Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J-D3u75AMaJO8bnbGWqrBkLoSgY.cer
File: J-D3u75AMaJO8bnbGWqrBkLoSgY.cer (raw, json)
Hash identifier: pcvcgg9gV1Pa9mD66H31zr6tI5VYnPlGKtRo+Xy7Fa8=
Subject key identifier: 27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC2DB3BDBBED740BEBD682EB78CB83E39
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 02:29:56 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211174
IP: 31.207.52.0/22
IP: 31.207.60.0/22
IP: 83.98.204.0/22
IP: 94.46.188.0/22
IP: 146.185.64.0/19
IP: 185.63.64.0/22
IP: 185.104.84.0/22
IP: 2a04:f340::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 03 May 2024 17:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:3b:db:be:d7:40:be:bd:68:2e:b7:8c:b8:3e:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 02:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27e0f7bbbe4031a24ef1b9db196aab0642e84a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:65:18:94:b2:a1:ad:ee:e5:68:43:4c:8d:2c:
4c:03:b8:81:45:f0:4d:62:3a:36:83:d4:ff:54:8e:
56:13:9a:1c:f2:26:75:48:e5:59:92:46:f3:e4:51:
c1:85:cf:39:42:e8:96:f5:f7:bf:4b:38:72:f1:d1:
49:d0:30:2f:f4:c4:b6:05:d8:71:6e:b9:43:6f:9b:
ff:27:9d:98:1b:36:b7:c3:51:82:4f:80:9d:90:6f:
8d:26:b0:b8:bd:50:b3:c6:09:bf:c5:47:ca:f3:6c:
d4:96:e6:cb:e3:38:03:9a:a0:b0:af:92:9a:cd:a4:
07:87:8a:2f:f7:f1:96:d4:fc:fe:bd:9c:f9:06:3a:
41:33:6c:ef:d0:e9:15:05:65:ad:1a:af:a6:8e:7d:
4b:1c:34:51:ef:9c:81:70:98:9a:dc:20:8a:58:99:
23:81:d0:5b:56:8c:ed:a6:28:e3:15:0d:b3:88:d5:
6e:14:e6:9c:4b:cd:33:27:88:32:cb:84:4c:42:66:
33:90:65:21:e7:cf:d7:80:81:76:96:fc:e0:47:02:
5f:3b:e8:47:ac:4c:1f:88:ca:9a:7c:32:34:03:fe:
ad:4a:c3:c9:6a:4f:9f:05:59:00:6d:42:2f:ff:5f:
51:46:6b:c3:48:1c:c2:ce:ab:c6:6c:95:ac:4e:c5:
b6:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E0:F7:BB:BE:40:31:A2:4E:F1:B9:DB:19:6A:AB:06:42:E8:4A:06
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8aba71-3ba8-4b8d-8eb6-346a3ec1868c/1/J-D3u75AMaJO8bnbGWqrBkLoSgY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.207.52.0/22
31.207.60.0/22
83.98.204.0/22
94.46.188.0/22
146.185.64.0/19
185.63.64.0/22
185.104.84.0/22
IPv6:
2a04:f340::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211174
Signature Algorithm: sha256WithRSAEncryption
84:2a:a2:c6:b4:7b:ce:81:ad:81:cd:74:d9:4e:7a:1a:d8:ca:
3b:6c:85:7e:d5:ee:10:6a:5f:7f:2f:f0:5b:80:f3:a1:cf:c3:
6a:7e:11:7f:ef:29:dc:66:0e:55:e6:78:03:c9:24:a1:9c:b1:
b7:e2:a4:01:3f:69:04:02:22:8a:85:52:1f:12:9c:9e:45:3a:
05:83:a7:dc:09:14:60:c1:97:60:23:71:46:e1:7e:da:52:93:
d1:4d:7b:24:0b:f2:9c:8a:6b:5b:84:7b:bd:55:58:9b:45:e2:
38:f5:1b:14:55:18:81:57:f2:8e:82:dd:38:df:4c:9d:1f:cf:
11:ad:3b:98:75:25:86:f2:78:dc:74:d5:d7:d2:9d:60:18:e0:
4f:66:ca:37:2c:ad:1f:f2:fa:88:e8:75:63:91:dc:4c:1b:3b:
53:f0:b6:d2:77:33:fc:45:b2:e6:12:41:26:71:f1:e3:b5:78:
95:3a:82:0d:6f:69:eb:6a:3e:97:06:42:76:92:3a:f2:23:67:
fb:2f:42:dc:a4:b1:65:08:77:db:e4:35:de:41:e3:74:bc:78:
bf:d3:7b:54:b6:45:87:d9:06:c2:c1:ea:91:2a:51:d3:92:d7:
0c:08:a7:3d:3b:70:68:83:1b:33:a8:8c:91:e7:57:86:77:30:
91:c2:5b:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 02:51:24 2024 by rpki-client on console-fra.rpki-client.org