Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
File: GUJjJay4zmCaaG-mVbBYlogJs0Y.cer (raw, json)
Hash identifier: Uc7grQ/BGwOxj00V+MT2JPjO2LkqKCbCwMYmmmdkIeI=
Subject key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC94D36B084157F7E25C51EF08F0BC4E8
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 02 Jan 2024 08:32:09 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 3319
AS: 12687
AS: 25500
AS: 205656
AS: 212397
IP: 77.47.128.0/17
IP: 185.143.56.0/22
IP: 195.178.128.0/19
IP: 212.111.192.0/19
IP: 2a01:5c40::/32
IP: 2a02:db0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:36:b0:84:15:7f:7e:25:c5:1e:f0:8f:0b:c4:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 2 08:32:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19426325acb8ce609a686fa655b058968809b346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:10:08:41:bb:b4:f6:f1:8d:c9:ca:75:f9:38:
e4:ea:7a:ce:4c:77:74:bd:4d:cd:58:38:f4:34:0f:
1a:c3:11:30:28:ca:a2:d5:5d:72:27:fc:8a:5d:7d:
47:88:0e:6e:0f:94:53:dd:f6:d0:d0:2b:2b:86:37:
63:66:5d:31:3b:29:4d:45:8a:9d:00:08:ce:2e:0a:
d9:e3:69:c2:fb:9e:ec:eb:cd:36:15:47:cc:f0:5a:
ff:57:67:93:6b:d8:62:bf:b8:dd:8e:34:fc:b2:d0:
ee:87:bb:fe:cc:b5:da:a8:fe:32:4a:bf:56:ba:00:
b6:d6:a1:87:de:8e:bc:e4:fa:27:1c:3a:fc:0d:ef:
3c:4e:8e:6c:73:7e:f2:3f:cf:1b:35:0f:09:82:ca:
35:1b:2f:9c:70:0e:32:34:c3:5e:73:ca:d7:3b:06:
83:6c:2d:50:79:4d:9b:59:f7:f2:58:6e:b8:e1:5e:
41:70:2b:bb:6f:b4:41:bf:f0:78:2f:54:52:d6:44:
cc:fc:7e:9a:a5:b4:84:dd:e9:6d:b0:04:d2:23:e0:
8f:b9:71:c4:1e:80:4d:5c:15:55:42:89:6d:af:f4:
7b:55:c0:ab:9e:b4:6d:20:d6:a0:7f:99:9b:14:da:
7e:9e:41:3b:52:09:5f:96:cc:58:89:92:8b:cf:94:
11:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.128.0/17
185.143.56.0/22
195.178.128.0/19
212.111.192.0/19
IPv6:
2a01:5c40::/32
2a02:db0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
3319
12687
25500
205656
212397
Signature Algorithm: sha256WithRSAEncryption
30:d5:8e:aa:fc:b5:07:50:c3:34:2a:0a:87:6c:24:1b:92:ba:
f3:da:45:50:75:31:bd:ef:71:dc:e6:ea:20:46:af:f5:e9:8e:
ec:0f:e5:80:a6:d3:f6:92:e6:29:76:47:90:90:3a:ee:28:38:
94:e8:59:8e:8a:ff:59:82:cf:64:56:bc:93:fa:b6:ba:aa:2e:
e2:7b:0b:44:ee:e0:82:75:c7:20:2a:be:75:8b:f2:39:43:fe:
d8:b8:ac:92:ff:1d:c7:74:0c:be:bc:d6:2c:1a:a0:c3:65:70:
79:fd:67:95:62:b5:f9:a3:a2:1c:e2:c5:01:6d:17:42:27:c1:
eb:8a:a1:d8:f9:d2:e4:fe:f3:90:09:29:f4:77:0c:af:8d:7a:
f4:d9:11:be:10:01:02:e4:73:6a:b2:73:ee:4d:56:38:79:79:
8b:32:c1:1f:41:b9:4c:8f:46:b6:35:a7:44:df:19:90:9f:c2:
fd:1d:44:f1:92:ea:b8:41:03:7c:35:df:c0:23:d4:9b:8d:d7:
d6:9a:30:42:b0:f4:17:a0:25:2d:46:98:ac:5d:a6:f8:80:16:
c1:25:b6:72:f5:37:e9:f6:04:8e:93:12:f8:68:3b:6c:63:aa:
91:e2:a9:9d:27:8b:73:58:9f:1a:d9:6c:f2:e5:db:94:1b:13:
b8:85:fd:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:21:23 2024 by rpki-client on console-ams.rpki-client.org