d:2a:77:93:18:12:86:a4:1b:91:51:c9:2b:9f:79:95:
9d:bf:07:bc:64:0c:01:fe:8f:f1:3d:fd:e8:9e:c9:10:1e:dd:
c6:9e:d4:71:2d:08:1f:49:96:62:8d:52:de:69:68:f5:80:58:
f3:ac:8f:96:81:c9:82:a7:1f:01:98:32:58:c3:9f:20:91:dc:
8c:61:49:36:24:b7:2c:de:9f:2f:48:c5:65:07:3b:cb:46:70:
7d:e3:a2:fb:7c:3a:da:e3:b4:c4:4d:87:74:53:79:02:64:ad:
a3:aa:88:f6:5b:f3:0c:80:3f:fa:bc:9c:93:7b:8b:6d:37:01:
71:75:16:df:93:81:8a:84:9a:2b:6d:a2:90:98:24:df:c7:ba:
03:c7:d6:63:fe:99:65:b7:54:b6:b1:36:3b:e1:2d:63:0c:b7:
ad:68:6d:0a:0d:0b:6d:c0:9e:bf:ce:38:9f:1a:13:6d:30:05:
13:0e:01:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 16:53:47 2024 by rpki-client on console-ams.rpki-client.org