Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KRCdpmL50wL_8sXEtK-4-Uf-wcA.cer
File: KRCdpmL50wL_8sXEtK-4-Uf-wcA.cer (raw, json)
Hash identifier: EziEj3YPkEWZx/tUknbvUJBM9HaIuRSa+k9GEejMCOA=
Subject key identifier: 29:10:9D:A6:62:F9:D3:02:FF:F2:C5:C4:B4:AF:B8:F9:47:FE:C1:C0
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5DCAC3A3737C77185F2EAFB8E3591FB
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/KRCdpmL50wL_8sXEtK-4-Uf-wcA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 16:30:22 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 6881
AS: 47200
AS: 47627
AS: 59747
IP: 91.207.230.0/23
IP: 91.207.234.0/23
IP: 91.210.16.0/22
IP: 93.190.128.0/21
IP: 185.1.34.0/24
IP: 194.30.187.0/24
IP: 194.50.100.0/24
IP: 195.47.235.0/24
IP: 2001:7f8:14::/48
IP: 2001:7f8:91::/48
IP: 2a02:38::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 15:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:ac:3a:37:37:c7:71:85:f2:ea:fb:8e:35:91:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 16:30:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29109da662f9d302fff2c5c4b4afb8f947fec1c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:45:5a:83:60:e2:6d:50:3c:1b:13:f9:1d:
a4:77:ba:69:c1:da:06:23:83:bb:bd:c1:5e:4f:57:
3c:f5:c4:4a:be:6c:7d:b8:06:2f:9f:28:7a:1a:14:
11:a7:4b:b7:f8:65:ce:e9:18:8a:ce:3b:4e:62:36:
c2:3b:24:62:5d:45:b2:2b:6e:73:43:68:17:ad:45:
d0:0c:db:1b:44:1d:69:e3:ed:56:93:a9:90:d6:20:
e7:46:61:13:45:73:61:ac:f6:43:f8:9e:92:35:75:
68:fc:1b:20:54:ab:3e:95:1f:0c:30:b1:a6:73:93:
56:e8:d1:b8:9c:04:c8:c2:71:06:ef:a4:a1:8c:89:
44:48:35:ac:45:bb:e3:f6:e1:03:49:f4:61:f5:5e:
fd:e7:3d:fd:73:4f:0a:f5:47:4d:f0:22:b5:2b:21:
59:b1:3e:22:d3:37:e6:30:08:f7:f2:60:4a:84:25:
1f:9c:a5:b9:64:55:4c:b3:b8:fb:53:a1:b6:85:e0:
53:0d:1b:01:b9:a2:6f:80:7e:12:1d:af:cf:4f:6d:
73:16:b9:00:19:1d:76:ef:34:fa:01:52:0e:de:39:
35:02:4f:22:6d:88:63:cb:25:6f:c5:67:fc:8c:5e:
5d:76:67:ad:06:37:17:3c:8c:25:f6:e4:75:ab:84:
71:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:10:9D:A6:62:F9:D3:02:FF:F2:C5:C4:B4:AF:B8:F9:47:FE:C1:C0
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/930279-3187-47a5-8137-f4fb5c880509/1/KRCdpmL50wL_8sXEtK-4-Uf-wcA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.230.0/23
91.207.234.0/23
91.210.16.0/22
93.190.128.0/21
185.1.34.0/24
194.30.187.0/24
194.50.100.0/24
195.47.235.0/24
IPv6:
2001:7f8:14::/48
2001:7f8:91::/48
2a02:38::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
6881
47200
47627
59747
Signature Algorithm: sha256WithRSAEncryption
91:86:c3:1f:4d:35:c7:fd:86:46:33:bd:f7:03:eb:67:22:c1:
9e:a5:9c:52:50:b4:58:41:7f:b4:54:3c:a1:38:88:18:18:43:
67:70:30:38:3e:4c:85:a3:a5:7d:b4:9c:71:3b:72:a9:f6:ff:
aa:43:5c:19:3d:b4:6d:68:87:d0:88:37:93:94:19:98:f0:a1:
eb:56:c8:dd:9a:1b:e6:1c:52:a1:b5:2c:d0:d1:2c:68:24:e4:
6c:42:5f:34:0b:d2:f0:00:fd:80:77:65:79:ec:58:2a:f0:34:
00:34:0a:25:0e:74:b7:23:b1:8d:5b:69:a4:9c:2f:0c:0c:1f:
e3:36:7a:50:bc:32:1b:88:2b:72:85:3c:72:ed:20:82:8a:b9:
c8:29:24:9c:64:af:00:66:d1:92:60:cb:ab:a6:27:af:f6:27:
67:c3:74:29:de:00:e3:bf:dc:7b:4d:fb:33:8a:e0:d1:c7:c7:
58:0d:a9:d8:46:76:ee:5a:04:7c:b9:5c:9d:97:98:fc:47:13:
b5:dc:7a:a0:3c:4c:84:4d:74:fb:a6:17:f7:82:81:11:a6:40:
26:29:ca:3c:3e:24:dd:d8:4a:c0:51:3e:14:39:85:cc:ca:d7:
89:19:7e:c6:d0:11:b0:d7:a8:35:ba:76:66:b0:4a:37:03:70:
98:ef:4c:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 19:11:09 2024 by rpki-client on console-fra.rpki-client.org