Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JPUbvfAQiNNMa6ru-GvaJanwIZY.cer
File: JPUbvfAQiNNMa6ru-GvaJanwIZY.cer (raw, json)
Hash identifier: +lZsA9iTTIOIhMCBUPRfZgJOh1yrua+TxqQ7Fyt6U5E=
Subject key identifier: 24:F5:1B:BD:F0:10:88:D3:4C:6B:AA:EE:F8:6B:DA:25:A9:F0:21:96
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC64B6059655093E78283B5A503D5340A
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ebd6-561d-42af-bb36-5201a23d7a49/1/JPUbvfAQiNNMa6ru-GvaJanwIZY.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ebd6-561d-42af-bb36-5201a23d7a49/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 18:31:17 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 49471
AS: 49500
AS: 50814
IP: 91.205.221.0/24
IP: 190.211.144.0/24
IP: 192.68.136.0/24
IP: 2a11:4000::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 18:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:60:59:65:50:93:e7:82:83:b5:a5:03:d5:34:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 18:31:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=24f51bbdf01088d34c6baaeef86bda25a9f02196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:6c:1e:71:ee:c7:23:79:42:ef:b8:c3:3d:
c4:88:ca:ac:41:33:0b:62:f7:08:ee:d7:b5:e4:5d:
25:b1:1d:e7:a0:79:2e:1b:ad:84:e1:e4:4f:72:31:
d8:0f:61:bd:28:6a:75:15:cd:34:11:10:d7:69:5f:
e3:f7:59:5f:f9:6e:76:87:b0:88:66:02:8e:eb:b4:
eb:db:31:7d:64:65:5c:d7:d9:8d:19:56:a2:f8:6b:
04:84:40:2b:8c:57:b1:e0:6c:9a:cc:42:16:68:98:
de:75:58:68:80:6a:88:b8:12:19:78:ec:65:35:2c:
11:4f:7b:a4:1e:23:06:4b:17:12:1f:28:4b:ca:77:
ed:7d:ed:e0:19:31:64:1b:6e:09:72:a3:f9:6f:93:
aa:36:73:2e:ae:55:e4:36:07:d2:55:24:de:4f:1e:
ac:2f:5c:b2:c0:ed:87:1b:1c:f0:28:4e:42:8b:80:
4b:50:40:4b:7e:dc:98:29:5b:b3:9a:97:06:f8:b5:
36:43:60:9e:85:ed:bf:d4:32:98:8c:63:6a:7b:ca:
6d:d6:07:2c:b7:9d:06:d0:cc:2b:11:4a:c5:8a:18:
4d:06:50:48:f0:25:31:54:ef:93:d2:fb:a7:d8:f7:
62:a4:b6:2e:87:08:66:b5:7f:6b:4a:7c:d5:ab:dd:
c8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:F5:1B:BD:F0:10:88:D3:4C:6B:AA:EE:F8:6B:DA:25:A9:F0:21:96
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ebd6-561d-42af-bb36-5201a23d7a49/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ebd6-561d-42af-bb36-5201a23d7a49/1/JPUbvfAQiNNMa6ru-GvaJanwIZY.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.221.0/24
190.211.144.0/24
192.68.136.0/24
IPv6:
2a11:4000::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
49471
49500
50814
Signature Algorithm: sha256WithRSAEncryption
49:df:5d:c7:4e:47:b5:d8:79:ed:8a:9a:48:ba:8f:ca:f1:59:
02:47:2d:81:5a:9d:17:3d:64:0f:e6:1c:8d:9e:49:f1:24:90:
61:bd:c3:1d:27:27:c0:49:5a:19:01:1b:4e:15:b0:b4:94:a8:
23:d4:f3:29:b1:d5:48:84:53:09:5b:23:d8:08:9d:e1:f2:b7:
aa:01:36:84:5e:d5:a8:91:25:9f:22:e3:b0:9c:d0:78:28:f9:
49:59:0d:c0:39:de:c4:27:4f:3d:ae:98:98:9f:0a:47:cb:4a:
fc:70:a7:9a:ec:96:77:74:db:c2:67:96:39:ea:0c:9b:95:51:
24:37:03:d6:b3:73:cf:4d:7b:2f:6d:f2:80:3a:01:ed:d6:29:
97:c2:17:a5:91:0e:4e:31:14:b3:b6:e5:71:56:5b:1f:d4:94:
83:8c:47:95:46:10:f3:dd:27:1e:4b:89:83:45:a2:49:e5:e4:
bf:e7:c6:8b:12:b9:88:8f:36:99:d6:35:aa:fc:66:96:57:ea:
14:dd:58:b7:31:6f:b8:f8:21:29:ff:40:e3:12:91:06:fd:1c:
af:a1:02:a4:8c:64:75:d4:f4:c6:cf:48:df:49:d9:9e:b7:8d:
72:ce:01:5f:47:37:0d:34:f2:3e:44:54:9f:f4:2f:89:0e:bb:
f4:c5:5b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 00:41:40 2024 by rpki-client on console-fra.rpki-client.org