Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/G7yEG3eaK7LCio2u4rLRDVp8NNU.cer
File: G7yEG3eaK7LCio2u4rLRDVp8NNU.cer (raw, json)
Hash identifier: P6zULzTnr3p04jpsI0AH/+Lrq4RK9tsay1z+9eMpEHI=
Subject key identifier: 1B:BC:84:1B:77:9A:2B:B2:C2:8A:8D:AE:E2:B2:D1:0D:5A:7C:34:D5
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC9BB36877457C146ECBF8B9A953A26B1
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/G7yEG3eaK7LCio2u4rLRDVp8NNU.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 10:32:18 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56813
IP: 91.237.88.0/23
IP: 2001:67c:299c::/48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 27 Nov 2024 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:36:87:74:57:c1:46:ec:bf:8b:9a:95:3a:26:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 10:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bbc841b779a2bb2c28a8daee2b2d10d5a7c34d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f4:0b:08:1a:6e:39:a0:c8:3a:61:22:1d:2f:
cb:15:71:2b:dc:02:c8:98:ea:25:cf:c7:bb:32:3d:
1f:99:1c:70:de:16:80:fc:74:13:1e:3f:22:5a:be:
71:52:87:d8:65:8c:70:9d:f1:9c:b7:d5:37:20:c6:
44:d8:c2:06:21:14:e1:88:93:6f:61:3d:b6:50:90:
ac:65:3a:7f:ed:f2:09:de:02:61:b3:29:cb:9d:97:
21:f5:91:e9:e2:4c:2d:da:f0:b2:fb:a7:78:32:ba:
ca:1f:fa:33:a3:60:62:6a:bf:97:92:9e:ca:20:e2:
29:4f:c1:ec:7f:78:0b:0d:8b:70:d4:0d:6f:3c:db:
58:9a:97:8a:6a:41:82:fd:c5:62:f4:67:1f:9c:cb:
8d:b7:38:48:1f:0e:a3:fa:9d:e4:79:47:33:80:b0:
75:f6:8f:33:cf:a0:86:b8:41:29:4c:5e:d0:ce:8e:
32:5e:a5:ff:51:fd:1c:b9:4f:7d:0a:44:a3:84:9d:
ee:ae:ec:e0:e4:c7:80:fc:7c:d8:99:f1:df:b6:35:
36:8f:85:b6:80:72:9b:e9:15:70:57:5f:e6:fa:cd:
77:71:0b:75:64:76:5c:26:b0:93:05:a6:51:67:19:
a9:c1:e2:57:3b:6b:ea:6f:25:aa:85:f2:c0:71:e5:
14:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:BC:84:1B:77:9A:2B:B2:C2:8A:8D:AE:E2:B2:D1:0D:5A:7C:34:D5
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/60447d-d305-4dea-9daa-26837038c688/1/G7yEG3eaK7LCio2u4rLRDVp8NNU.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.88.0/23
IPv6:
2001:67c:299c::/48
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56813
Signature Algorithm: sha256WithRSAEncryption
28:9e:a1:1c:92:97:06:9c:ad:6a:4f:26:e0:a4:b4:25:0a:b4:
ab:fc:d5:28:64:7a:4c:65:62:b4:52:2a:ff:88:3a:5c:f1:ed:
72:76:f2:23:33:a7:8b:e2:29:2b:48:94:23:96:c2:bc:d2:70:
c0:a9:bc:ca:da:a2:5d:d9:72:2e:a5:a8:1f:0c:50:d4:aa:8a:
0e:2e:e7:91:45:d9:bb:c4:a4:6a:ea:f1:59:6b:6c:42:ef:a7:
24:11:b7:5b:bb:bd:a1:ee:28:a7:e9:3a:d9:89:c5:00:b3:90:
b0:17:3e:aa:f3:5b:6c:73:ca:e7:44:b3:09:33:0e:f4:9c:95:
47:ce:ca:e2:db:4d:55:dc:15:b1:33:5c:78:d2:83:69:ec:29:
90:69:45:5a:06:89:b4:37:6f:03:34:4b:6e:d2:a1:20:fe:61:
34:17:c3:87:7f:6b:f1:a8:0f:3b:59:1d:20:9d:de:2e:a2:54:
e0:27:f8:da:e6:33:43:52:71:f4:ad:ea:2e:51:9a:aa:5d:7f:
73:db:4c:2c:2e:9e:7e:ef:bb:b6:fe:b8:5c:5a:71:17:1b:2c:
45:3b:e1:5c:26:a8:92:ff:02:44:de:71:ac:86:8e:4a:3d:c2:
2a:00:99:cc:0d:2b:4f:07:78:35:41:6b:95:8b:32:56:30:cb:
3c:b7:86:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 00:50:24 2024 by rpki-client on console-fra.rpki-client.org