Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JuP8ebY4sSMZHa-k6IbTpaytSH8.cer
File: JuP8ebY4sSMZHa-k6IbTpaytSH8.cer (raw, json)
Hash identifier: qsAsq2QC5AZRLmCkd2oo7kHEDVqFQDoxnym3zdddxe4=
Subject key identifier: 26:E3:FC:79:B6:38:B1:23:19:1D:AF:A4:E8:86:D3:A5:AC:AD:48:7F
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4245848B067F8AF1B293D71A8ABD6B5
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/JuP8ebY4sSMZHa-k6IbTpaytSH8.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:25 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 211087
IP: 91.216.186.0/24
IP: 2a13:7f40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:58:48:b0:67:f8:af:1b:29:3d:71:a8:ab:d6:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=26e3fc79b638b123191dafa4e886d3a5acad487f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7d:e3:4c:2f:04:17:dc:7c:09:45:57:81:ad:
a8:c4:1b:04:ab:2a:e0:f9:7d:cd:53:5a:31:59:56:
0d:20:ee:f9:ba:e9:c4:c3:94:75:8b:37:e4:a7:d9:
32:4d:d8:19:b5:6c:98:0d:f9:24:98:3a:61:64:31:
d5:7f:9c:88:01:3b:e1:11:42:e7:36:35:59:d6:cc:
11:f6:a7:41:0a:4c:cd:d2:09:db:43:cf:00:56:ea:
78:8c:a2:dc:7c:80:69:e9:f9:3b:22:47:31:15:a5:
5c:68:68:2c:7b:f4:44:4b:26:cf:c2:14:10:41:13:
b0:0b:bf:89:3d:8b:67:36:51:54:35:70:ba:09:48:
93:e3:3f:3b:1f:2b:4a:65:7a:cf:f7:bf:fa:c0:7d:
9c:01:f5:04:d7:95:26:5f:a6:04:0a:e2:a8:20:da:
9e:b7:93:74:c4:b4:08:5f:cf:e0:0d:20:10:59:4a:
e6:35:79:1a:e8:0c:37:e9:02:f8:34:82:13:e8:ed:
fb:bc:5c:e1:0e:fb:d9:58:03:84:d6:03:57:2a:11:
63:1d:43:b1:85:25:17:5e:3a:34:5c:9e:94:f2:1a:
a5:6e:aa:3c:03:9a:44:70:37:2d:56:e9:ac:c3:22:
56:57:05:6f:19:87:c8:5a:be:80:25:93:9c:3d:a5:
ec:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:E3:FC:79:B6:38:B1:23:19:1D:AF:A4:E8:86:D3:A5:AC:AD:48:7F
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/JuP8ebY4sSMZHa-k6IbTpaytSH8.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.186.0/24
IPv6:
2a13:7f40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
211087
Signature Algorithm: sha256WithRSAEncryption
39:74:c3:a0:e1:dd:ab:c1:11:13:30:83:81:08:87:a2:ed:78:
e1:03:94:95:65:f4:58:af:cc:d6:47:47:60:d0:6d:6d:68:19:
57:ea:84:45:07:d6:8e:10:b5:29:55:05:4a:18:6d:4e:ac:16:
85:2a:80:2e:b9:40:fe:bd:5a:05:f2:a5:36:c5:cc:12:ce:67:
cb:f5:fb:d1:ae:43:0c:83:63:0c:22:b4:56:f0:bd:cb:c7:a1:
b0:30:f9:cd:4b:ae:ba:6e:d2:f7:94:08:90:2e:5d:12:21:fe:
eb:3a:3e:4f:8d:30:ca:47:f0:b4:72:6e:d7:3c:c2:0b:47:56:
91:b2:88:5f:d8:c3:58:cd:ea:f7:f6:9f:a4:ba:68:8b:f9:c4:
cc:17:07:86:43:fc:e5:56:12:ec:2a:e3:eb:d7:9f:13:9a:57:
fd:38:40:81:7a:87:94:bf:c9:7a:4d:fc:d2:6c:86:7c:93:eb:
3f:dc:a8:b5:b1:a8:f4:33:d0:4b:24:cc:ea:38:d7:a9:c1:ff:
0d:e2:98:41:bf:e7:1c:e4:f5:58:01:e4:fb:8b:3e:00:72:e4:
ca:bc:bf:c4:c9:c9:c1:fe:24:ed:6e:c7:c2:db:0c:24:8d:95:
21:2c:fc:ef:84:87:79:72:23:f9:f3:d7:81:48:66:7e:b1:16:
7d:95:1e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 06:55:43 2024 by rpki-client on console-ams.rpki-client.org