Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HgNe0IrXUR-_4QfbH9qF4qEAtcY.cer
File: HgNe0IrXUR-_4QfbH9qF4qEAtcY.cer (raw, json)
Hash identifier: MJgGxIz7u1c8+99GoVP8kky51tEbKdn7ChlzcUR5P0Y=
Subject key identifier: 1E:03:5E:D0:8A:D7:51:1F:BF:E1:07:DB:1F:DA:85:E2:A1:00:B5:C6
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01914BCC2681CAC2DA7498D88EE6DB47C9CE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/HgNe0IrXUR-_4QfbH9qF4qEAtcY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Tue 13 Aug 2024 12:52:36 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 51191
IP: 91.232.96.0/23
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Dec 2024 06:00:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4b:cc:26:81:ca:c2:da:74:98:d8:8e:e6:db:47:c9:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Aug 13 12:52:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e035ed08ad7511fbfe107db1fda85e2a100b5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e4:47:47:6c:95:62:76:02:f6:74:5f:0d:70:
42:62:4e:7a:e4:b7:57:24:8a:0b:0d:61:7a:2d:c9:
e2:7a:0d:44:24:70:bf:1c:63:33:9b:93:0f:27:2f:
30:d3:d0:fa:95:aa:dd:69:51:a5:8e:f0:ec:4c:3a:
94:83:e1:12:57:0d:76:08:07:ac:cb:8c:93:79:df:
98:f2:78:56:ed:ce:24:99:08:cd:fd:c5:64:f7:6c:
58:b4:22:14:7e:9b:3c:25:75:d3:2d:46:73:d4:2a:
a3:b0:1b:cb:25:b3:2b:08:95:03:d2:21:c5:eb:d1:
37:b5:bc:f3:50:65:cc:29:52:23:68:5a:c3:c4:71:
da:d2:6a:6c:18:09:d7:34:dc:b0:b7:b9:7d:54:2a:
03:05:17:38:54:a2:75:dc:d4:1a:bb:5b:8f:eb:1a:
42:17:01:bc:c5:90:31:31:34:4c:f4:91:9e:52:94:
6c:14:dc:dc:6a:bd:e8:21:19:75:a5:5b:0c:b6:ba:
d8:4b:39:6b:f7:ff:db:0c:db:bb:f4:90:ec:d2:b0:
fc:87:03:66:cc:a9:b2:2f:78:46:9c:c7:1b:7e:60:
60:80:63:c1:64:21:4d:e4:38:24:0a:ed:37:3d:cc:
42:c3:e3:23:89:8d:c6:58:cd:0a:2f:8a:f3:2d:8d:
a4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:03:5E:D0:8A:D7:51:1F:BF:E1:07:DB:1F:DA:85:E2:A1:00:B5:C6
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/HgNe0IrXUR-_4QfbH9qF4qEAtcY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.96.0/23
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
51191
Signature Algorithm: sha256WithRSAEncryption
9f:4f:5c:4e:bd:d6:86:30:41:7b:85:08:02:85:11:00:41:14:
98:5f:ff:02:2d:da:21:b1:20:cd:d5:55:0b:81:4e:68:a2:59:
cd:81:ae:ad:31:1f:5d:2b:5f:20:bc:77:ef:6c:55:cd:bf:93:
16:d5:5a:7e:51:b8:89:29:ca:4c:4e:fd:f5:f3:b3:bf:fe:55:
c9:23:7e:37:9e:0d:98:73:9e:55:39:a5:fd:96:4d:01:54:2a:
25:54:a0:8d:93:ca:0f:3a:dc:87:c9:48:ca:91:14:02:dc:36:
cd:21:7b:f4:2f:3c:c9:6b:f9:ab:2a:80:46:85:d8:f9:8c:24:
92:8e:8b:0c:31:5b:1d:a9:b9:87:7c:e1:e5:13:ea:08:51:6f:
6a:87:61:68:be:91:27:2f:15:f0:70:e8:0b:b1:43:c7:96:66:
28:a2:85:d8:3e:b6:9b:fc:65:9b:71:69:82:a6:be:35:7a:92:
1c:55:da:2f:d0:99:0c:5f:a2:53:39:3b:fb:75:e4:46:92:aa:
74:06:59:54:dc:14:3a:37:7b:bf:b6:dd:82:7e:40:2e:7c:7d:
03:b1:eb:76:51:9a:54:10:1e:cd:af:45:02:98:ff:6f:95:cd:
32:a5:10:4b:d8:90:2e:d3:fd:a4:43:eb:bd:df:75:ea:3e:e0:
d0:e9:33:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 26 17:03:40 2024 by rpki-client on console-fra.rpki-client.org