Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Lg4zjXPnWEaEVmMvW8quB68NhzE.cer
File: Lg4zjXPnWEaEVmMvW8quB68NhzE.cer (raw, json)
Hash identifier: ZkKSwobfMcFFaCj2dVBPe0zYFUMEsJrRsLl5tRmHpXM=
Subject key identifier: 2E:0E:33:8D:73:E7:58:46:84:56:63:2F:5B:CA:AE:07:AF:0D:87:31
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC56EB7FA786D0AEB27FEE3326388E361
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/Lg4zjXPnWEaEVmMvW8quB68NhzE.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 14:30:16 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 13136
IP: 80.85.128.0/21
IP: 2a02:13d0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:b7:fa:78:6d:0a:eb:27:fe:e3:32:63:88:e3:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 14:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e0e338d73e758468456632f5bcaae07af0d8731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:90:48:63:2c:af:13:56:47:2a:80:e6:d6:94:
e5:62:d3:e9:78:c4:71:75:df:88:eb:a3:ac:58:57:
4b:0c:72:21:3d:98:97:28:53:ff:82:ce:a6:49:3c:
a8:63:74:49:d4:a5:6a:ca:17:fe:04:49:ba:e0:45:
9a:d4:30:95:7a:78:4d:20:92:72:1e:41:4a:74:d4:
68:e4:11:78:a1:e8:8b:4b:63:1e:0d:66:4b:98:e9:
2f:c1:04:96:17:4f:dc:27:cb:46:35:c6:09:09:26:
d3:81:d6:fb:7c:ef:4b:8e:a4:15:bd:0b:81:73:32:
28:bc:90:4c:f3:b5:3c:06:15:6b:ab:91:55:86:70:
b1:54:4d:b0:68:88:c6:11:58:f4:97:98:b7:59:c1:
3b:da:31:5d:91:92:0a:46:e9:c6:74:94:80:f2:7c:
8a:fe:f7:a5:e8:94:5a:2a:21:fc:57:35:68:0c:ca:
c1:49:ad:a6:c5:50:07:cc:bb:78:e2:8a:7f:56:e1:
17:22:85:f7:11:eb:55:4c:9c:4c:82:cc:a6:e1:34:
3b:df:58:7f:32:8f:00:23:1c:e9:9d:cd:98:ce:03:
86:47:d8:d0:0a:87:8d:95:3d:7f:88:83:de:40:9a:
5a:93:ff:ce:5b:09:e2:1c:e2:c6:53:f5:69:6e:bf:
80:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0E:33:8D:73:E7:58:46:84:56:63:2F:5B:CA:AE:07:AF:0D:87:31
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/811108-e8f7-47af-bc8b-a5b7831a8ce1/1/Lg4zjXPnWEaEVmMvW8quB68NhzE.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.85.128.0/21
IPv6:
2a02:13d0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
13136
Signature Algorithm: sha256WithRSAEncryption
3a:85:25:70:01:85:c6:2c:d3:af:59:81:11:29:ef:57:d5:7f:
2e:6a:d0:11:79:49:38:2a:5a:fd:4d:c4:ca:3a:d2:b3:8f:d4:
4f:35:1b:fd:7a:27:50:6a:5e:9f:76:20:06:1c:65:ff:da:fe:
fb:b5:10:d1:0e:74:08:ab:e1:fd:cc:90:6d:ea:8c:87:8d:ce:
2e:78:07:dc:1c:62:9c:ea:5b:0b:30:65:79:85:42:65:bb:b5:
70:b3:af:c6:9e:38:35:b5:1c:c8:b4:7a:e1:28:01:b6:35:d6:
06:e9:1c:bb:63:85:fc:b9:dd:ad:e9:ad:32:ce:df:96:8f:15:
f3:97:a9:d1:49:88:fb:ed:6f:9a:e5:73:68:fb:11:16:27:25:
37:a2:49:9f:be:da:b9:6b:24:0d:74:f2:98:24:2d:eb:50:92:
ab:cf:72:7d:60:cb:d2:8f:c5:00:b5:3e:1d:f8:c7:96:63:bb:
97:79:c4:e4:4f:e3:99:e4:f3:c8:07:42:25:b5:d6:58:f4:da:
2e:18:2d:a9:30:2d:05:e1:fd:e5:41:cf:ff:5d:f1:a4:6f:b5:
36:e2:4d:3a:81:68:a0:92:26:2b:7e:0d:3c:c3:a2:54:b2:ea:
4b:97:d5:0b:4e:b0:61:2e:4c:1e:69:d7:85:6f:e5:d3:c6:5e:
2b:78:ea:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:29 2024 by rpki-client on console-fra.rpki-client.org