Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J2zuYEMhsPEryjZ7VMBzmqil8To.cer
File: J2zuYEMhsPEryjZ7VMBzmqil8To.cer (raw, json)
Hash identifier: Q82IkVwlIZdl4gl0LbwWzktYwwRn47Tgi9DfKS/JmZU=
Subject key identifier: 27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EDA7F71AEBDF06F92AA4E0C5FD811
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 31332
IP: 193.22.165.0/24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:da:7f:71:ae:bd:f0:6f:92:aa:4e:0c:5f:d8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=276cee604321b0f12bca367b54c0739aa8a5f13a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:be:4e:fc:f2:c8:d1:d8:95:86:68:88:6e:a7:
ea:3f:8a:d7:1d:6c:f1:ac:bf:28:59:cc:8a:4e:80:
df:09:57:9f:ea:74:05:4f:3c:51:c8:58:eb:1a:76:
78:da:43:75:e6:36:a0:a2:f7:80:04:5a:41:94:b5:
1f:7c:23:18:48:ea:7a:da:81:9f:13:70:53:e3:6e:
6c:e5:3f:99:e1:7f:2b:6b:a1:67:67:e4:78:eb:7f:
c6:7d:5b:9c:02:6c:e0:d0:67:60:f4:b3:99:a8:91:
d4:e9:30:bf:8b:df:f1:e4:c4:93:89:04:60:0b:be:
e3:a3:ba:68:6a:f6:75:7d:eb:9a:65:60:42:19:e5:
4a:0b:06:7d:12:47:2a:9b:3e:b8:a4:21:fa:c6:83:
0d:48:bc:bd:20:d6:9d:15:d3:29:1f:c2:45:2e:8d:
44:39:7e:5e:33:fe:3b:b1:0f:3c:70:e9:90:67:1c:
91:aa:0b:30:aa:54:6d:18:c2:d6:b8:76:40:3d:d3:
48:57:f7:62:35:9f:bf:25:eb:b0:69:78:a6:d4:b7:
11:ca:4f:20:82:07:b5:f0:d7:34:a0:a2:20:8e:ca:
49:86:4c:90:74:02:79:00:f9:23:55:39:de:e1:b9:
fd:6f:bf:f6:5e:99:9a:18:f6:61:2c:e7:9e:93:84:
31:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:6C:EE:60:43:21:B0:F1:2B:CA:36:7B:54:C0:73:9A:A8:A5:F1:3A
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/a59955-86cf-4655-a1f8-258954b4fe5a/1/J2zuYEMhsPEryjZ7VMBzmqil8To.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.165.0/24
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
31332
Signature Algorithm: sha256WithRSAEncryption
b0:e4:48:f8:22:1e:59:35:0d:0a:16:8d:7f:15:80:a6:bd:4c:
59:df:d1:20:a9:52:be:f2:02:d2:36:42:bd:b6:3b:9b:31:26:
14:35:d3:55:91:92:fb:bc:7e:26:39:f1:16:6e:c4:e2:e6:71:
bd:ea:86:51:4b:f2:58:c4:5a:9a:7e:ed:f1:5d:a1:3b:80:9a:
57:cb:c4:38:5b:f0:45:d2:5d:91:97:cf:71:49:bd:87:72:a5:
7b:05:5f:47:3d:b9:a7:87:f8:ad:68:0b:97:4f:a8:9a:48:d3:
6d:8f:a0:72:41:6f:45:44:16:6f:c5:77:27:5e:66:2f:68:34:
61:41:57:8d:20:bf:38:d3:13:21:b6:7a:25:1c:6a:1f:8f:8e:
6c:d0:a0:a0:dd:d2:f1:f9:93:2f:88:48:11:5c:ec:c6:b9:4d:
08:4a:b1:54:8b:96:46:c1:1b:b8:55:3a:9f:99:cb:12:76:41:
26:d4:f5:07:cb:e4:ae:10:43:e0:51:8f:a4:90:36:fc:e9:bc:
dc:5b:d2:87:77:bf:cb:d7:23:2b:da:a8:d6:f4:9c:05:3c:32:
49:aa:98:8e:42:3c:28:55:21:bc:62:a8:de:a9:03:d0:e2:ce:
45:b1:11:d6:5f:ba:a6:5c:1e:38:6e:09:c8:d3:67:ae:4b:0a:
47:84:f6:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:06:50 2024 by rpki-client on console-fra.rpki-client.org