Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.cer
File: M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.cer (raw, json)
Hash identifier: uglRhXmYfMswnfaLlLjDKVPgMaESc7SO6Nae+E+OzSA=
Subject key identifier: 33:A9:C7:BD:F2:B8:2E:34:3E:C4:26:67:D6:EE:DE:4B:80:61:0C:84
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC3489A9176F27BD4EE14B1262F942565
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 04:29:24 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 207464
IP: 62.241.32.0/20
IP: 85.113.72.0/21
IP: 109.72.160.0/20
IP: 147.161.16.0/22
IP: 185.36.212.0/22
IP: 185.135.134.0/23
IP: 185.154.16.0/22
IP: 2a00:f0a0::/29
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:9a:91:76:f2:7b:d4:ee:14:b1:26:2f:94:25:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 04:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33a9c7bdf2b82e343ec42667d6eede4b80610c84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3c:2b:f7:95:18:e1:88:e7:e3:f3:5e:36:db:
f0:f0:f0:49:f0:65:cb:2a:03:22:98:54:10:83:bd:
c5:2c:b3:a0:d3:67:bf:fe:8c:ad:7d:b0:28:31:a0:
59:e3:8e:03:ce:15:5b:a1:c1:ae:ed:7e:9a:7b:4e:
52:4c:34:df:61:79:8e:8b:9a:75:ed:a4:09:c4:3d:
63:b2:06:40:35:bb:b5:bc:35:1e:7f:92:52:bd:21:
c8:57:8d:e3:c8:11:a3:30:0f:ab:b9:0d:ad:91:23:
a7:e6:83:3d:17:9e:5d:d0:08:8c:4a:95:63:95:c5:
b7:52:02:38:14:12:16:f6:9a:4a:52:a8:54:9f:9e:
1a:7b:f3:39:4f:4a:ae:88:43:66:8e:2b:6d:9a:83:
44:16:b3:11:de:80:69:66:2c:01:e5:61:c9:83:15:
b9:8b:51:c8:14:21:f7:92:cf:18:e0:e0:c0:41:b8:
cd:51:19:ac:31:41:bc:09:95:9a:a1:a1:51:ba:ee:
f0:69:75:3f:e1:4e:cd:6c:c4:7a:a0:04:ad:ff:6a:
d2:e3:97:df:bf:ee:d6:a1:16:6a:33:c4:ae:53:39:
4c:99:27:d6:cf:36:40:56:ad:12:87:d4:e0:f6:a5:
19:78:c3:d8:ed:db:d6:4a:e5:49:11:4b:65:7f:bc:
34:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:A9:C7:BD:F2:B8:2E:34:3E:C4:26:67:D6:EE:DE:4B:80:61:0C:84
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/2f6595-d3d1-43ea-a4a3-ab3b7c3e8215/1/M6nHvfK4LjQ-xCZn1u7eS4BhDIQ.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.241.32.0/20
85.113.72.0/21
109.72.160.0/20
147.161.16.0/22
185.36.212.0/22
185.135.134.0/23
185.154.16.0/22
IPv6:
2a00:f0a0::/29
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
207464
Signature Algorithm: sha256WithRSAEncryption
a1:ae:cd:f0:f0:a4:b7:99:b2:52:10:1a:2b:9e:4b:ad:36:6c:
61:d7:e9:f5:6d:a0:3a:ac:ed:3a:2b:0c:55:4f:83:c6:93:f1:
2f:c9:8f:78:c8:12:00:20:72:2d:19:6c:1c:f3:7f:24:9d:c1:
2c:2b:32:f8:b2:39:41:be:39:e8:b4:07:f5:b8:8f:97:3d:b3:
1e:9b:f8:9f:d2:15:9c:58:56:ad:32:f4:5c:ad:d0:94:d7:81:
81:d7:78:2f:d6:92:2a:99:06:c4:04:e8:b5:3e:61:dd:69:d8:
04:65:6e:b9:42:45:6c:09:7a:44:af:74:e4:77:08:7a:d1:70:
41:7a:41:bd:19:1b:87:4c:ac:38:fb:77:e0:af:67:b9:1e:4b:
5d:0b:bc:d6:48:ad:65:5b:00:ae:4f:c3:22:d9:d3:89:a1:21:
90:3c:7a:8d:a3:14:3d:2e:5c:17:20:4d:3e:20:49:ea:30:72:
1a:0e:10:08:1d:27:f9:e7:98:d9:94:ec:a0:2e:c2:c5:3a:49:
f4:67:21:db:a3:34:35:1b:06:9d:8d:cf:0f:b8:4a:4b:a9:9d:
da:52:f7:6e:08:52:d8:b3:8e:7c:73:8a:05:ad:51:57:a2:cf:
e3:0c:4e:81:9d:d5:37:a7:fb:2e:43:ea:bb:1c:53:03:d0:fd:
61:28:5b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:07:36 2024 by rpki-client on console-fra.rpki-client.org