Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer
File: KZIVGMXaG4TFlxp5vHTorAdw_Uk.cer (raw, json)
Hash identifier: Y6ZokV8epQI08oWZlpS/e8qDIrIt8FhhPK+Buz6h0IU=
Subject key identifier: 29:92:15:18:C5:DA:1B:84:C5:97:1A:79:BC:74:E8:AC:07:70:FD:49
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4932271BF654AC5D9E2F6A507231C6D
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:26 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 201603
IP: 91.217.32.0/23
IP: 94.177.20.0/24
IP: 185.69.104.0/22
IP: 188.214.108.0/24
IP: 2a05:2140::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:22:71:bf:65:4a:c5:d9:e2:f6:a5:07:23:1c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29921518c5da1b84c5971a79bc74e8ac0770fd49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:18:7b:d1:21:e0:06:16:ca:fe:fd:82:b2:2c:
d1:3e:b7:62:ba:95:ba:68:a8:72:dc:a1:ff:2b:c1:
18:4d:6c:49:a9:66:55:a8:9c:88:08:7d:96:3a:7c:
2d:19:8c:c3:96:e9:e0:09:11:5e:9a:02:5b:af:29:
45:29:1d:27:18:08:48:e6:20:2d:75:4f:0b:5d:bb:
ef:6e:ad:0a:05:a3:bc:c2:3d:69:ec:c0:dc:91:6f:
66:dd:e0:98:68:75:c3:73:5f:16:8f:f8:0f:8e:f4:
d4:aa:fc:de:cd:e6:ad:3c:a0:a0:53:8c:a5:e6:78:
aa:71:4e:ba:0b:23:7f:8c:47:12:05:e9:d2:77:11:
cc:32:a3:e9:31:fc:39:b7:1c:18:95:39:b7:97:23:
24:18:6e:85:3f:62:66:69:f0:c1:17:60:c2:2a:61:
58:27:a0:2b:c0:38:68:87:22:4d:f3:83:b9:95:9e:
86:8d:e0:5d:88:63:93:63:3e:a9:26:65:b5:5a:ad:
12:e0:c2:8f:a4:24:f1:58:6b:7e:da:9d:c0:f9:7b:
bc:3d:b1:0e:36:09:a6:bd:69:84:55:2c:a1:9b:61:
80:b8:f0:e9:22:c3:27:7a:f3:bb:c7:29:64:95:05:
f8:aa:7b:ca:84:13:e9:11:24:1f:d2:a9:5f:f2:79:
95:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:92:15:18:C5:DA:1B:84:C5:97:1A:79:BC:74:E8:AC:07:70:FD:49
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/715835-bc1d-4cb8-9618-4ef283ce7ff1/1/KZIVGMXaG4TFlxp5vHTorAdw_Uk.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.32.0/23
94.177.20.0/24
185.69.104.0/22
188.214.108.0/24
IPv6:
2a05:2140::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
201603
Signature Algorithm: sha256WithRSAEncryption
26:30:cf:91:1d:b5:4b:8f:36:34:19:e6:6a:4c:17:ad:2d:7a:
e3:9a:c3:de:cf:30:88:45:a3:e9:fe:e1:fe:bc:14:6e:f4:e7:
b0:cb:b5:58:ba:87:ef:cb:b5:a4:ff:0d:d9:2a:31:77:a3:80:
e9:a8:d4:76:8d:5d:cb:b6:c0:95:ed:30:21:b0:4c:0e:43:c6:
25:d5:c0:9c:66:dd:c5:cd:59:f1:4b:24:c5:be:db:f5:e5:fb:
b9:38:6e:1f:74:77:9b:aa:7e:fc:54:90:ad:c6:21:1f:17:fd:
53:82:81:05:df:b0:ae:06:17:1e:5d:23:9b:a6:03:4f:dd:3d:
46:e4:26:33:1c:82:c6:43:55:ab:a7:97:67:3f:03:90:42:21:
05:83:e9:77:d5:1e:75:71:0b:1b:3c:58:6e:03:45:d5:6a:f6:
3b:18:c4:f1:99:a2:6f:22:dd:e2:17:80:6a:40:13:be:12:65:
c2:62:55:0d:c7:f0:8f:f6:db:ca:20:d7:60:9e:fa:f1:e2:a8:
07:73:82:99:1e:24:f5:09:22:36:ae:36:8f:01:95:d2:22:5d:
12:db:47:39:63:32:84:01:c4:64:ba:6e:68:98:eb:64:57:be:
74:d4:83:f6:d1:6e:a7:3d:f3:a5:2b:26:2e:f4:4b:0c:ba:b6:
41:c5:cc:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:13 2024 by rpki-client on console-fra.rpki-client.org