Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KS-wn35or-lfI5ExFObApqpyb90.cer
File: KS-wn35or-lfI5ExFObApqpyb90.cer (raw, json)
Hash identifier: Mq03PBgtYTgXkc8CySpBaJVOEhWcPV1u0LFDjT4xAqw=
Subject key identifier: 29:2F:B0:9F:7E:68:AF:E9:5F:23:91:31:14:E6:C0:A6:AA:72:6F:DD
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 01925704C4E7A339B59DA582A67D5AFB9720
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/KS-wn35or-lfI5ExFObApqpyb90.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Fri 04 Oct 2024 10:13:03 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 43967
AS: 197179
IP: 91.200.180.0/22
IP: 178.159.224.0/20
IP: 193.160.97.0/24
IP: 194.31.44.0/22
IP: 195.211.136.0 -- 195.211.147.255
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:57:04:c4:e7:a3:39:b5:9d:a5:82:a6:7d:5a:fb:97:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Oct 4 10:13:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=292fb09f7e68afe95f23913114e6c0a6aa726fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:90:e1:0d:fb:6a:1b:33:94:25:94:a7:e7:87:
c9:68:1a:a7:1b:af:ac:ed:d7:e9:fb:2f:8b:70:9d:
70:d3:c7:bf:01:62:19:53:e4:2d:fe:ae:ff:75:f8:
a3:f1:20:a7:4c:34:f7:e1:b3:60:a1:98:a1:90:f0:
e0:f0:e2:fc:31:ce:88:e5:cc:c4:53:61:8b:35:03:
8f:31:31:17:38:0e:3c:46:a5:66:47:d5:f7:2b:ec:
54:bb:aa:f5:78:21:64:11:6d:7c:86:e4:33:54:51:
b4:83:61:1b:52:f4:9c:40:ea:d3:2d:c5:10:4c:ac:
79:bd:38:b5:f3:61:9f:2f:e5:fd:f4:02:6a:f8:a8:
88:df:b0:8b:c5:c6:36:9f:a6:1e:5b:9d:b8:d1:09:
88:0f:c4:60:12:4b:cd:1b:3e:7d:70:f0:6f:2f:54:
d2:74:73:9e:91:be:db:89:55:2c:51:bd:28:e2:db:
08:c6:3c:30:db:d3:67:08:c3:f4:59:7c:3e:b9:8b:
3f:5c:64:e5:1d:77:47:3a:1b:eb:1c:8e:1e:f0:3b:
9a:e9:e8:ba:6f:7c:3b:46:32:e1:7e:59:93:bb:47:
f1:4a:42:a3:01:3c:e2:6b:41:3e:c5:e4:25:e9:6e:
db:4e:50:78:51:51:b8:ed:ca:c3:34:b0:c6:39:4d:
8e:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:2F:B0:9F:7E:68:AF:E9:5F:23:91:31:14:E6:C0:A6:AA:72:6F:DD
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/e13112-5758-4552-b2ad-ed1b9b8e6470/1/KS-wn35or-lfI5ExFObApqpyb90.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.180.0/22
178.159.224.0/20
193.160.97.0/24
194.31.44.0/22
195.211.136.0-195.211.147.255
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
43967
197179
Signature Algorithm: sha256WithRSAEncryption
6d:9b:98:ef:8b:48:64:75:04:69:40:de:a2:49:d7:75:a0:4d:
dc:bb:20:39:56:9a:32:c6:3f:35:2a:16:d5:ad:a6:58:22:1c:
9f:03:65:b4:f3:b8:23:8a:c0:d9:45:a0:04:9a:7d:c2:8d:ad:
3d:f5:8d:38:13:ef:91:e4:da:b9:f2:93:be:92:06:13:06:98:
eb:ac:87:b8:42:cb:e6:50:45:40:f6:59:a0:8d:13:ac:7f:39:
ba:6e:aa:72:8e:e5:0d:24:8e:f3:17:a1:bf:ad:9c:0b:2f:a5:
1d:e0:18:5c:1b:2b:54:93:c3:3a:53:1d:ef:42:88:f5:e1:73:
b3:fe:ab:c4:f4:10:30:65:3d:1b:0c:1d:c5:e9:91:46:2b:ee:
46:d3:cc:1c:43:bf:6d:52:ca:06:09:7b:63:8e:66:0e:51:4b:
bb:70:8d:d1:2e:cb:3e:05:b1:11:e5:02:89:cb:04:6b:10:13:
3e:92:f6:fb:b2:bb:cd:79:6b:92:c6:d6:b5:25:ec:4f:f9:f7:
ea:aa:72:b6:6c:de:4c:16:dd:8c:b2:7f:4d:9d:74:b1:ff:d3:
79:90:e3:e7:34:59:7b:b3:1c:f9:8d:9c:b5:7a:c1:2d:ac:9c:
59:e8:db:26:b5:0a:ed:ac:31:4b:58:c9:d4:aa:9f:76:58:45:
a9:27:33:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:11 2024 by rpki-client on console-fra.rpki-client.org