Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KflnDuKjDqyMCjncR_96jNJHOwA.cer
File: KflnDuKjDqyMCjncR_96jNJHOwA.cer (raw, json)
Hash identifier: MQ1pXZff0g/Eue+ehuXHO/3eTkPnCy9ca7v96WhDgco=
Subject key identifier: 29:F9:67:0E:E2:A3:0E:AC:8C:0A:39:DC:47:FF:7A:8C:D2:47:3B:00
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC4932DBCE301CDCD17002BD69F9D8341
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/KflnDuKjDqyMCjncR_96jNJHOwA.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 10:30:29 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 209114
IP: 193.33.120.0/24
IP: 194.31.130.0/24
IP: 212.56.58.0/23
IP: 2a12:6e40::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 Nov 2024 03:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:2d:bc:e3:01:cd:cd:17:00:2b:d6:9f:9d:83:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 10:30:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=29f9670ee2a30eac8c0a39dc47ff7a8cd2473b00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:07:0d:e3:62:6b:f0:94:ff:97:6e:bc:64:84:
06:f2:b9:df:67:8d:d8:7e:0a:9d:9c:a7:e3:dc:c4:
a7:0d:a4:07:92:68:6a:74:a4:1b:27:c3:22:d6:41:
c0:90:4e:fe:1a:cb:f3:34:f3:f5:04:0d:ed:61:9b:
d7:3a:46:0b:78:75:90:52:50:55:96:83:0c:88:da:
20:d2:90:62:9b:87:2b:8e:04:12:3f:8e:19:dd:65:
47:d1:1f:ee:73:88:88:95:39:53:4c:0d:bc:57:49:
9c:60:a0:d2:aa:c8:18:86:b4:4e:2c:d6:a6:11:c3:
4c:b1:55:04:8a:cb:2e:4f:82:5c:0d:51:83:43:74:
00:4c:42:81:e5:a0:7c:f4:20:ba:20:8a:bb:3f:9e:
de:ae:6d:cf:71:c3:ce:9f:f1:a7:a3:b6:f7:85:bc:
c0:0b:40:23:d4:9d:12:cb:a9:15:4c:ef:c4:8b:41:
fb:24:d3:17:67:7a:1d:2b:2b:9b:57:cf:ad:18:6d:
20:86:03:cc:46:f4:5c:47:7a:a5:45:73:64:a7:a0:
de:10:48:23:e4:3e:92:c3:df:dd:e0:56:6d:63:e1:
40:7e:2d:4c:ee:8d:49:8f:d7:f9:79:e0:ad:9c:8b:
6b:20:12:c0:64:2a:52:65:03:b6:14:cb:ed:24:d5:
b6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:F9:67:0E:E2:A3:0E:AC:8C:0A:39:DC:47:FF:7A:8C:D2:47:3B:00
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2ff76d-f116-4430-8407-6e29efdfd4e3/1/KflnDuKjDqyMCjncR_96jNJHOwA.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.120.0/24
194.31.130.0/24
212.56.58.0/23
IPv6:
2a12:6e40::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
209114
Signature Algorithm: sha256WithRSAEncryption
9a:3c:27:ba:1c:a1:cf:f9:40:7a:29:ad:e1:ea:d2:ca:ec:4b:
32:02:08:e3:14:48:77:bc:12:47:29:ed:cd:91:18:ca:bd:7d:
52:6b:54:49:04:73:ec:ca:ce:9d:20:7b:78:4d:c6:6d:dd:90:
cf:b8:5a:5d:af:12:6e:f2:ff:51:7e:90:67:21:57:da:ba:17:
0e:8b:36:a1:f7:d6:cd:83:c3:0c:01:22:82:82:9b:66:8a:68:
76:5f:03:c6:ac:65:48:e5:1f:cc:34:ad:52:25:6c:60:6f:45:
cf:78:53:1f:96:bf:fa:c7:14:94:7e:bf:2b:61:b8:43:4a:38:
7b:ea:74:f9:1d:33:f8:00:70:12:20:7a:21:44:47:37:cd:3a:
82:67:d6:0e:9c:31:e1:1b:25:92:5a:b4:44:dc:1b:08:95:25:
9b:75:28:47:af:64:39:6d:97:9a:a8:84:e1:db:d1:c5:0b:70:
57:49:8e:67:3d:8c:44:97:62:d7:47:18:5d:69:91:41:91:f8:
fc:08:1d:c5:21:d3:d0:4c:64:0b:35:50:c6:45:8e:3e:bd:d7:
1b:2c:fc:f0:eb:88:c4:e7:05:c8:f5:9b:cf:84:5d:64:ca:f3:
39:78:d0:2f:17:a8:16:cf:fa:27:4f:72:3d:6a:ef:50:61:5d:
f9:7e:e2:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 09:59:11 2024 by rpki-client on console-ams.rpki-client.org