Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer (raw, json)
Hash identifier: R4CqmKhk+u79TkEJiLUqERvQk/8zY94Vho14rd2NNos=
Subject key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC5013E3B87E59B6564F4CAE9633EFACE
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 12:30:42 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 205940
IP: 185.201.140.0/22
IP: 2a0a:c540::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:3e:3b:87:e5:9b:65:64:f4:ca:e9:63:3e:fa:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 12:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:75:ce:0e:d8:5c:0e:ad:5d:95:b6:15:a4:88:
2c:2c:ee:97:40:c2:10:87:03:42:a2:b8:bb:da:9e:
92:34:a2:be:4d:01:9c:56:81:f2:80:71:a6:6b:ce:
eb:37:36:63:0f:f4:96:4f:50:75:84:d0:8b:c1:f8:
ea:d7:1c:60:98:b9:3d:41:e0:40:24:e5:64:1b:7d:
f9:27:d2:9d:32:65:79:a6:ef:18:8f:9d:97:9b:2a:
95:6e:ae:97:ee:ac:d8:0a:3d:c1:1a:27:72:3b:53:
3b:6a:02:e7:57:c2:e9:72:6b:8e:4a:10:d2:ce:d7:
75:0e:83:99:b4:5d:c2:d4:35:55:9c:ae:cb:04:54:
05:8c:2e:35:7a:83:fa:75:59:ac:f5:76:43:e8:e3:
39:5b:b6:27:d1:9b:19:87:26:56:b4:9a:e5:3b:40:
34:4c:23:c9:9e:3a:b5:44:93:0e:b0:28:91:66:f1:
04:21:55:ce:b2:f9:98:33:a1:09:a9:2d:c1:3b:6b:
c0:2a:4a:65:4e:6c:21:55:4b:08:d1:7c:8b:83:69:
c2:7f:4e:ac:40:64:f1:d1:73:04:84:ee:0a:43:de:
1b:24:18:2f:46:d4:0e:fe:ff:eb:9a:90:bd:1d:cc:
20:15:36:43:7f:43:61:74:5f:a4:ae:da:d8:4f:e5:
0f:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.140.0/22
IPv6:
2a0a:c540::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
205940
Signature Algorithm: sha256WithRSAEncryption
24:ad:2f:34:a6:4b:06:25:f0:03:e3:e7:5e:66:4a:d2:fa:a4:
53:00:71:87:06:87:e8:e0:22:e1:1c:33:72:87:fd:3b:f5:b6:
70:94:a9:a3:84:83:77:bd:de:09:0a:e9:38:b0:a2:2a:a9:7c:
db:a6:ee:5b:c3:5e:1a:52:89:87:77:ee:b3:7d:3e:c6:9f:47:
09:01:50:85:ed:07:77:5e:30:ea:cf:81:d4:92:9b:04:eb:95:
67:5f:c0:38:49:25:ff:45:d2:26:d0:81:ae:e0:c3:55:2a:34:
43:fe:e4:02:42:69:26:75:3f:1c:4b:03:c7:83:e8:80:bc:ab:
7a:61:f6:6e:24:52:ec:17:0f:fe:fc:a2:f9:27:73:d7:d0:ba:
e7:8d:4a:73:85:88:d1:d0:c6:b0:1c:38:bd:6c:f8:ce:c4:40:
6f:67:e9:3c:02:2b:16:25:f1:9a:a6:22:6c:bd:ee:05:3f:21:
5a:eb:e3:6e:8b:76:c4:63:9b:23:0a:d1:6b:c9:4f:53:e4:ab:
58:37:7a:49:c1:64:68:c1:53:2a:de:e3:12:ed:e8:6d:d5:91:
cb:01:43:78:13:20:d2:47:63:24:59:2e:76:8b:78:ea:b2:c7:
60:68:51:78:62:1a:8e:a2:97:78:6f:8a:b6:53:f3:21:6a:7b:
f3:ae:52:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:13 2024 by rpki-client on console-fra.rpki-client.org