Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JVf6lW8PU5gNecMs4ebpPv1Ij9c.cer
File: JVf6lW8PU5gNecMs4ebpPv1Ij9c.cer (raw, json)
Hash identifier: +P3V/5Cl0clERxZEIEF1TQzxKTWQA11NNz+r8F3kPJY=
Subject key identifier: 25:57:FA:95:6F:0F:53:98:0D:79:C3:2C:E1:E6:E9:3E:FD:48:8F:D7
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018DAC5EA791D181C64AF647051A6E5CF79D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/JVf6lW8PU5gNecMs4ebpPv1Ij9c.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Thu 15 Feb 2024 10:45:00 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 208118
IP: 152.89.65.0 -- 152.89.67.255
IP: 2a09:2e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ac:5e:a7:91:d1:81:c6:4a:f6:47:05:1a:6e:5c:f7:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Feb 15 10:45:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2557fa956f0f53980d79c32ce1e6e93efd488fd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d2:e4:f2:fc:30:e8:31:8e:9a:c0:8f:aa:58:
f7:e0:97:aa:5f:f5:7e:e9:b0:f8:59:59:00:4f:97:
52:ed:d1:a0:95:0d:25:2c:d5:4f:e1:13:f9:46:cc:
a3:9f:ae:81:0c:47:a5:4e:33:ff:e6:e0:2b:70:2d:
09:26:1f:dc:e9:45:29:14:06:33:44:29:94:ee:04:
0e:55:de:10:9f:80:c4:58:d6:e3:17:0d:93:ba:97:
c5:f5:c9:57:28:f6:53:29:47:35:3a:89:c4:06:05:
1b:8a:af:a0:ea:dc:37:15:b5:df:ca:9c:31:61:2c:
6d:10:14:c9:8a:dd:7a:16:9a:58:c8:8f:91:81:1d:
8a:ca:a8:91:a8:e8:94:22:c2:94:23:27:46:88:06:
4d:27:40:bc:1d:e3:17:56:0b:3a:cd:8b:f9:fc:a7:
ac:c4:f7:b0:67:a6:b6:31:e8:4f:4b:21:59:c6:89:
8d:ce:e5:9e:ce:c8:0f:ac:aa:a7:e3:b3:fc:fd:2a:
46:d4:91:75:8a:fd:e7:71:e3:5a:2d:48:cb:83:85:
64:f4:05:bd:3f:f0:99:bc:97:14:25:2c:17:44:72:
14:c1:e3:5c:80:df:42:71:68:4f:42:00:d0:8b:44:
a3:5b:20:97:24:67:78:13:1e:3e:9d:07:cc:b3:5d:
47:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:57:FA:95:6F:0F:53:98:0D:79:C3:2C:E1:E6:E9:3E:FD:48:8F:D7
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/JVf6lW8PU5gNecMs4ebpPv1Ij9c.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.65.0-152.89.67.255
IPv6:
2a09:2e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
208118
Signature Algorithm: sha256WithRSAEncryption
a5:9c:21:3f:21:44:1f:9a:80:0c:7d:f9:50:ea:2d:e7:98:2b:
ab:7f:01:13:82:b1:3d:40:4c:ac:20:54:99:b6:95:d9:94:ab:
a6:2a:a9:97:01:14:47:74:3a:d7:f4:40:fc:ad:b7:6c:aa:06:
45:4f:cf:48:f7:a6:73:37:ff:27:e5:0c:5d:f6:a3:67:6d:40:
44:04:87:65:f9:f3:54:bc:39:52:18:1a:ef:2e:b4:29:02:5b:
e2:b7:87:9b:50:2f:79:9e:87:40:d2:16:80:5f:eb:88:13:d2:
1c:73:a1:42:ec:e6:f6:8c:4b:74:41:5d:0f:19:9c:b0:5f:36:
45:a5:02:a0:21:81:27:c5:44:9f:49:50:67:3d:35:3c:50:ad:
f5:d4:85:72:60:98:6d:97:74:8f:b0:a1:de:84:31:bb:75:be:
49:45:f1:da:96:35:e0:81:27:4f:36:c5:bb:30:b5:71:f2:00:
bf:a9:36:39:44:69:c8:5f:09:66:05:2d:a6:c0:70:7e:4e:88:
ab:0e:ee:a3:99:81:8f:53:50:e4:92:86:2c:96:c2:70:db:8e:
10:3d:9d:20:9c:34:a0:45:36:26:b6:e8:56:b6:33:bb:18:db:
f4:ce:c7:64:c4:3f:b0:bf:27:13:19:47:fa:cf:b5:94:60:db:
2d:32:a3:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:06:57 2024 by rpki-client on console-fra.rpki-client.org