Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GNtfz9wY74Qh4mUfGybBZaAdU_E.cer
File: GNtfz9wY74Qh4mUfGybBZaAdU_E.cer (raw, json)
Hash identifier: YccHlY0ve7mr8qXWQpEi9aGhy/eu27uQBxgKhJtZz2k=
Subject key identifier: 18:DB:5F:CF:DC:18:EF:84:21:E2:65:1F:1B:26:C1:65:A0:1D:53:F1
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC7935ABAEE70243D32DE0A09EA832561
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/04/6c3cd4-5896-425e-95db-ffed50baa0da/1/GNtfz9wY74Qh4mUfGybBZaAdU_E.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/04/6c3cd4-5896-425e-95db-ffed50baa0da/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 00:29:32 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 56919
IP: 176.32.40.0/21
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:5a:ba:ee:70:24:3d:32:de:0a:09:ea:83:25:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 00:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=18db5fcfdc18ef8421e2651f1b26c165a01d53f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:99:60:41:7d:d2:f8:80:71:58:a1:73:47:60:
93:ea:99:c6:49:da:70:13:60:29:dc:1d:32:74:d0:
7b:7f:29:19:ac:90:85:3f:1f:e5:b1:1c:16:3e:bc:
d1:fb:07:d3:91:aa:12:4a:ea:ab:a7:c0:79:48:af:
79:7e:98:11:f0:af:16:27:3e:29:b4:bd:46:6c:2b:
f2:ad:11:25:82:c4:e1:dd:68:a5:76:cb:a6:3a:cb:
c2:66:7f:4a:31:5f:34:db:d0:f9:f7:e9:92:05:37:
f9:e0:58:5b:ca:e8:74:de:ba:3c:4a:08:01:d4:dc:
b7:81:6d:23:93:ce:a5:2a:ee:92:d8:cc:e0:33:05:
24:a2:61:d3:5e:3b:e6:2e:18:80:d7:27:d5:96:6f:
8c:a1:f6:17:5e:16:29:c2:af:31:9a:5d:fd:4b:28:
12:ef:48:e3:87:b7:fa:67:17:12:b6:32:41:d6:03:
8a:fd:07:cb:a1:34:c5:b8:f4:ab:eb:bc:3b:72:0b:
76:fc:2e:fa:50:be:61:7f:72:91:d9:c0:27:b2:ea:
26:88:65:74:9c:f4:82:ba:22:a9:72:f4:4d:d9:f6:
62:b6:f7:3d:50:b8:40:0c:e9:a3:d7:c2:04:f4:e6:
bf:5a:1c:a5:67:d6:15:f9:4c:01:31:f2:f3:d2:b0:
10:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:DB:5F:CF:DC:18:EF:84:21:E2:65:1F:1B:26:C1:65:A0:1D:53:F1
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6c3cd4-5896-425e-95db-ffed50baa0da/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6c3cd4-5896-425e-95db-ffed50baa0da/1/GNtfz9wY74Qh4mUfGybBZaAdU_E.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.32.40.0/21
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56919
Signature Algorithm: sha256WithRSAEncryption
44:e0:68:ae:88:b6:ac:40:44:7c:2d:1c:94:86:86:42:43:63:
44:1c:93:fd:90:b1:10:30:14:d9:22:52:f6:6e:6f:d6:f3:b7:
7b:3c:5f:a2:f8:0e:9e:f4:02:87:85:ea:a8:72:7f:95:4e:49:
f5:30:42:46:43:54:21:54:ad:df:80:da:d4:f9:08:81:d3:d4:
1a:7f:02:4a:1b:cc:b2:d4:39:ea:f0:6c:ac:63:28:a0:60:cb:
a6:dd:c5:c0:cc:e4:fd:75:2d:27:d2:52:0f:fb:df:6b:45:26:
0f:1a:cd:88:fa:8f:53:d9:fa:a1:79:75:b8:17:79:1e:03:d0:
f2:ec:72:5c:0a:d3:42:95:2c:ad:b1:75:bb:5f:ab:72:0b:3d:
45:cb:4f:19:81:6f:7c:d4:f8:0b:ac:7d:e5:6a:4c:8b:21:ad:
b1:68:de:c2:01:67:9e:5f:6f:5c:ba:a9:af:b0:03:b5:67:ee:
4f:86:cd:d5:80:29:74:36:d7:e7:a7:2e:df:9c:e1:94:a2:a4:
f4:36:18:ac:fa:88:d4:47:8c:07:d4:04:57:49:82:26:ac:56:
51:b4:7b:36:1c:fa:6e:a8:18:58:d9:a8:76:6b:ef:c1:92:14:
e0:9d:83:0c:83:d7:4b:d5:78:b6:76:9f:8a:39:4f:ef:a4:9c:
02:ae:4c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:30:48 2024 by rpki-client on console-ams.rpki-client.org